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Introduction 


Welcome to the CompTIA A+ Complete Study Guide. This is the fourth edition of our 
best-selling study guide for the A+ certification sponsored by CompTIA (Computing 
Technology Industry Association). 

This book is written at an intermediate technical level; we assume that you already 
know how to use a personal computer and its basic peripherals, such as USB devices and 
printers, but we also recognize that you may be learning how to service some of that com- 
puter equipment for the first time. The exams cover basic computer service topics as well 
as some more advanced issues, and they cover some topics that anyone already working 
as a technician, whether with computers or not, should be familiar with. The exams are 
designed to test you on these topics in order to certify that you have enough knowledge to 
fix and upgrade some of the most widely used types of personal computers. 

We’ve included review questions at the end of each chapter to give you a taste of what 
it’s like to take the exams. If you’re already working as a technical service or support 
technician, we recommend that you check out these questions first to gauge your level of 
knowledge. (You can also take the assessment test at the end of this introduction, which is 
designed to see how much you already know.) 

Don’t just study the questions and answers—the questions on the actual exams will be 
different from the practice ones included with this book. The exams are designed to test 
your knowledge of a concept or objective, so use this book to learn the objective behind the 
question. This book covers more than just the exams, however. We believe in providing our 
students with a foundation of IT knowledge that will prepare them for real jobs, not just 
to pass a test. After all, life is not a multiple-choice test with the answers clearly laid out in 
front of you! 

You can mainly use the book to fill in the gaps in your current computer service knowl- 
edge. You may find, as many PC technicians have, that being well versed in all the technical 
aspects of the equipment is not enough to provide a satisfactory level of support—you must 
also have customer-relations skills. We include helpful hints to get the customers to help 
you help them. 


What Is A+ Certification? 


The A+ certification program was developed by the Computing Technology Industry 
Association (CompTIA) to provide an industry-wide means of certifying the competency 
of computer service technicians. The A+ certification is granted to those who have attained 
the level of knowledge and troubleshooting skills that are needed to provide capable sup- 
port in the field of personal computers. It is similar to other certifications in the computer 
industry, such as the Cisco Certified Entry Network Technician (CCENT) program and 
the Microsoft Technology Associate (MTA) certification program. The theory behind these 
certifications is that if you need to have service performed on any of their products, you 
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would sooner call a technician who has been certified in one of the appropriate certification 
programs than just call the first “expert” in the phone book. 

The A+ certification program was created to offer a wide-ranging certification, in the 
sense that it is intended to certify competence with personal computers and mobile devices 
from many different makers/vendors. You must pass two tests to become A+ certified: 


= The A+ 220-1001 exam, which covers basic computer concepts, PC hardware, basic 
networking, mobile devices, and hardware troubleshooting 


=a The A+ 220-1002 exam, which covers operating systems, security, software trouble- 
shooting, and operational procedures 


You don’t have to take the 220-1001 and the 220-1002 exams at the same time. 
However, the A+ certification is not awarded until you’ve passed both tests. 


Why Become A+ Certified? 


There are several good reasons to get your A+ certification. The CompTIA Candidate’s 
Information packet lists five major benefits: 


= It demonstrates proof of professional achievement. 

= It increases your marketability. 

= It provides greater opportunity for advancement in your field. 

= It is increasingly a requirement for some types of advanced training. 


= It raises customer confidence in you and your company’s services. 


Provides Proof of Professional Achievement 


The A+ certification is a status symbol in the computer service industry. Organizations that 
include members of the computer service industry recognize the benefits of A+ certification 
and push for their members to become certified. And more people every day are putting the 
“A+ Certified Technician” emblem on their business cards. 


Increases Your Marketability 


A+ certification makes individuals more marketable to potential employers. A+ certified 
employees also may receive a higher base salary because employers won’t have to spend as 
much money on vendor-specific training. 


Provides Opportunity for Advancement 


Most raises and advancements are based on performance. A+ certified employees work 
faster and more efficiently and are thus more productive. The more productive employees 
are, the more money they make for their company. And, of course, the more money they 
make for the company, the more valuable they are to the company. So, if an employee is A+ 
certified, their chances of being promoted are greater. 
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Fulfills Training Requirements 


Most major computer hardware vendors recognize A+ certification. Some of these vendors 
apply A+ certification toward prerequisites in their own respective certification programs, 
which has the side benefit of reducing training costs for employers. 


Raises Customer Confidence 


As the A+ Certified Technician moniker becomes better known among computer owners, 
more of them will realize that the A+ technician is more qualified to work on their com- 
puter equipment than a noncertified technician. 


How to Become A+ Certified 


A+ certification is available to anyone who passes the tests. You don’t have to work for any 
particular company. It’s not a secret society. It is, however, an elite group. To become A+ 
certified, you must do two things: 


a Pass the A+ 220-1001 exam 
a Pass the A+ 220-1002 exam 


The exams can be taken at any Pearson VUE testing center. If you pass both exams, you 
will get a certificate in the mail from CompTIA saying that you have passed, and you will 
also receive a lapel pin and business card. 

To register for the tests, call Pearson VUE at (877) 551-PLUS (7587) or go to 
www. pearsonvue.com/comptia. You'll be asked for your name, Social Security number 
(an optional number may be assigned if you don’t wish to provide your Social Security 
number), mailing address, phone number, employer, when and where you want to take the 
test, and your credit card number. (Payment arrangements must be made at the time of 
registration.) 


Although you can save money by arranging to take more than one test at 
TE the same seating, there are no other discounts. If you have to repeat a test 


to get a passing grade, you must pay for each retake. 


Tips for Taking the A+ Exam 


Here are some general tips for taking your exam successfully: 

= Bring two forms of ID with you. One must be a photo ID, such as a driver’s license. 
The other can be a major credit card or a passport. Both forms must include a 
signature. 

=a Arrive early at the exam center so that you can relax and review your study materials, 
particularly tables and lists of exam-related information. When you enter the testing 
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room, you will need to leave everything outside; you won’t be able to bring any materi- 
als into the testing area. 


= Read the questions carefully. Don’t be tempted to jump to an early conclusion. Make 
sure that you know exactly what each question is asking. 


a Don’t leave any unanswered questions. Unanswered questions are scored against you. 
Some questions will have multiple correct responses. When a question has more than 
one correct answer, a message at the bottom of the screen will prompt you to, for 
example, choose two. Be sure to read the messages displayed to know how many cor- 
rect answers you must choose. 


a When answering multiple-choice questions that you’re not sure about, use a process of 
elimination to get rid of the obviously incorrect answers first. Doing so will improve 
your odds if you need to make an educated guess. 


=a On form-based tests (nonadaptive), because the hard questions will take the most time, 
save them for last. You can move forward and backward through the exam. 


= For the latest pricing on the exams and updates to the registration procedures, visit 
CompTIA’s website at www. comptia.org. 


Who Should Read This Book? 


If you are one of the many people who want to pass the A+ exams, and pass them confi- 
dently, then you should buy this book and use it to study for the exams. 

This book was written to prepare you for the challenges of the real IT world, not just 
to pass the A+ exams. This study guide will do that by describing in detail the concepts on 
which you'll be tested. 


What Does This Book Cover? 


This book covers everything you need to know to pass the CompTIA A+ exams. 
Part I of the book starts at Chapter 1 and concludes after Chapter 14. It covers all the 
topics on which you will be tested for Exam 220-1001: 


Chapter 1: Motherboards, Processors, and Memory Chapter 1 details the characteristics 
of motherboards and their built-in components. The CPU, RAM, and BIOS, which are 
attached to the motherboard, are also presented in Chapter 1. 


Chapter 2: Internal Expansion, Storage Devices, and Power Supplies Chapter 2 presents 
internal expansion options and popular forms of storage devices in use today, including 
traditional hard drives, solid-state drives, flash drives, and memory cards. Capacities, form 
factors, and the makeup of these components are also discussed. Finally, this chapter looks 
at providing power to computer components. 
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Chapter 3: Peripherals and Connectors Chapter 3 covers installation and characteristics 
of external peripheral devices, the ports they use, and the connectors used to attach them. 
Required cabling and its characteristics are also included. 


Chapter 4: Custom PC Configurations Chapter 4 presents information based on outlining 
the specialized systems that we see more and more of in the field today. Examples include 
gaming PCs, graphic design and audio/video editing workstations, virtualization worksta- 
tions, and network-attached storage devices. 


Chapter 5: Installing and Configuring Printers Chapter 5 starts by discussing different 
printing technologies, such as impact, inkjet, laser, virtual, and 3D printers. It then moves 
on to cover installing printers and performing printer maintenance. 


Chapter 6: Networking Fundamentals Chapter 6 covers characteristics of cable types and 
connectors, network devices, networking tools, and network topologies. 


Chapter 7: Introduction to TCP/IP Chapter 7 details the most common network protocol 
in use today. It covers TCP/IP structure, addressing (including IPv6), and common proto- 
cols in the suite. 


Chapter 8: Installing Wireless and SOHO Networks Chapter 8 contains two main sec- 
tions. The first is on wireless networking standards and security, and the second discusses 
setting up a small office, home office (SOHO) network and choosing an Internet connection 
type. Within setting up a SOHO wireless network, we also look at configuring Internet of 
Things (IoT) devices. 


Chapter 9: Network Services, Virtualization, and Cloud Computing Chapter 9 focuses 
on the newest technologies related to networking, with an emphasis on virtualization and 
cloud computing. 


Chapter 10: Understanding Laptops Chapter 10 covers topics such as laptop-specific 
hardware, components within a laptop display, and laptop features. 


Chapter 11: Understanding Mobile Devices Chapter 11 covers topics related to mobile 
devices, such as tablets, smartphones, e-readers, and wearable technology. 


Chapter 12: Mobile Device Connectivity and Synchronization Chapter 12 details the 
specific features of mobile devices that are unique to their formats. This chapter provides 
extensive hands-on steps for configuring a variety of connectivity options and synchroniza- 
tion on these devices. 


Chapter 13: Troubleshooting Methodology and Resolving Core Hardware 

Problems Chapter 13 introduces the best practice framework for resolving computer prob- 
lems, which every technician should know. It also covers troubleshooting core hardware 
issues related to the motherboard, CPU, RAM, and power. 


Chapter 14: Hardware and Network Troubleshooting Chapter 14 finishes the trouble- 
shooting side of hardware, including storage devices, video issues, mobile device issues, 
printers, and networking, including network troubleshooting tools. 
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Part II of the book, Chapters 15-26, covers all the topics on which you will be tested for 
Exam 220-1002: 


Chapter 15: Operating System Basics Chapter 15 starts the examination of Microsoft 
Windows operating systems. CompTIA expects you to know how to administer three of 
them—Windows 10, Windows 8/8.1, and Windows 7. In addition, you will need to know 
about many of the various editions of each version. 


Chapter 16: Operating System Administration Chapter 16 continues the discussion begun 
in Chapter 15, looking at utilities and features that exist in each of the three versions of 
Windows operating systems that you need to know for the exam. 


Chapter 17: Working with Windows 10 Chapter 17 covers unique features and capabili- 
ties of Windows 10, the newest of the three versions of Windows operating systems tested 
on the 220-1002 exam. 


Chapter 18: Working with Windows 8/8.1 Chapter 18 focuses only on Windows 8/8.1. It 
represents a fairly major step-change from Windows 7, and its features are covered here. 


Chapter 19: Working with Windows 7 Chapter 19 focuses only on Windows 7. This 
chapter looks at features unique to the Windows 7 Starter, Windows 7 Home Premium, 
Windows 7 Professional, Windows 7 Ultimate, and Windows 7 Enterprise. 


Chapter 20: Working with macOS and Linux Chapter 20 focuses on popular end-user 
desktop and laptop operating systems other than Microsoft Windows. It looks at macOS 
and Linux. 


Chapter 21: Scripting and Remote Access Network administrators and technicians need 
to know how to access systems remotely in order to use or troubleshoot them. Chapter 21 
shows you technologies used to do just that. Scripting is also included. 


Chapter 22: Security Concepts Just when you think this book couldn’t get any better, 
we toss in a chapter devoted to security. This chapter introduces key security concepts you 
need to know for the exam, including information on physical security, social engineering, 
wireless networks, best practices, and data destruction methods. 


Chapter 23: Securing Operating Systems This chapter follows up on Chapter 22, which 
introduced security concepts, by providing specifics on how to secure Microsoft and mobile 
operating systems, prevent and remove malware, and configure network security on wired 
and wireless networks. 


Chapter 24: Troubleshooting Operating Systems and Security Troubleshooting is a major 
part of almost every technician’s job. In Chapter 24, we talk about troubleshooting com- 
mon operating system issues as well as security challenges you may encounter. 


Chapter 25: Documentation and Professionalism This chapter covers the “softer” side of 
working with computers. Specifically, you learn to practice proper communication, show 
professionalism, and implement best practices associated with documentation and change 
management. 
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Chapter 26: Safety and Environmental Concerns The final chapter discusses the impacts 
computers can have on people as well as the environment. You learn how to avoid dam- 
aging a computer as well as having it damage you, how to perform backups and disaster 
recovery, and how to properly dispose of computer components that are no longer needed. 


What’s Included in the Book 


We've included several learning tools throughout the book: 


Assessment Tests At the end of this introduction are two assessment tests—one for each 
exam—that you can use to check your readiness for the exams. Take these tests before you 
start reading the book; they will help you determine the areas on which you might need to 
brush up. The answers to the assessment test questions appear on a separate page after the 
last question of the test. Each answer includes an explanation and the chapter the material 
appears in. 


Objective Map and Opening List of Objectives At the beginning of the book, we have 
included a detailed exam objective map that shows you where each exam objective is cov- 
ered. In addition, each chapter opens with a list of the exam objectives it covers. Use these 
resources to see exactly where each exam topic is covered. 


Exam Essentials Each chapter, just before the summary, includes a number of “exam 
essentials.” These are the key topics that you should focus on when preparing for the exam. 


Chapter Review Questions To test your knowledge as you progress through the book, 
each chapter ends with review questions. As you finish each chapter, answer the review 
questions and then check your answers—the correct answers and explanations are in 
Appendix A. You can go back to reread the section that deals with each question you got 
wrong to ensure that you answer correctly the next time that you’re tested on the material. 


Performance-Based Questions The A+ exams may ask you to perform tasks to correctly 
answer a question. This may mean dragging and dropping items into the correct order or 
clicking the correct area of an image or screenshot. While it’s hard to simulate those in a 
paper book, the end of each chapter features a performance-based question. These ques- 
tions will have you think through a topic presented in the chapter, and then perform a task. 


Interactive Online Learning Environment and Test Bank 


The interactive online learning environment that accompanies CompTIA A+ Complete 
Study Guide: Exam 220-1001 and Exam 220-1002 provides a test bank with study tools 
to help you prepare for the certification exams and increase your chances of passing them 
the first time! The test bank includes the following elements: 


Sample Tests All the questions and answers in this book are provided, including the assess- 
ment tests, which you'll find at the end of this introduction, and the review questions at the 
end of each chapter. In addition, there are four practice exams. Use these questions to test 
your knowledge of the study guide material. The online test bank runs on multiple devices. 
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Flashcards Two sets of questions are provided in digital flashcard format (a question fol- 
lowed by a single correct answer). You can use the flashcards to reinforce your learning and 
provide last-minute test prep before the exam. 


Glossary The key terms from this book and their definitions are available as a fully 
searchable PDF. 


P Go to http: //www.wiley.com/go/sybextestprep to register and gain 
‘GQ access to this interactive online learning environment and test bank with 
study tools. 


How to Use This Book 


If you want a solid foundation for preparing for the A+ exams, this is the book for you. 
We’ve spent countless hours putting together this book with the intention of helping you 
prepare for the exams. 

This book is loaded with valuable information, and you will get the most out of your 
study time if you understand how we put the book together. Here’s a list that describes how 
to approach studying: 


1. Take the assessment tests immediately following this introduction. It’s okay if you don’t 
know any of the answers—that’s what this book is for. Carefully read over the expla- 
nations for any questions you get wrong, and make note of the chapters where that 
material is covered. 


2. Study each chapter carefully, making sure you fully understand the information and 
the exam objectives listed at the beginning of the chapter. Again, pay extra-close 
attention to any chapter that includes material covered in questions you missed on the 
assessment test. 


3. Read over the Summary and Exam Essentials. These will highlight the sections from the 
chapter you need to be familiar with before sitting for the exam. 


4. Answer all the review questions at the end of each chapter. Specifically note any ques- 
tions that confuse you, and study the corresponding sections of the book again. Don’t 
just skim these questions. Make sure that you understand each answer completely. 


5. Go over the electronic flashcards. These help you to prepare for the latest A+ exams, 
and they’re really great study tools. 


6. Take the practice exams. 








Performance-Based Questions 


CompTIA includes performance-based questions on the A+ exams. These are not the tra- 
ditional multiple-choice questions with which you're probably familiar. These questions 
require the candidate to know how to perform a specific task or series of tasks. The can- 
didate will be presented with a scenario and will be asked to complete a task. They will be 
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taken to a simulated environment where they will have to perform a series of steps and 
will be graded on how well they complete the task. 


The Sybex test engine does not include performance-based questions. However, at the 
end of most chapters, we have included a section called “Performance-Based Question,” 
which is designed to measure how well you understood the chapter’s topics. Some sim- 
ply ask you to complete a task for which there is only one correct response. Others are 
more subjective, with multiple ways to complete the task. We provide the most logical 
or practical solution in Appendix B. Note that these questions may cover topic areas not 
covered in the actual A+ performance-based questions. However, we feel that being able 
to think logically is a great way to learn. 





The CompTIA A+ Exam Objectives 


The A+ exams consist of the 220-1001 exam and the 220-1002 exam. Following are the 
detailed exam objectives for each test. 

Exam objectives are subject to change at any time without prior notice and at 
CompTIA’s sole discretion. Please visit the A+ Certification page of CompTIA’s website 
(https: //certification.comptia.org/certifications/a) for the most current listing of 
exam objectives. 


A+ Certification Exam Objectives: 
220-1001 


The following table lists the domains measured by this examination and the extent to 
which they are represented on the exam: 





Domain Percentage of Exam 
1.0 Mobile Devices 14% 
2.0 Networking 20% 
3.0 Hardware 27% 
4.0 Virtualization and Cloud Computing 12% 
5.0 Hardware and Network Troubleshooting 27% 


Total 100% 
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Objective 


Chapter 





1.0 Mobile Devices 





1.1 Given a scenario, install and configure laptop hardware and components. 


10 





= Hardware/device replacement 

= Keyboard 

= Hard drive 
= SSD vs. hybrid vs. magnetic disk 
= 1.8in vs. 2.5in 

=» Memory 

= Smart card reader 

= Optical drive 

= Wireless card/Bluetooth module 

= Cellular card 

= Video card 

a Mini PCle 

= Screen 

=» DC jack 

= Battery 

= Touchpad 

= Plastics/frames 

= Speaker 

=» System board 

=» CPU 


10 





1.2 Given a scenario, install components within the display of a laptop. 


10 





= Types 
= LCD 
= OLED 
a WiFi antenna connector/placement 
= Webcam 
=» Microphone 
= Inverter 
a Digitizer/touchscreen 


10 
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1.3 Given a scenario, use appropriate laptop features. 10 





a Special function keys 10 
=a Dual displays 
a Wireless (on/off) 
= Cellular (on/off) 
=» Volume settings 
= Screen brightness 
= Bluetooth (on/off) 
= Keyboard backlight 
= Touchpad (on/off) 
= Screen orientation 
=» Media options (fast forward/rewind) 
= GPS (on/off) 
= Airplane mode 
a Docking station 
a Port replicator 
= Physical laptop lock and cable lock 


= Rotating/removable screens 








1.4 Compare and contrast characteristics of various types of other mobile 11 
devices. 
= Tablets 11 


=» Smartphones 

=» Wearable technology devices 
= Smart watches 
= Fitness monitors 
=» VR/AR headsets 

a E-readers 

= GPS 





1.5 Given a scenario, connect and configure accessories and ports of other 11 
mobile devices. 


=» Connection types 11 
= Wired 
a Micro-USB/Mini-USB/USB-C 
a Lightning 
=a Tethering 


a Proprietary vendor-specific ports (communication/power) 
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=» Wireless 
=» NFC 
= Bluetooth 
=a IR 
= Hotspot 
=» Accessories 
=» Headsets 
= Speakers 
= Game pads 
= Extra battery packs/battery chargers 
= Protective covers/waterproofing 
= Credit card readers 
= Memory/MicroSD 





1.6 Given a scenario, configure basic mobile device network connectivity and 
application support. 


12 





a Wireless/cellular data network (enable/disable) 
=» Hotspot 
= Tethering 
= Airplane mode 
=» Bluetooth 
= Enable Bluetooth 
= Enable pairing 
= Find a device for pairing 
= Enter the appropriate pin code 
= Test connectivity 
= Corporate and ISP email configuration 
= POP3 
=» IMAP 
= Port and SSL settings 
a S/MIME 
= Integrated commercial provider email configuration 
= iCloud 
a Google/Inbox 
=» Exchange Online 
= Yahoo 
= PRI updates/PRL updates/baseband updates 
= Radio firmware 
a IMEI vs. IMSI 
=» VPN 


12 
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1.7 Given a scenario, use methods to perform mobile device synchronization. 12 
= Synchronization methods 12 
a Synchronize to the cloud 
= Synchronize to the desktop 
a Synchronize to the automobile 
= Types of data to synchronize 
=» Contacts 
= Applications 
=» Email 
= Pictures 
a Music 
=» Videos 
=» Calendar 
= Bookmarks 
= Documents 
= Location data 
= Social media data 
= E-books 
a Passwords 
a Mutual authentication for multiple services (SSO) 
= Software requirements to install the application on the PC 
= Connection types to enable synchronization 
2.0 Networking 
2.1 Compare and contrast TCP and UDP ports, protocols, and their purposes. 7 
7 


= Ports and protocols 


=» 21-FTP 

= 22-SSH 

= 23- Telnet 

= 25-SMTP 

» 53-DNS 

= 80-HTTP 

= 110-POP3 

= 143 -IMAP 
= 443-HTTPS 
= 3389- RDP 


= 137-139 - NetBIOS/NetBT 
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= 445- SMB/CIFS 

a 427 -SLP 

=a 548- AFP 

= 67/68 - DHCP 

= 389- LDAP 

= 161/162 - SNMP 
=» TCP vs. UDP 





2.2 Compare and contrast common networking hardware devices. 





=a Routers 
=» Switches 
=» Managed 
=» Unmanaged 
=» Access points 
= Cloud-based network controller 
= Firewall 
=» Network interface card 
= Repeater 
=» Hub 
= Cable/DSL modem 
=» Bridge 
= Patch panel 
= Power over Ethernet (PoE) 
= Injectors 
=» Switch 


a Ethernet over Power 


2.3 Given a scenario, install and configure a basic wired/wireless SOHO 
network. 





=a Router/switch functionality 
= Access point settings 
= IP addressing 
= NIC configuration 
= Wired 
= Wireless 
=» End-user device configuration 


= loT device configuration 

= Thermostat 

= Light switches 

=" Security cameras 

=a Door locks 

= Voice-enabled, smart speaker/digital assistant 
=a Cable/DSL modem configuration 
= Firewall settings 

» DMZ 

= Port forwarding 

=» NAT 

=» UPnP 

a Whitelist/blacklist 

a MAC filtering 
=a QoS 
a Wireless settings 

= Encryption 

= Channels 

= QoS 
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2.4 Compare and contrast wireless networking protocols. 





=a 802.11a 

= 802.11b 

=» 802.11g 

=» 802.11n 

= 802.11lac 

= Frequencies 
=» 2.4Ghz 
=» 5Ghz 

=» Channels 
=» 1-11 

= Bluetooth 

=» NFC 

= RFID 

=» Zigbee 

=a Z-Wave 

=» 3G 

a 4G 

» 5G 

=» LTE 
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2.5 Summarize the properties and purposes of services provided by 
networked hosts. 





= Server roles 
= Web server 
= File server 
a Print server 
= DHCP server 
=» DNS server 
= Proxy server 
a Mail server 
=» Authentication server 


= syslog 
= Internet appliance 
= UTM 
a IDS 
= IPS 


= End-point management server 
=» Legacy/embedded systems 





2.6 Explain common network configuration concepts. 


= IP addressing 


= Static 
= Dynamic 
=» APIPA 
= Link local 
= DNS 
=» DHCP 


=» Reservations 
=» |Pv4 vs. IPv6 
= Subnet mask 
=» Gateway 
=» VPN 
a VLAN 
=» NAT 
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2.7 Compare and contrast Internet connection types, network types, and 
their features. 


6,8 





= Internet connection types 
= Cable 
= DSL 
=a Dial-up 
= Fiber 
= Satellite 
= ISDN 
= Cellular 
a Tethering 
= Mobile hotspot 
= Line-of-sight wireless Internet service 
=» Network types 
=» LAN 
a WAN 
=» PAN 
a MAN 
a WMN 





2.8 Given a scenario, use appropriate networking tools. 


14 





= Crimper 

= Cable stripper 

=» Multimeter 

=» Tone generator and probe 
= Cable tester 

= Loopback plug 

=» Punchdown tool 

a WiFi analyzer 
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3.0 Hardware 





3.1 Explain basic cable types, features, and their purposes. 


3,6 





a Network cables 
=a Ethernet 
= Cat5 
=a Cat5e 
= Cat6 
= Plenum 
= Shielded twisted pair 
= Unshielded twisted pair 
= 568A/B 
= Fiber 
= Coaxial 
=» Speed and transmission limitations 
a Video cables 
= VGA 
a HDMI 
a Mini-HDMI 
= DisplayPort 
» DVI 
a DVI (DVI-D/DVI-I) 
=» Multipurpose cables 
a Lightning 
= Thunderbolt 
= USB 
=» USB-C 
=» USB 2.0 
=» USB 3.0 
= Peripheral cables 
= Serial 
= Hard drive cables 
=» SATA 
= IDE 
a SCSI 
=» Adapters 
= DVI to HDMI 
= USB to Ethernet 
= DVIto VGA 
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3.2 Identify common connector types. 


3,6 





=» RJ-11 

=a RJ-45 

= RS-232 

= BNC 

= RG-59 

= RG-6 

= USB 

=» Micro-USB 
a Mini-USB 
=» USB-C 

=» DB-9 

a Lightning 
= SCSI 

=» eSATA 

=» Molex 





3.3 Given a scenario, install RAM types. 





a RAM types 
= SODIMM 
= DDR2 
= DDR3 
= DDR4 
= Single channel 
a Dual channel 
= Triple channel 
= Error correcting 


= Parity vs. non-parity 


3.4 Given a scenario, select, install and configure storage devices. 





a Optical drives 
a CD-ROM/CD-RW 
a DVD-ROM/DVD-RW/DVD-RW DL 
= Blu-ray 
= BD-R 
= BD-RE 
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Solid-state drives 
=» M2 drives 
=» NVME 
= SATA 2.5 
Magnetic hard drives 
= 5,400rpm 
= 7,200rpm 
= 10,000rpm 
= 15,000rpm 
= Sizes: 

= 2.5 

= 3.5 
Hybrid drives 
Flash 
= SD card 
= CompactFlash 
= Micro-SD card 
=a Mini-SD card 
= xD 
Configurations 
= RAID 0, 1,5, 10 
= Hot swappable 





3.5 Given a scenario, install and configure motherboards, CPUs, and 
add-on cards. 


1,2 





Motherboard form factor 
= ATX 

= mATX 

= ITX 

= mITX 

Motherboard connectors types 
=a PCI 

=» PCle 

= Riser card 

= Socket types 

= SATA 

= IDE 

= Front panel connector 
= Internal USB connector 


BIOS/UEFI settings 
= Boot options 
=» Firmware updates 
=" Security settings 
= Interface configurations 
=» Security 
=» Passwords 
= Drive encryption 
= TPM 
a LoJack 
= Secure boot 
CMOS battery 
CPU features 
= Single-core 
=» Multicore 
=a Virtual technology 
= Hyperthreading 
= Speeds 
=» Overclocking 
= Integrated GPU 
Compatibility 
» AMD 
= Intel 
Cooling mechanism 
=» Fans 
=» Heat sink 
=a Liquid 
= Thermal paste 
Expansion cards 
= Video cards 
= Onboard 
= Add-on card 
=» Sound cards 
=» Network interface card 
=» USB expansion card 
= eSATA card 
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3.6 Explain the purposes and uses of various peripheral types. 





= Printer 
= ADF/flatbed scanner 
=» Barcode scanner/OR scanner 
=» Monitors 
=» VR headset 
= Optical 
= DVD drive 
=» Mouse 
= Keyboard 
= Touchpad 
= Signature pad 
= Game controllers 
= Camera/webcam 
=» Microphone 
= Speakers 
= Headset 
= Projector 
=» Lumens/brightness 
= External storage drives 
= KVM 
=» Magnetic reader/chip reader 
=» NFC/tap pay device 
= Smart card reader 





3.7 Summarize power supply types and features. 





= Input 115V vs. 220V 

= Output 5.5V vs. 12V 

= 24-pin motherboard adapter 

= Wattage rating 

=» Number of devices/types of devices to be powered 





3.8 Given a scenario, select and configure appropriate components for a 
custom PC configuration to meet customer specifications or needs. 





= Graphic/CAD/CAM design workstation 
= SSD 
= High-end video 
= Maximum RAM 


a Audio/video editing workstation 
=" Specialized audio and video card 
= Large, fast hard drive 
= Dual monitors 
a Virtualization workstation 
a Maximum RAM and CPU cores 
= Gaming PC 
= SSD 
= High-end video/specialized GPU 
= High-definition sound card 
= High-end cooling 
= Standard thick client 
= Desktop applications 
=» Meets recommended requirements for selected OS 
= Thin client 
= Basic applications 
= Meets minimum requirements for selected OS 
=» Network connectivity 
=» Network attached storage device 
= Media streaming 
= File sharing 
=a Gigabit NIC 
= RAID array 
= Hard drive 
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3.9 Given a scenario, install and configure common devices. 4, 10, 12 

= Desktop 4 
=a Thin client 4 
= Thick client 4 
= Account setup/settings 4 

= Laptop/common mobile devices 10 
= Touchpad configuration 10 
= Touchscreen configuration 10 
= Application installations/configurations 10 
=» Synchronization settings 12 
=» Account setup/settings 10 
a Wireless settings 10 
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3.10 Given a scenario, configure SOHO multifunction devices/printers 
and settings. 





Use appropriate drivers for a given operating system 


Configuration settings 
= Duplex 

= Collate 

= Orientation 


= Quality 
Device sharing 

Wired 

=» USB 

= Serial 

= Ethernet 

Wireless 


= Bluetooth 

= 802.11(a, b, g, n, ac) 

= Infrastructure vs. ad hoc 
Integrated print server (hardware) 
Cloud printing/remote printing 


Public/shared devices 


Sharing local/networked device via operating system settings 
= = TCP/Bonjour/AirPrint 

Data privacy 

= User authentication on the device 


= Hard drive caching 


3.11 Given a scenario, install and maintain various print technologies. 





Laser 


Imaging drum, fuser assembly, transfer belt, transfer roller, pickup 
rollers, separate pads, duplexing assembly 


Imaging process: processing, charging, exposing, developing, 
transferring, fusing, and cleaning 


Maintenance: Replace toner, apply maintenance kit, calibrate, clean 


Inkjet 


Ink cartridge, print head, roller, feeder, duplexing assembly, carriage, 
and belt 


Calibrate 
Maintenance: Clean heads, replace cartridges, calibrate, clear jams 
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=» Thermal 

= Feed assembly, heating element 

= Special thermal paper 

=» Maintenance: Replace paper, clean heating element, remove debris 
=» Impact 

= Print head, ribbon, tractor feed 

= Impact paper 

=» Maintenance: Replace ribbon, replace print head, replace paper 
= Virtual 

= Print to file 

= Print to PDF 

= Print to XPS 

= Print to image 
= 3D printers 

= Plastic filament 
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4.0 Virtualization and Cloud Computing 





4.1 Compare and contrast cloud computing concepts. 


= Common cloud models 


a laaS 
a SaaS 
a PaaS 


= Public vs. private vs. hybrid vs. community 
=" Shared resources 
= Internal vs. external 
= Rapid elasticity 
= On-demand 
= Resource pooling 
=» Measured service 
=» Metered 
= Off-site email applications 
= Cloud file storage services 
a Synchronization apps 
a Virtual application streaming/cloud-based applications 
= Applications for cell phones/tablets 
= Applications for laptops/desktops 
= Virtual desktop 
=a Virtual NIC 
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4.2 Given a scenario, set up and configure client-side virtualization. 9 
= Purpose of virtual machines 9 
=» Resource requirements 
= Emulator requirements 
=» Security requirements 
= Network requirements 
= Hypervisor 
5.0 Hardware and Network Troubleshooting 
5.1 Given a scenario, use the best practice methodology to resolve problems. 13 
=» Always consider corporate policies, procedures, and impacts before 13 
implementing changes 
1. Identify the problem 
— Question the user and identify user changes to computer and perform 
backups before making changes 
— Inquire regarding environmental or infrastructure changes 
— Review system and application logs 
2. Establish a theory of probable cause (question the obvious) 
— If necessary, conduct external or internal research based on symptoms 
3. Test the theory to determine cause 
— Once the theory is confirmed, determine the next steps to resolve problem 
— lIftheory is not confirmed reestablish new theory or escalate 
4. Establish a plan of action to resolve the problem and implement the solution 
5. Verify full system functionality and, if applicable, implement preventive 
measures 
6. Document findings, actions, and outcomes 
5.2. Given a scenario, troubleshoot common problems related to 13 
motherboards, RAM, CPUs, and power. 
n 13 


Common symptoms: unexpected shutdowns; system lockups; POST code 
beeps; blank screen on bootup; BIOS time and setting resets; attempts to 
boot to incorrect device; continuous reboots; no power; overheating; loud 
noise; intermittent device failure; fans spin—no power to other devices; 
indicator lights; smoke; burning smell; proprietary crash screens (BSOD/ 
pin wheel); distended capacitors; log entries and error messages 
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5.3. Given a scenario, troubleshoot hard drives and RAID arrays. 


14 





Common symptoms: read/write failure; slow performance; loud clicking 
noise; failure to boot; drive not recognized; OS not found; RAID not 
found; RAID stops working; proprietary crash screens (BSOD/pin wheel); 
S.M.A.R.T. errors 


14 





5.4. Given a scenario, troubleshoot video, projector, and display issues. 


14 





Common symptoms: VGA mode; no image on screen; overheat shutdown; 
dead pixels; artifacts; incorrect color patterns; dim image; flickering 
image; distorted image; distorted geometry; burn-in; oversized images 
and icons 


14 





5.5. Given a scenario, troubleshoot common mobile device issues while 
adhering to the appropriate procedures. 


14 





Common symptoms: no display; dim display; flickering display; sticking 
keys; intermittent wireless; battery not charging; ghost cursor/pointer 
drift; no power; num lock indicator lights; no wireless connectivity; no 
Bluetooth connectivity; cannot display to external monitor; touchscreen 
non-responsive; apps not loading; slow performance; unable to decrypt 
email; extremely short battery life; overheating; frozen system; no sound 
from speakers; GPS not functioning; swollen battery 


Disassembling processes for proper re-assembly: document and 
label cable and screw locations; organize parts; refer to manufacturer 
resources; use appropriate hand tools 
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5.6. Given a scenario, troubleshoot printers. 


14 





Common symptoms: streaks; faded prints; ghost images; toner not fused 
to the paper; creased paper; paper not feeding; paper jam; no connectiv- 
ity; garbled characters on paper; vertical lines on page; backed up print 
queue; low memory errors; access denied; printer will not print; color 
prints in wrong print color; unable to install printer; error codes; printing 
blank pages; no image on printer display; multiple failed jobs in logs 
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5.7. Given a scenario, troubleshoot common wired and wireless network 
problems. 


14 





Common symptoms: limited connectivity; unavailable resources: Internet, 
local resources: shares, printers, email; no connectivity; APIPA/link local 
address; intermittent connectivity; IP conflict; slow transfer speeds; low 
RF signal; SSID not found 


14 


Ix Introduction 


A+ Certification Exam Objectives: 220-1002 


The following table lists the domains measured by this examination and the extent to 
which they are represented on the exam. 





Domain Percentage of Exam 
1.0 Operating Systems 27% 

2.0 Security 24% 

3.0 Software Troubleshooting 26% 

4.0 Operational Procedures 23% 

Total 100% 

Objective Chapter 





1.0 Operating Systems 





1.1 Compare and contrast common operating system types and their 15 
purposes. 
= 32-bit vs. 64-bit 15 


= RAM limitations 
= Software compatibility 
= Workstation operating systems 
a Microsoft Windows 
= Apple Macintosh OS 
= Linux 
= Cell phone/tablet operating systems 
=a Microsoft Windows 
= Android 
» iOS 
=» Chrome OS 
=a Vendor-specific limitations 
= End-of-life 
=» Update limitations 
= Compatibility concerns between operating systems 
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1.2 Compare and contrast features of Microsoft Windows versions. 15, 17, 18, 19 





= Compare features: Windows 7, Windows 8, Windows 8.1, Windows 10 15, 17, 18, 19 
a Windows 7 
=» Windows 8 
=» Windows 8.1 
=» Windows 10 
= Corporate vs. personal needs 
=» Domain access 
= BitLocker 
= Media center 
= BranchCache 
=» EFS 
a Desktop styles/user interface 





1.3. Summarize general OS installation considerations and upgrade 15, 16, 17, 
methods. 18, 19 


= Boot methods: Optical disc (CD-ROM, DVD, Blu-ray); External drive/flash 15, 16, 17, 
drive (USB/eSATA); Network boot (PXE); Internal fixed disk (HDD/SSD); 18, 19 
Internal hard drive (partition) 


a Type of installations: unattended installations; in-place upgrade; clean 
install; repair installation; multiboot; remote network installation; image 
deployment; recovery partition; refresh/restore 


= Partitioning: dynamic; basic; primary; extended; logical; GPT 


= File system types/formatting: ExFAT; FAT32; NTFS; CDFS; NFS; ext3, ext4; 
HFS; swap partition; quick format vs. full format 


= Load alternate third-party drivers when necessary 

= Workgroup vs. Domain setup 

= Time/date/region/language settings 

a Driver installation, software, and Windows updates 

= Factory recovery partition 

a Properly formatted boot drive with the correct partition/format 
= Prerequisites/hardware compatibility 

a OS compatibility/upgrade path 








1.4. Given a scenario, use appropriate Microsoft command-line tools. 16 
=» Navigation 16 
= dir 


=» cd 
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ipconfig 
ping 
tracert 
netstat 
nslookup 
shutdown 
dism 

sfc 
chkdsk 
diskpart 
taskkill 
gpupdate 
gpresult 
format 
copy 
xcopy 
robocopy 
net use 
net user 
[command name] /? 


Commands available with standard privileges vs. administrative 
privileges 





1.5. Given a scenario, use Microsoft operating system features and tools. 


15, 16, 17, 19 





Administrative: Computer Management; Device Manager; Local Users 
and Groups; Local Security Policy; Performance Monitor; Services; 
System Configuration; Task Scheduler; Component Services; Data 
Sources; print management; Windows Memory Diagnostics; Windows 
Firewall; Advanced Security; Event Viewer; User Account Management 


MSCONFIG: General; Boot; Services; Startup; Tools 

Task Manager: Applications; Processes; Performance; Networking; Users 
Disk Management: Drive Status; Mounting; Initializing; Extending 
partitions; Splitting partitions; Shrink partitions; Assigning/changing 
drive letters; Adding drives; Adding arrays; Storage spaces 

System utilities: Regedit; Command; Services.msc; MMC; MSTSC; 


Notepad; Explorer; Msinfo32; DxDiag; Disk Defragmenter; System 
Restore; Windows Update 


15, 16, 17, 19 
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1.6. Given a scenario, use Microsoft Windows Control Panel utilities. 16, 19 
= Internet options: Connections; Security; General; Privacy; Programs; 16, 19 
Advanced 


= Display/Display Settings: Resolution; Color depth; Refresh rate 
= User Accounts 


a Folder Options: View hidden files; Hide extensions; General options; View 
options 


a System: Performance (virtual memory); Remote settings; System 
protection 


=» Windows Firewall 

=» Power Options: Hibernate; power plans; Sleep/suspend; Standby 
= Credential Manager 

= Programs and features 

= HomeGroup 

a Devices and Printers 

=» Sound 

= Troubleshooting 

a Network and Sharing Center 
=» Device Manager 

= BitLocker 

a Sync Center 





1.7. Summarize application installation and configuration concepts. 17 





a System requirements 17 
=a Drive space 
= RAM 
a OS requirements 
= Compatibility 
= Methods of installation and deployment 
= Local (CD/USB) 
= Network-based 
= Local user permissions 
= Folder/file access for installation 
= Security considerations 
= Impact to device 
=» Impact to network 
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1.8. Given a scenario, configure Microsoft Windows networking ona 19 
client/desktop. 
= HomeGroup vs. Workgroup 19 
= Domain setup 
=" Network shares/administrative shares/mapping drives 17 
= Printer sharing vs. network printer mapping 17 
a Establish networking connections: VPN; dialups; wireless; wired; WWAN 
(cellular) 
= Proxy settings 
=» Remote Desktop Connection 
=» Remote Assistance 
= Home vs. Work vs. Public network settings 
= Firewall settings: exceptions; configuration; enabling/disabling Windows 
Firewall 
= Configuring an alternative IP address in Windows: IP addressing; subnet 
mask; DNS; Gateway 
=» Network card properties: Half duplex/full duplex/auto; speed; Wake-on- 
LAN; QoS; BIOS (on-board NIC) 
1.9. Given a scenario, use features and tools of the mac OS and Linux client/ 20 
desktop operating systems. 
= Best practices 20 


=» Scheduled backups 

= Scheduled disk maintenance 

=» System updates/App Store 

= Patch management 

= Driver/firmware updates 

a Antivirus/Anti-malware updates 
= Tools 

= Backup/Time Machine 

=» Restore/Snapshot 

=» Image recovery 

= Disk maintenance utilities 

= Shell/Terminal 

=» Screen sharing 

= Force Quit 
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a Features 
= Multiple desktops/Mission Control 


=» Key Chain 
= Spotlight 
= iCloud 


=» Gestures 
= Finder 
= Remote Disc 
= Dock 
= Boot Camp 
= Basic Linux commands 


a Is 
= grep 
=» cd 


a shutdown 


= pwd vs. passwd 


= mv 
a cp 
= rm 
= chmod 
a chown 


= iwconfig/ifconfig 











= ps 

= su/sudo 

= apt-get 

= vi 

= dd 

= kill 
2.0 Security 
2.1. Summarize the importance of physical security measures. 22 
= Mantrap 


= Badge reader 

= Smart card 

=» Security guard 

= Door lock 

=» Biometric locks 
=» Hardware tokens 
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= Cable locks 

= Server locks 

= USB locks 

= Privacy screen 

= Key fobs 

= Entry control roster 





2.2. Explain logical security concepts. 


22 





a Active Directory 
= Login script 
= Domain 
= Group Policy/Updates 
a Organizational Units 
= Home Folder 
= Folder redirection 
= Software tokens 
=» MDM policies 
= Port security 
= MAC address filtering 
= Certificates 
= Antivirus/Anti-malware 
= Firewalls 
= User authentication/strong passwords 
= Multifactor authentication 
= Directory permissions 
=» VPN 
=» DLP 
= Access control lists 
= Smart card 
= Email filtering 
= Trusted/untrusted software sources 
= Principle of least privilege 
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2.3. Compare and contrast wireless security protocols and authentication 22 
methods. 





=» Protocols and encryption 22 
=» WEP 
= WPA 
= WPA2 
=» TKIP 
» AES 
=a Authentication 
= Single-factor 
= Multifactor 


= RADIUS 
= TACACS 
2.4. Given a scenario, detect, remove, and prevent malware using 22 


appropriate tools and methods. 





= Malware 22 
a Ransomware 


= Trojan 

= Keylogger 
= Rootkit 

a Virus 

= Botnet 

= Worm 

= Spyware 


=a Tools and methods 
a Antivirus 
= Anti-malware 
= Recovery console 
=» Backup/restore 
=» End-user education 
=» Software firewalls 


= DNS configuration 
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2.5. Compare and contrast social engineering, threats, and vulnerabilities. 


22 





Social engineering 
a Phishing 

= Spear phishing 
= Impersonation 
= Shoulder surfing 
= Tailgating 

= Dumpster diving 
DDoS 

DoS 

Zero-day 
Man-in-the-middle 
Brute force 
Dictionary 

Rainbow table 
Spoofing 
Non-compliant systems 
Zombie 
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2.6. Compare and contrast the differences of basic Microsoft Windows OS 
security settings. 


23 





User and groups 

= Administrator 

=» Power user 

= Guest 

= Standard user 

NTFS vs. share permissions 

=a Allow vs. deny 

=» Moving vs. copying folders and files 
= File attributes 

Shared files and folders 

=» Administrative shares vs. local shares 
=» Permission propagation 

= Inheritance 

System files and folders 

User authentication 

=a Single sign-on 

Run as administrator vs. standard user 
BitLocker 

BitLocker To Go 

EFS 
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2.7. Given a scenario, implement security best practices to secure a 23 
workstation. 





a Password best practices 23 
= Setting strong passwords 
= Password expiration 
=» Screensaver required password 
= BIOS/UEFI passwords 
=» Requiring passwords 
= Account management 
a Restricting user permissions 
=» Logon time restrictions 
= Disabling guest account 
= Failed attempts lockout 
=» Timeout/screen lock 
=» Change default admin user account/password 
a Basic Active Directory functions 
= Account creation 
a Account deletion 
= Password reset/unlock account 
a Disable account 
= Disable autorun 
=a Data encryption 
=» Patch/update management 





2.8. Given a scenario, implement methods for securing mobile devices. 23 





= Screen locks 23 
= Fingerprint lock 
= Face lock 
=» Swipe lock 
= Passcode lock 
= Remote wipes 
= Locator applications 
=» Remote backup applications 
= Failed login attempts restrictions 
a Antivirus/Anti-malware 
= Patching/OS updates 
=» Biometric authentication 


= Full device encryption 
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Multifactor authentication 
Authenticator applications 

Trusted sources vs. untrusted sources 
Firewalls 

Policies and procedures 

= BYOD vs. corporate-owned 

= Profile security requirements 











2.9. Given a scenario, implement appropriate data destruction and disposal 22 
methods. 
= Physical destruction 22 
=" Shredder 
= Drill/hammer 
a Electromagnetic (Degaussing) 
= Incineration 
= Certificate of destruction 
= Recycling or repurposing best practices 
=» Low-level format vs. standard format 
= Overwrite 
= Drive wipe 
2.10. Given a scenario, configure security on SOHO wireless and wired 22 
networks. 
=a Wireless-specific 22 


=» Changing default SSID 

= Setting encryption 

= Disabling SSID broadcast 

=» Antenna and access point placement 
=» Radio power levels 

=» WPS 

Change default usernames and passwords. 
Enable MAC filtering. 

Assign static IP addresses. 

Firewall settings 

Port forwarding/mapping 

Disabling ports 

Content filtering/parental controls 
Update firmware 

Physical security 
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3.0 Software Troubleshooting 





3.1. Given a scenario, troubleshoot Microsoft Windows OS problems. 


24 





Common symptoms 


Slow performance 
Limited connectivity 
Failure to boot 

No OS found 
Application crashes 
Blue screens 

Black screens 
Printing issues 
Services fail to start 
Slow bootup 

Slow profile load 


Common solutions 


Defragment the hard drive 
Reboot 

Kill tasks 

Restart services 

Update network settings 
Reimage/reload OS 

Roll back updates 

Roll back devices drivers 
Apply updates 

Repair application 

Update boot order 

Disable Windows services/applications 
Disable application startup 
Safe boot 

Rebuild Windows profiles 
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3.2. Given a scenario, troubleshoot and resolve PC security issues. 


24 





Common symptoms: pop-ups; browser redirection; security alerts; slow 
performance; Internet connectivity issues; PC/OS lockup; application 
crash; OS updates failures; rogue antivirus; spam; renamed system files; 
disappearing files; file permission changes; hijacked email (responses 
from users regarding email; automated replies from unknown sent email); 
access denied; invalid certificate (trusted root CA); system/application 

log errors 
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3.3. Given a scenario, use best practice procedures for malware removal. 


24 





eO Na 


Identify and research malware symptoms. 
Quarantine the infected systems. 

Disable System Restore (in Windows). 
Remediate the infected systems. 

a. Update the anti-malware software. 


b. Scan and use removal techniques (safe mode, pre-installation 
environment). 


Schedule scans and run updates. 
Enable System Restore and create a restore point (in Windows). 
Educate the end user. 


24 





3.4. Given a scenario, troubleshoot mobile OS and application issues. 


24 





Common symptoms: dim display; intermittent wireless; no wireless 
connectivity; no Bluetooth connectivity; cannot broadcast to external 
monitor; touch screen non-responsive; apps not loading; slow 
performance; unable to decrypt email; extremely short battery life; 
overheating; frozen system; no sound from speakers; inaccurate touch 
screen response; system lockout; app log errors 
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3.5. Given a scenario, troubleshoot mobile OS and application security 
issues. 


24 





Common symptoms: signal drop/weak signal; power drain; slow data 
speeds; unintended WiFi connection; unintended Bluetooth pairing; 
leaked personal files/data; data transmission over limit; unauthorized 
account access; unauthorized location tracking; unauthorized camera/ 
microphone activation; high resource utilization 


24 





4.0 Operational Procedures 





4.1. Compare and contrast best practices associated with types of 
documentation. 


25 





Network topology diagrams 
Knowledge base/articles 

Incident documentation 
Regulatory and compliance policy 
Acceptable use policy 

Password policy 

Inventory management 

= Asset tags 

=» Barcodes 


25 
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4.2. Given a scenario, implement basic change management best practices. 25 
= Documented business processes 25 
= Purpose of the change 
= Scope the change. 
a Risk analysis 
= Plan for change. 
=» End-user acceptance 
=» Change board 
=» Approvals 
= Backout plan 
=» Document changes. 
4.3. Given a scenario, implement basic disaster prevention and recovery 25 
methods. 
= Backup and recovery 25 
= Image level 
= File level 
= Critical applications 
= Backup testing 
=» UPS 
= Surge protector 
= Cloud storage vs. local storage backups 
=» Account recovery options 
4.4. Explain common safety procedures. 26 
=» Equipment grounding 26 


=» Proper component handling and storage: antistatic bags; ESD straps; ESD 
mats; Self-grounding 


= Toxic waste handling: batteries; toner; CRT, Cell phones, Tablets 


= Personal safety: disconnect power before repairing PC; remove jewelry; 
lifting techniques; weight limitations; electrical fire safety, cable 
management; safety goggles; air filter mask 


a Compliance with local government regulations 
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4.5. Explain environmental impacts and appropriate controls. 26 
= MSDS documentation for handling and disposal 26 
=» Temperature, humidity level awareness, and proper ventilation 
=» Power surges, brownouts, and blackouts: battery backup; surge 
suppressor 
= Protection from airborne particles: enclosures; air filters/mask 
=» Dust and debris: compressed air; vacuums 
= Compliance to local government regulations 
4.6. Explain the process for addressing prohibited content/activity, and 26 
privacy, licensing, and policy concepts. 
= Incident response: First response (identify; report through proper 26 
channels; data/device preservation); Use of documentation/ 
documentation changes; Chain of custody (tracking of evidence/ 
documenting process) 
= Licensing/DRM/EULA: open-source vs. commercial license; personal 
license vs. enterprise licenses 
= Regulated data: PII; PCI; GDPR; PHI 
= Follow all policies and security best practices 
4.7. Given a scenario, use proper communication techniques and 25 
professionalism. 
= Use proper language and avoid jargon, acronyms, slang, when applicable. 25 


=» Maintain a positive attitude/Project confidence. 
a Actively listen (taking notes) and avoid interrupting the customer. 


=a Be culturally sensitive: use appropriate professional titles, when 
applicable. 


a Beon time (if late, contact the customer). 


= Avoid distractions: personal calls; texting/social media sites; talking to 
coworkers while interacting with customers; personal interruptions. 


= Dealing with difficult customers or situations: Do not argue with customers 
and/or be defensive; avoid dismissing customer problems; avoid being 
judgmental; clarify customer statements (ask open ended questions to 
narrow the scope of the problem, restate the issue, or question to verify 
understanding); do not disclose experiences via social media outlets. 


= Set and meet expectations/timeline and communicate status with the 
customer: Offer different repair/replacement options, if applicable; 
provide proper documentation on the services provided; follow up with 
customer/user at a later date to verify satisfaction. 


= Deal appropriately with customers’ confidential and private materials: 
located on a computer, desktop, printer, etc. 





Introduction Ixxv 








4.8. Identify the basics of scripting. 21 
= Script file types 21 

a „bat 

= psl 

a vbs 

= sh 

=" .py 

a js 


a Environment variables 
= Comment syntax 
= Basic script constructs 
a Basic loops 
a Variables 
=" Basic data types 








= Integers 

= Strings 
4.9. Given a scenario, use remote access technologies. 21 
a RDP 21 
= Telnet 
= SSH 


a Third-party tools 
= Screen share feature 
= File share 
= Security considerations of each access method 


Exam objectives are subject to change at any time without prior 
TE notice at CompTIA’s sole discretion. Please visit CompTIA’s website 


(www. comptia.org) for the most current listing of exam objectives. 
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1. Which of the following is not considered a system component that can be found inside a 


computer? 
A. CPU 
B. RAM 


C. PCIe graphics adapter 
D. Motherboard 


2. Which of the following is a physical memory format installed directly in today’s desktop 
computer systems? 


A. DIMM 
B. HDD 
C. SSD 

D. RAM 


3. Which of the following are components that can commonly be found on a motherboard? 
(Choose all that apply.) 


A. Slots 

Fan connectors 
Gyroscope 
Scanner 

HDD 


moo w 


4. You are buying optical discs and need to ensure that they have a large capacity. What 
suffix indicates that the capacity of an optical disc is roughly twice that of its standard 


counterpart? 
A. DL 

B. R 

Cc. RW 

D. RE 


5. You are replacing a power supply with a new one. What is the name of the standard power 
connector that has been used with larger hard drives since the first IBM personal computers 
were introduced? 


A. AT system connector 


B. Berg 
C. Molex 
D. ATX system connector 


10. 


11. 
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A user has asked you to install a RAID array. Except in the case of RAID 0, which two 
things do all types of RAID offer? (Choose two.) 


A. Faster read speeds 

B. Faster write speeds 

C. Redundancy 

D. Fault tolerance 

E. Ability to restore automatically from tape after a drive failure 

The ________is the measurement of the number of pixels an LCD monitor can 
display without the image appearing distorted. 

A. Native resolution 

B. Contrast ratio 

C. Maximum resolution 


D. Aspect ratio 


Which of the following video connectors has an analog variety and a digital variety? 
A. VGA 


B. HDMI 
C. DisplayPort 
D. DVI 


Which of the following connectors will you not find on the end of a USB cable? 
(Choose two.) 


A. Lightning 


B. USB-C 
C. Molex 
D. DB-9 

E. eSATA 


Which of the following is a standard computer that can access resources locally as well as 
from servers but requires no specialized enhancements? 


A. Gaming PC 

B. Network-attached storage 
C. Thin client 

D. Thick client 


Which of the following is a requirement for virtualization workstations? 
A. Enhanced video 

B. Enhanced audio 

C. Maximum RAM and CPU cores 

D. ARAID array 
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12. Which of the following is not a requirement for a NAS? 
A. Dual monitors 
B. File sharing services 
C. Gigabit NIC 
D. RAID array 


13. What is the function of the laser in a laser printer? 
A. It heats up the toner so that it adheres to the page. 
B. It charges the paper so that it will attract toner. 
C. It creates an image of the page on the drum. 
D. It cleans the drum before a page is printed. 
14. What is the component called that stores the material that ends up printed to the page by a 
laser printer? 
A. Toner cartridge 
B. Ink cartridge 
C. Laser module 
D. Laser cartridge 
15. Which service was created by Apple to allow iPhones and iPads to print without installing 
printer drivers? 
A. TCP printing 
B. Bonjour 
C. AirPrint 
D. iPrint 


16. Which network connectivity device stops broadcasts from being sent to computers on a 
different network segment? 


A. Hub 

B. Switch 
C. Router 
D. Firewall 


17. Which of the following cable types is made with a plastic coating that does not produce 
toxic fumes when it burns? 


A. Plenum 
B. Fiber 

C. Coaxial 

D. Unshielded twisted-pair 


18. 


19. 


20. 


21. 


22. 


23. 


24. 
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Which of the following are standards used by coaxial cable? (Choose two.) 
A. RG-6 


B. RG-59 

C. RJ-11 

D. RJ-45 

On which port does FTP run by default? 
A. 21 

B. 25 

c. 53 

D. 80 


Which of the following protocols can be used by a client to access email on a server? 
A. DNS 


B. FTP 
C. SMTP 
D. IMAP 


Which of the following protocols provide secure network transmissions? (Choose two.) 
A. SMTP 


B. SNMP 
C. SSH 
D. HTTPS 


Which of the following is a company that provides direct access to the Internet for home 
and business computer users? 


A. ASP 
B. ISP 
C. DNS 
D. DNP 


What is the data throughput provided by one ISDN bearer channel? 


A. 16 Kbps 
B. 56 Kbps 
C. 64 Kbps 
D. 128 Kbps 


Which of the following technologies was developed for the IoT and communicates 
exclusively in the 800 MHz to 900 MHz range? 


A. Bluetooth 


B. SGLTE 
C. Zigbee 
D. Z-Wave 


Ixxx 


25. 


26. 


27. 


28. 


29. 


30. 
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One of your network users was recently caught at work browsing pornographic websites. 
Which of the following servers could be installed to prohibit this activity? 


A. Web 


B. Security 
C. Proxy 
D. DNS 


Google Docs is an example of which type of cloud service? 


A. SaaS 
B. IaaS 
C. PaaS 
D. GaaS 


Which type of software is required to run client-side virtualization on your home network? 
A. Terminal emulation 

B. Process replication 

C. Hyperthreading 

D. Hypervisor 

You are installing a new display for a laptop. Which LCD component is responsible for 
providing brightness? 

A. Backlight 

B. Inverter 

C. Screen 

D. Digitizer 


Your laptop has 4 GB of installed memory and uses shared video memory. If the video card 
is using 512 MB, how much is left for the rest of the system? 


A. 4GB 
B. 3.5 GB 
C. 512 MB 


D. Cannot determine 

A user says that their keyboard backlight was working but now it’s not. What’s the easiest 
way to try to get it working again? 

A. Change the BIOS setting. 

B. Use Windows Control Panel. 

C. Replace the backlight. 

D. Use the keyboard function key. 


31. 


32. 


33. 


34. 


35. 


36. 
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When using a capacitive touch screen on a mobile device, what is the most common tool 
used to input data? 


A. Keyboard 
B. Trackball 
C. Stylus 
D. Finger 


Which technology used by e-readers gives them longer battery life than tablets? 

A. Lithium-polymer battery 

B. Low-power backlight 

C. Electrophoretic ink 

D. Capacitive touch screen 

When setting up two NFC devices, what is the name of the mode that allows the two 
devices to transmit data to each other? 

A. Emulation mode 

B. Peer-to-peer mode 

C. Reader/writer mode 

D. Ad hoc mode 

Which of the following protocols can be used in close range to transfer data between a 


mobile device and a computer system or to allow media to stream from the mobile device to 
an audio system? 


A. SMTP 

B. Bluetooth 
C. NFC 

D. Pegasus 


Which term refers to copying data between a mobile device and a computer system to 
mirror such things as contacts, programs, pictures, and music? 


A. Calibration 

B. Remote wipe 

C. Pairing 

D. Synchronization 


You want to create and send encrypted emails from your smartphone. What do you need 
to use? 


A. POP3 

B. SMTP 
C. S/MIME 
D. VPN 
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37. 


38. 


39. 


40. 


41. 


A user calls to report that his laptop is not booting up. What is the first step you should 
take? 


A. Quarantine the system. 

B. Identify the problem. 

C. Establish a theory of probable cause. 

D. Establish a plan of action to resolve the problem. 

You are troubleshooting a network issue. What feature do switches most likely have to help 
troubleshoot connectivity issues? 

A. Port toggles 

B. Beep codes 

C. Indicator lights 

D. Log entries 

Your laser printer has recently starting printing vertical white lines on documents it prints. 
What is the most likely cause of the problem? 

A. The printer driver is faulty. 

B. The fuser is not heating properly. 

C. There is toner on the transfer corona wire. 

D. There is a scratch on the EP drum. 

A Desktop computer has recently started exhibiting slow performance, particularly when 
opening and saving files to the hard drive. What should you try first? 

A. Replace the hard drive. 

B. Remove old files and applications to free up disk space. 

C. Delete and reinstall the OS. 

D. Defragment the hard drive. 

A network cable has not been working properly. Another technician suggests testing the 
resistance on the cable. Which tools may be capable of doing this? (Choose two.) 

A. Loopback plug 

B. Multimeter 

C. Cable tester 
D 


Tone generator and probe 
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1. 


C. System components are essential for the basic functionality of a computer system. Many 
of the landmarks found on the motherboard can be considered system components, even 
expansion slots, to a degree. What you plug into those slots, however, must be considered 
peripheral to the basic operation of the system. See Chapter 1 for more information. 


A. DIMMs are a type of memory module. HDD is a hard drive, and SSD is a solid-state 
drive—both are for permanent long-term storage. RAM is what memory is called, but it is 
not a physical memory format. See Chapter 1 for more information. 


A, B. Motherboards commonly have RAM slots and expansion slots. Older motherboards 
even had CPU slots. Modern motherboards have connectors for powering cooling fans. 
Gyroscopes are most commonly found in mobile devices. Scanners are external devices. 
Although there might be one or more types of HDD interfaces built into the motherboard, 
the HDD itself is not. See Chapter 1 for more information. 


A. DL stands for double (or dual) layer. With DVDs, the capacity almost doubles, but with 
Blu-ray Discs, it actually does. R means recordable, and RW and RE are used to designate 
re-writeable or re-recordable, respectively. See Chapter 2 for more information. 


C. The standard peripheral power connector, or Molex connector, is commonly used on 
larger drives because it allows more current to flow to the drive than smaller peripheral 
connectors. AT and ATX system connectors are used to connect the power supply to the 
motherboard. A Berg connector was used for floppy disk drives. See Chapter 2 for more 
information. 


C, D. Except for RAID 0, all implementations of RAID offer a way to recover from 

the failure of at least one drive, which is an example of fault tolerance, through the 
implementation of some mechanism that stores redundant information for that purpose. 
Some RAID types offer faster read and/or write performance. RAID 1, for instance, does 
not guarantee either. See Chapter 2 for more information. 


A. The native resolution refers to how many pixels an LCD screen can display (across and 
down) without distortion. The native resolution is based on the placement of the actual 
transistors that create the image by twisting the liquid crystals. The contrast ratio is the 
measurement between the darkest color and the lightest color that an LCD screen can 
display. Monitors do not measure contrast ratio. Aspect ratio measures the width of the 
image versus its height. See Chapter 3 for more information. 


D. DVI comes in both analog (DVI-A) and digital (DVI-D) varieties. VGA is always analog, 
HDMI and DisplayPort are always digital. See Chapter 3 for more information. 


C, D. USB cables are multipurpose cables that connect many types of peripherals. 
Connectors include USB-C, Lightning, and eSATA. Molex connectors provide power to 
PATA hard drives and optical drives. A DB-9 connector is found on the end of a serial 
cable. See Chapter 3 for more information. 
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10. 


11. 


12. 


13. 


14. 


15. 


16. 


17. 


18. 


19. 


20. 


D. A thick client is any computer system with a standard configuration. The gaming PC 
has enhancements over thick clients to their CPU, video, audio, and cooling. The NAS 
(network-attached storage) must have specialized capabilities and services along with a 
faster NIC than the thick client and a RAID array. The thin client is a lesser device in 
comparison to the thick client, but that cost-saving feature is its enhancement. These less 
expensive computers can connect over the network to servers for their operating system 
images and applications. See Chapter 4 for more information. 


C. Virtualization workstations require more RAM than standard systems and need to be 
equipped with as many multicore processors as possible. Video and audio are not resources 
that need to be enhanced for such workstations. Although a RAID array is a wise addition 
whenever a NAS with valuable information is involved, a virtualization workstation does 
not require one. See Chapter 4 for more information. 


A. Dual monitors are not required for a network-attached storage (NAS) device; it might 
not even use a monitor. A NAS will use file sharing and benefit from a Gigabit NIC and 
RAID array. See Chapter 4 for more information. 


C. The laser creates an image on the photosensitive drum that is then transferred to the 
paper by the transfer corona. The fuser heats up the toner so that it adheres to the page. 
The transfer corona charges the page, and the eraser lamp cleans the drum before a page is 
printed. A rubber blade is also used to remove toner physically from the drum. See Chapter 
5 for more information. 


A. Laser printers use toner, which they melt to the page in the image of the text and 
graphics being printed. A toner cartridge holds the fine toner dust until it is used in the 
printing process. See Chapter 5 for more information. 


C. AirPrint was created by Apple to let iPhones and iPads print without installing a printer 
driver. See Chapter 5 for more information. 


C. A router does not pass along broadcasts to computers on other segments. Hubs and 
switches send broadcasts along because they do not segment traffic at the logical network 
address level. See Chapter 6 for more information. 


A. The plenum is an air space within buildings used to circulate breathable air for 
occupants of a building. Fiber, coaxial, and UTP cables are normally enclosed with a 
PVC plastic coating, which produces toxic fumes when burned. For air ventilation spaces, 
plenum-grade cable is required. All cable types have plenum-rated versions. See Chapter 6 
for more information. 


A, B. RG-6 and RG-59 are coaxial cable standards. RJ-11 and RJ-45 are connectors used 
with twisted-pair cabling. See Chapter 6 for more information. 


A. FTP operates on ports 20 and 21. Port 25 is used by SMTP, port 53 by DNS, and port 
80 by HTTP. See Chapter 7 for more information. 


D. The IMAP and POP3 protocols can be used to retrieve email from mail servers. DNS 
is used to resolve host names to IP addresses. FTP is for file transfers, and SMTP is used to 
send email. See Chapter 7 for more information. 


21. 


22. 


23. 


24. 


25. 


26. 


27. 


28. 


29. 


30. 


31. 


32. 


33. 
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C, D. Secure Shell (SSH) and Hypertext Transfer Protocol Secure (HTTPS) are both secure 
transport protocols. Simple Network Management Protocol (SNMP) and Simple Mail 
Transfer Protocol (SMTP) are not inherently secure. See Chapter 7 for more information. 


B. An Internet service provider (ISP) provides direct access to the Internet. ASP is a 
programming language. DNS resolves host names to IP addresses. DNP is not a computer 
networking acronym. See Chapter 8 for more information. 


C. An ISDN B (bearer) channel provides 64 Kbps data throughput. A home-based BRI 
ISDN provides two B channels. See Chapter 8 for more information. 


D. Zigbee and Z-Wave were developed specifically for the Internet of Things (IoT). Zigbee 
can communicate in the 2.4 GHz range as well as the 800 MHz to 900 MHz range. 
Z-Wave can communicate only in the 800 MHz to 900 MHz range. See Chapter 8 for more 
information. 


C. A proxy server can be configured to block access to websites containing potentially 
objectionable material. Web servers host websites. There is no specific security server, 
although there are authentication servers, which provide security. A DNS server resolves 
host names to IP addresses. See Chapter 9 for more information. 


A. Google Docs is software, so it is an example of Software as a Service (SaaS). IaaS is 
Infrastructure as a Service. PaaS is Platform as a Service. GaaS is neither a test objective nor 
currently a cloud service type. See Chapter 9 for more information. 


D. The hypervisor is the key piece of software needed for virtualization. Terminal 
emulation, process replication, and hyperthreading are not related to client-side 
virtualization. See Chapter 9 for more information. 


A. The backlight provides light to the LCD screen. The inverter provides power to the 
backlight, and the screen displays the picture. Digitizers take physical input (such as touch) 
and turn it into electronic data. See Chapter 10 for more information. 


B. If the laptop is using shared video memory, then the system memory is shared with the 
video card. If the video card is using 512 MB (half a gigabyte), then there is 3.5 GB left for 
the system. See Chapter 10 for more information. 


D. Most systems with a keyboard backlight have a keyboard function key to turn the 
backlight on or off—try that first. If not, there is likely a setting in Windows Control Panel, 
or possibly the BIOS. Replacing the backlight is the last resort. See Chapter 10 for more 
information. 


D. Capacitive touch screens react to slight changes in electrical charges. The human finger is 
used as an input device for capacitive touch screens. For more information, see Chapter 11. 


C. E-readers use electrophoretic ink, also known as E Ink. E Ink uses less energy than 
other LCD displays, prolonging battery life. For more information, see Chapter 11. 


B. Card emulation mode, reader/writer mode, and peer-to-peer mode are the three valid 
NFC communication modes. For two devices to transmit to each other, they will use peer- 
to-peer mode. For more information, see Chapter 11. 
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35. 


36. 


37. 


38. 


39. 


40. 


41. 


B. Bluetooth allows you to pair a mobile device to a computer or to a device such as 
an automotive sound system or headset. Data can be transferred between devices, and 
media can be streamed from the mobile device. SMTP is an email protocol. NFC is 
for short-distance data transfers, but not media streaming. Pegasus is not a computer 
communications protocol. For more information, see Chapter 12. 


D. Synchronizing a mobile device with a computer system allows you to mirror personal 
data between the devices, regardless of which one contains the most current data. 
Calibration refers to matching the device’s and user’s perceptions of where the user is 
touching the screen. Remote wipes allow you to remove personal data from a lost or stolen 
device. Pairing is what must be done in Bluetooth for two Bluetooth devices to connect and 
communicate. For more information, see Chapter 12. 


C. The Secure/Multipurpose Internet Mail Extensions (S/MIME) standard for public key 
encryption is used to create and read encrypted emails. POP3 and SMTP are standard email 
protocols. VPNs create a private network over a public network, but they do not encrypt 
email content. For more information, see Chapter 12. 


B. In the best practice methodology to resolve problems, the first step is to identify the 
problem. Quarantining the system is not necessary. Establishing a theory of probable cause 
is the second step, and establishing a plan of action is the fourth step. See Chapter 13 for 
more information. 


C. Switches and other connectivity devices have indicator lights to help indicate when 
things are working normally and when something isn’t working right. There are no port 
toggles, and switches don’t use beep codes. A switch might make a log entry into an 
event logger, but this is less likely than it having indicator lights. See Chapter 13 for more 
information. 


C. White streaks on printouts are most likely caused by toner on the transfer corona wire. 
Vertical black lines are caused by a scratch or a groove in the EP drum. If the fuser were not 
heating properly, toner would not bond to the paper, and you would have smearing. Faulty 
printer drivers will cause garbage to print, or there will be no printing at all. See Chapter 14 
for more information. 


B. Hard drive performance can slow down if the drive gets short on space, particularly 
under 10 percent of free space. First, try removing old files and applications to free up disk 
space. If that doesn’t resolve it, then defragment. If neither of those work, you could have a 
failing hard drive. See Chapter 14 for more information. 


B, C. A multimeter is specifically designed to test for electrical characteristics, so it would 
be the best tool to choose. Cable testers are for verifying that a cable works properly; some 
are capable of testing resistance. A loopback plug is for testing the ability of a network 
adapter to send and receive. A tone generator and probe is used to trace a cable from one 
location to another. See Chapter 14 for more information. 
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1. Which of the following will accomplish a specific task for the user? 
A. Driver 
B. Application 
C. Operating system 
D. Filesystem 


2. Which operating system is a cloud-based operating system? 


A. Linux 

B. Android 

C. Windows 10 
D. Chrome OS 


3. Which edition of Microsoft Windows 10 does not include Cortana? 
A. Home 
B. Pro 
C. Education 


D. Enterprise 


4. You need to change a computer’s name and join it to a domain. Which tool should you use? 
A. Device Manager 
B. User Accounts 
C. System Properties 
D. Credential Manager 
5. You need to manage a remote Windows operating system. Which tool can you use to 
perform this task? 
A. msinfo32 
B. mstsc 
C. msconfig 
D. telnet 


6. Which RAID system requires three or more disks to provide fault tolerance? 


A. Mirroring 


B. Striping 
C. RAID-1 
D. Striping with parity 
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10. 


11. 


12. 


Which Windows 10 feature replaces Internet Explorer? 
A. Spotlight 


B. Edge 
C. Cortana 
D. UWP 


Which Windows Update branch will allow you to install preview releases of updates for 
Windows 10? 


A. Semi-Annual Channel 

B. Semi-Annual Channel (Targeted) 

C. Long-Term Servicing Channel 

D. Insider Program 

You need to check the status of your User Account Control (UAC) and Windows Activation 
on Windows 8/8.1. Which tool will display both of these? 

A. User Settings 

B. Action Center 

C. Firewall with Advanced Security 

D. Windows Update 


Which tool will allow you to ready the operating system for imaging? 

A. Microsoft Deployment Toolkit 

B. Windows Assessment and Deployment Kit 

C. sysprep.exe 

D. Windows Imaging 

Which element of the boot process holds the information that instructs the operating 
system to load from a specific partition? 

A. wintload.exe 

B. Bootmgr 

C. winresume.exe 

D. BCD 

Which feature allows you to create a simple local network, secured by a single password, to 
share files and printers with other Windows 7 clients? 

A. Domain 

B. Workgroup 
C. Libraries 
D 


HomeGroup 


13. 


14. 


15. 


16. 


17. 


18. 
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You need to configure an IP address for Windows 7 to use in the event that the DHCP 
server is down. Which of the following will allow you to perform this task? 


A. The Configuration tab for the network adapter properties 

B. The Alternate Configuration tab of the IPv4 Properties dialog box 
C. The Set Up a New Connection or Network wizard 

D. The Remote tab of the System Properties dialog box 


Which network feature allows a computer to resume operation when it receives a special 
network signal? 


A. WoL 
B. PoE 

C. QoS 
D. DNS 


Which filesystem performs on-the-fly defragmentation? 


A. FAT 
B. NTFS 
C. ext4 
D. FAT32 


Where can you find updates for Apple operating systems? 


A. iTunes 
B. App Store 
C. Keychain 


D. Mission Control 


Which macOS feature is similar to Windows File Explorer? 


A. Keychain 
B. iCloud 
C. Spotlight 
D. Finder 


Which network protocol and port does RDP operate on? 
A. TCP port 3389 

B. TCP port 22 

C. TCP port 23 

D. TCP port 443 
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Which line would be used to comment Windows batch script code? 

A. //comment 

B. ‘comment 

C. REM comment 

D. # comment 

Your system log files report an ongoing attempt to gain access to a single account. This 


attempt has been unsuccessful to this point. What type of attack are you most likely 
experiencing? 


A. Dictionary password attack 

B. Rootkit attack 

C. Worm attack 

D. TCP/IP hijacking 

A server in your network has stopped responding to legitimate requests from users due to a 
malicious influence. Which type of attack has occurred? 

A. DoS 

B. Keylogger 

C. Botnet 

D. Social engineering 

You have found that several employees are using the organization’s email system to solicit 
personal business. What policy would define the abuse of this system? 

A. Acceptable use policy (AUP) 

B. Mobile device management (MDM) 

C. Data loss prevention (DLP) 

D. Email filtering 

A user wants to ensure that all contacts from her mobile device are copied onto her 


computer before migrating to a new device. Which of the following processes can 
accomplish this? 


A. Mirroring 
B. Synchronization 
C. Calling each contact 


D. Attaching the contacts to an email 


Which mobile operating system is typically associated with the . ipa extension? 
A. Android 

B. iOS 

C. Windows Phone 

D. BlackBerry OS 
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A technician is configuring a new Windows computer for a home office. Which of the 
following steps should the technician take to secure the workstation? 


A. Rename default accounts. 
B. Configure single sign-on. 
C. Disable Windows Update. 
D. Disable Action Center pop-ups. 


Which critical system generally requires third-party tools to troubleshoot performance 
problems? 


A. RAM 

B. CPU 

C. Graphics 
D. Network 


What is the last step that should be performed when removing malware? 

A. Identify the malware. 

B. Enable System Protection. 

C. Educate the end user. 

D. Schedule a scan. 

Your mobile device is suffering from an intermittent wireless connection. What is 
recommended to alleviate signal drops? 

A. Shorten the SSID. 

B. Use the 5 GHz band. 

C. Reduce power on the WAP. 

D. Use the 2.4 GHz band. 

While working on a user’s system, you discover a sticky note attached to the bottom of the 


keyboard that has their username and password written on it. The user is not around, and 
you need to verify that the network connection is working. What should you do? 


A. Log in, verify access, and then log out. 

B. Log in and stay logged in when you are finished. 

C. Text the user. 

D. Log in and change the user’s password. 

While installing a new network card, you accidentally broke a component off of the card. 
What should you do? 

A. Explain that the card was broken out of the box. 

B. Install the card anyway. 

C. Inform the customer of the situation. 

D 


Leave everything as-is until you can locate a new card. 
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Which regulation is enforced by Health & Human Services (HHS) to regulate the privacy 
of patient information related to health services? 


A. SOX 

B. FERPA 
C. HIPAA 
D. GLBA 


Which of the following are good measures to take to help to prevent ESD? (Choose two.) 
A. Decrease the humidity. 

B. Tie back long hair. 

C. Take off your shoes. 


D. Perform self-grounding. 


Which of the following screwdrivers has a splined head? 
A. Flat-tipped 


B. Phillips 
C. Axial 
D. Torx 


Which type of software licensing agreement usually provides free trial software, with the 
expectation that you will pay for it if you decide to keep it? 


A. Freeware 

B. Shareware 
C. Open-source 
D 


Single-user 
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1. B. An application is written to perform a specific task for the user, such as word processing 
and data analysis. Drivers allow for the operating system to communicate with the 
hardware. The operating system and the filesystem assist in running applications. See 
Chapter 15 for more information. 


2. D. The Google Chrome OS is a true cloud-based operating system, because all the data is 
stored in the cloud. Cloud-based operating systems require an Internet connection to access 
information. Android and Windows 10 use cloud storage but are not considered cloud- 
based operating systems. Linux is strictly a workstation operating system. See Chapter 15 
for more information. 


3. C. For privacy issues, Windows 10 Education does not include Cortana, since this edition 
is used for academic organizations. Windows 10 Home, Pro, and Enterprise all contain 
Cortana. See Chapter 15 for more information. 


4. C. The System Properties applet (sysdm. cpl) allows you to change a computer’s name 
and join the system to a domain. Device Manager is used to manage hardware resources. 
The User Accounts applet is used to manage user accounts. Credential Manager is used to 
manage stored credentials. See Chapter 16 for more information. 


5. B. The Microsoft Terminal Services Client (mstsc) is used to allow remote connections 
to Window operating systems. Msinfo32 is used to collect information from the Windows 
operating system. Msconfig is used to configure startup and services. Telnet is not used 
to connect to Windows; it is normally used with Linux/UNIX. See Chapter 16 for more 
information. 


6. D. Striping with parity, also known as RAID-S, requires three or more disks and provides 
fault tolerance. Mirroring, also known as RAID-1, requires only two disks. Striping, also 
known as RAID-0, provides no fault tolerance. See Chapter 16 for more information. 


7. B. Although Internet Explorer is still installed in Windows 10, the Edge browser has 
largely replaced it’s functionality in Windows 10. The Spotlight feature will display a 
random wallpaper on the login screen from Bing.com. Cortana is a digital person assistant. 
The Universal Windows Platform (UWP) is a development platform. See Chapter 17 for 
more information. 


8. D. The Insider Program allows for the installation of brand new features before they are 
publically released. The Semi-Annual Channel is normally delayed by three to four months. 
The Semi-Annual Channel (Targeted) branch will install updates as they are released to the 
general public. The Long-Term Servicing Channel never installs new features during the life 
of the version of Windows. See Chapter 17 for more information. 


9. B. The Action Center will allow you to see the status of both the UAC and Windows 
Activation. User Settings will show only the UAC status. Firewall with Advanced Security 
and Windows Update will not show either of these. See Chapter 18 for more information. 
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C. The sysprep.exe utility will allow you to ready the operating system for imaging, by 
resetting specific information, such as the computer name. The Microsoft Deployment 
Toolkit can assist in creating the steps, but it calls on the sysprep tool. The Windows 
Assessment and Deployment Kit allows you to customize the Windows operating system for 
imaging, but it does not ready the operating system for imaging. Windows Imaging (WIM) 
is a file format to contain the image. See Chapter 18 for more information. 


D. The Boot Configuration Data (BCD) holds the information that instructs the 
Windows Boot Manager (bootmgr) to load the operating system from a specific partition. 
Winload.exe loads the operating system kernel. Bootmgr is the initial bootstrap program 
that reads the BCD. Winresume.exe is used when resuming a previous session that has 
been suspended. See Chapter 18 for more information. 


D. HomeGroup allows sharing of files and printers with other Windows 7 clients, secured 
with a single password. Domains require domain controllers and individual accounts. 
Workgroups require user accounts to be set up on each workstation in the network. 
Libraries are components of the Windows 7 operating system and HomeGroups that allow 
for the logical grouping of files. See Chapter 19 for more information. 


B. You can use the Alternate Configuration tab of the IPv4 Properties dialog box to 
configure an IP address for Windows 7 to use in the event the DHCP server is down. The 
Configuration tab for the network adapter properties will allow you change the driver and 
settings for the adapter itself. The Set Up a New Connection or Network wizard is used for 
the initial setup of the network. The Remote tab of the System Properties dialog box allows 
you to select Remote Assistance and Remote Desktop settings. See Chapter 19 for more 
information. 


A. Wake-on-LAN (WoL) allows a computer to awake from sleep when it receives a special 
WoL packet over the network. Power over Ethernet (PoE) is a standard of running power 
for a device over the network connection. Quality of Service (QoS) is a mechanism used by 
network protocols to give certain network protocols priority through the network. Domain 
Name System (DNS) is a naming system used by the Internet and Microsoft that translates 
domain names to IP addresses. See Chapter 19 for more information. 


C. The ext4 filesystem does not suffer from fragmentation, because it performs on-the- 
fly defragmentation. FAT is a 16-bit filesystem that suffers from fragmentation. NTFS is 
a journaled filesystem that suffers from fragmentation. FAT32 is a 32-bit filesystem that 
suffers from fragmentation. See Chapter 20 for more information. 


B. The App Store is where you can find updates for the Apple operating system. iTunes is 
used to purchase and download music, videos, and other content. The Keychain is used 
to store credentials on behalf of the user. Mission Control is used to view all the currently 
running applications. See Chapter 20 for more information. 


D. The macOS Finder is the equivalent to Windows File Explorer. The Keychain is a 
password-management system for the operating system. iCloud is a cloud-based storage 
and backup service. Spotlight helps you find applications, documents, and other files. See 
Chapter 20 for more information. 
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A. The Remote Desktop Protocol (RDP) operates on TCP port 3389. The SSH protocol 
operates on TCP port 22. The Telnet service operates on TCP port 23, and HTTPS operates 
on TCP port 443. See Chapter 21 for more information. 


C. The line REM comment is used to comment Windows batch script code. The line 
//comment is used to comment JavaScript code. The line 'comment is used to comment 
VBScript code. The line # comment is used to comment Bash script code and PowerShell 
code. See Chapter 21 for more information. 


A. A dictionary password attack occurs when a user account is repeatedly attacked using a 
variety of passwords. A rootkit attack would not be immediately seen and would not show 
as an ongoing effort. A worm attack would not be visible as an ongoing attempt to gain 
access. TCP/IP hijacking is a form of a man-in-the-middle attack. See Chapter 22 for more 
information. 


A. A denial-of-service (DoS) attack is used to disrupt legitimate requests from being 
answered. A keylogger is used to steal credentials by recording keystrokes. A botnet is a 
group of computers that are under the control of a threat agent. Social engineering is a 
process in which an attacker attempts to acquire information about your network and 
system by social means, such as talking to people in the organization. See Chapter 22 for 
more information. 


A. The acceptable use policy (AUP) defines the appropriate use of email and other 
organizational systems and resources. Mobile device management (MDM) helps an 
administrator control mobile devices so that data is not exposed. Data loss prevention 
(DLP) is used to prevent personal and confidential information from being emailed 
outside of the organization. Email filtering filters email coming into the organization. 
See Chapter 22 for more information. 


B. Synchronization can copy all contacts, programs, email messages, pictures, music, 
and videos between a mobile device and a computer. Mirroring is a term reserved for 
when devices replicate themselves to similar devices. Calling the contacts won’t achieve 
the desired result, and emailing contacts is inefficient and does not immediately result in 
placing the contacts on the computer. See Chapter 23 for more information. 


B. The . ipa file extension is for iOS App Store package files. Android apps have an 
extension of .apk. The Windows Phone OS is typically associated with the .xap extension. 
Blackberry OS uses .jad. The latter of the two phone types were not discussed in detail in 
this book. See Chapter 23 for more information. 


A. Renaming the default accounts on a new Windows computer is the easiest way to 
secure the operating system. Configuring single sign-on should only be performed if 

a resource is required that only uses SSO as authentication. Disabling Windows Update 
will do the opposite of securing the operating system. Disabling Action Center pop- 
ups will also do the opposite of securing the operating system. See Chapter 23 for 
more information. 


C. Graphics cards usually require third-party tools to diagnosis performance problems. 
RAM problems, CPU problems, and network problems can be diagnosed inside the 
operating system from Task Manager. See Chapter 24 for more information. 
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C. The last step in the malware-removal process is the education of the end user to prevent 
future occurrences of infection. Identifying the malware is the first step in the malware- 
removal process. Enabling System Protection is one of the last steps, but it is not the last 
step. Scheduling a scan should be performed after you have remediated the malware. See 
Chapter 24 for more information. 


B. By using the § GHz wireless band, you can limit the amount of interference from 
external devices, such as microwave ovens and Bluetooth devices. Shortening the SSID 
will have no effect on intermittent signal drops, nor will reducing power on the WAP. 
Using the 2.4 GHz band will probably make signal drops worse. See Chapter 24 for more 
information. 


C. You should text the user and let them know that you need to verify their network 
connection. You should not log in as another person, with their username and password. 
You should not log in and stay logged in when you are finished. You should definitely not 
log in and change the user’s password. See Chapter 25 for more information. 


C. You should be honest and inform the customer of the situation. Explaining that the 
card was broken out of the box is untruthful and deceptive. Installing the card anyway will 
cause new problems. Leaving everything as-is until you can locate a new card does not help 
the customer, since you’ve created a new dilemma. See Chapter 25 for more information. 


C. The Health Insurance Portability and Accountability Act (HIPAA) affects health- 

care providers and providers that process health records. The Sarbanes-Oxley Act (SOX) 

is enforced by the Securities and Exchange Commission (SEC) and regulates sensitive 
financial information and financial records. The Family Educational Rights and Privacy 
Act (FERPA) affects education providers and organizations that process student records. 
The Gramm-Leach-Bliley Act (GLBA) affects providers of financial services and safeguards 
customer information. See Chapter 25 for more information. 


B, D. Long hair or neckties can very easily hold a static charge and damage computer parts. 
In addition, if you don’t have an ESD strap or mat, you should perform self-grounding 
before you touch sensitive computer equipment. Lower humidity actually increases the risk 
of ESD. Taking off your shoes will not limit ESD. See Chapter 26 for more information. 


D. A Torx screwdriver has a splined head, which is used for greater gripping of the screw. 
A flat-tipped screwdriver, as the name suggests, has a flat tip. A Phillips screwdriver has 

a cross, which is used for better gripping over a normal flat-tip screwdriver. An axial 
screwdriver is not a type of screwdriver. See Chapter 26 for more information. 


B. Shareware often provides a free trial of a program, with the expectation that you will 
pay for it if you keep it. Freeware and open-source applications are generally totally free, 
although the developers may ask for donations. Single-user software is licensed for one 
user. See Chapter 26 for more information. 
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a SODIMM 
a DDR2 
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a Triple channel 
a Error correcting 


a Parity vs. non-parity 
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a Motherboard form factor 
a ATX 
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a ITX 
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=» Motherboard connectors types 
= PCI 
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= Riser card 
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SATA 
IDE 
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Firmware upgrades 
Security settings 
Interface configurations 
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= Passwords 
= Drive encryption 

= TPM 

= LoJack 


=» Secure boot 


CMOS battery 
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Virtual technology 
Hyperthreading 
Speeds 
Overclocking 


Integrated GPU 


Compatibility 


AMD 


Intel 


Cooling mechanism 
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Heat sink 
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A personal computer (PC) is a computing device made up of 
many distinct electronic components that all function together 
in order to accomplish some useful task, such as adding up the 
numbers in a spreadsheet or helping you to write a letter. Note that this definition describes 
a computer as having many distinct parts that work together. Most PCs today are modular. 
That is, they have components that can be removed and replaced with another component 
of the same function but with different specifications in order to improve performance. 
Each component has a specific function. 

Much of the computing industry today is focused on smaller devices, such as laptops, 
tablets, and smartphones. Smaller devices such as these require the same components as do 
their bigger desktop-sized cousins. Of course, the components are smaller and many times 
integrated into the same circuit board. The functionality of the individual parts is still 
critical, though, so what you learn here will serve you well regardless of the type of device 
you’re working on. 





Unless specifically mentioned otherwise, the terms PC and computer are 
e used interchangeably throughout this book. 

Even though all parts inside a computer case are important, some are more important 
than others. You’ll sometimes hear people refer to the “big three” computer parts, which 
are the motherboard, processor, and memory. Without these, a computer won’t work, 
whereas if a sound card fails, it’s probably not going to make the entire system inoperable. 
In this chapter, you will learn how to identify, install, and configure the big three, which 
are critical to computer functionality. You'll also learn about cooling systems, because too 


much heat will cause components to melt, which could make for a very bad day for the 
computer user. 


Understanding Motherboards 


The spine of the computer is the motherboard, otherwise known as the system board or 
mainboard. This is the printed circuit board (PCB), which is a conductive series of path- 
ways laminated to a nonconductive substrate that lines the bottom of the computer and is 
often of a uniform color, such as green, brown, blue, black, or red. It is the most impor- 
tant component in the computer because it connects all the other components together. 
Figure 1.1 shows a typical PC system board, as seen from above. All other components are 
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attached to this circuit board. On the system board, you will find the central processing 
unit (CPU) slot or integrated CPU, underlying circuitry, expansion slots, video components, 
random access memory (RAM) slots, and a variety of other chips. We will be discussing 
each of these components throughout this book. 


FIGURE 1.1 Atypical system board 
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System Board Form Factors 


System boards are classified by their form factor (design), such as ATX, micro ATX, and 
ITX. Exercise care and vigilance when acquiring a motherboard and case separately. Some 
cases are less accommodating than others, and they might not be physically compatible 
with the motherboard you choose. 


Understanding Motherboards 


Advanced Technology Extended 


Intel developed the Advanced Technology Extended (ATX) motherboard in the mid- 
1990s to improve upon the classic AT-style motherboard architecture that had ruled the 
PC world for many years. The ATX motherboard has the processor and memory slots at 
right angles to the expansion cards. This arrangement puts the processor and memory in 
line with the fan output of the power supply, allowing the processor to run cooler. And 
because those components are not in line with the expansion cards, you can install full- 
length expansion cards—adapters that extend the full length of the inside of a standard 
computer case—in an ATX motherboard machine. ATX (and its derivatives) is the pri- 
mary PC motherboard form factor in use today. Standard ATX motherboards measure 
12” x 9.6” (305 mm x 244 mm). 


We will discuss expansion cards in more depth (and cover that part of 
A OTE Exam Objective 3.5) in Chapter 2, “Internal Expansion, Storage Devices, 
and Power Supplies.” 


Micro ATX 


A form factor that is designed to work in standard ATX cases, as well as its own smaller 
cases, is known as micro ATX. Micro ATX follows the ATX principle of component 
placement for enhanced cooling over pre-ATX designs but with a smaller footprint. Some 
trade-offs come with this smaller form. For the compact use of space, you must give up 
quantity—that is, quantity of memory slots, motherboard headers, expansion slots, and 
integrated components. You also have fewer micro ATX chassis bays, although the same 
small-scale motherboard can fit into much larger cases if your original peripherals are still 
a requirement. 


~<a In the exam objectives, CompTIA refers to micro ATX as mATX. 
TE 


Be aware that micro ATX systems tend to be designed with power supplies of lower 
wattage in order to help keep power consumption and heat production down. If the system 
has a normal, reduced micro ATX suite of components, the smaller power supply will be 
fine. As more off-board USB ports are added and larger cases are used with additional in- 
case peripherals, a larger power supply might be required. 

Micro ATX motherboards share their width, mounting hole pattern, and rear interface 
pattern with ATX motherboards but are shallower and square, measuring 9.6” x 9.6” (244 mm 
x 244 mm). They were designed to be able to fit into full-size ATX cases. Figure 1.2 shows 
a full-size ATX motherboard next to a micro ATX motherboard. 
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FIGURE 1.2 ATX and micro ATX motherboards 
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VIA Mini-ITX Form Factor Comparison by VIA Gallery from Hsintien, Taiwan; VIA Mini-ITX Form Factor 
Comparison, uploaded by Kozuch, licensed under CC BY 2.0 via Commons 


Information Technology eXtended 


The Information Technology eXtended (ITX) line of motherboard form factors was devel- 
oped by VIA as a low-power, small form factor (SFF) board for specialty uses, including 
home-theater systems, compact desktop systems, gaming systems, and embedded compo- 
nents. ITX itself is not an actual form factor but a family of form factors. The family con- 
sists of the following form factors: 


a Mini-ITX— 6.7” x 6.7” (170 mm x 170 mm) 
= Nano-ITX—4.7” x 4.7” (120 mm x 120 mm) 
=  Pico-ITX—3.9” x 2.8” (100 mm x 72 mm) 

=a  Mobile-ITX—2.4” x 2.4” (60 mm x 60 mm) 

The mini-ITX motherboard has four mounting holes that line up with three or four of 
the holes in the ATX and micro ATX form factors. In mini-ITX boards, the rear interfaces 
are placed in the same location as those on the ATX motherboards. These features make 
mini-ITX boards compatible with ATX chassis. This is where the mounting compatibility 


ends, because despite the PC compatibility of the other ITX form factors, they are used in 
embedded systems, such as set-top boxes, home entertainment systems, and smartphones, 
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and lack the requisite mounting and interface specifications. Figure 1.3 shows the three 
larger forms of ITX motherboards, next to the ATX motherboards for comparison. 


FIGURE 1.3 ITX motherboards 
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VIA Mini-ITX Form Factor Comparison by VIA Gallery from Hsintien, Taiwan; VIA Mainboards Form Factor 
Comparison uploaded by Kozuch, licensed under CC BY 2.0 via Commons 


jA In the exam objectives, CompTIA refers to mini-ITX as mITX. 
TE 


System Board Components 


Now that you understand the basic types of motherboards and their form factors, it’s time 
to look at the key characteristics and components of the motherboard and, where appli- 
cable, their locations relative to each other. The following list summarizes key concepts you 
need to know about motherboards: 


= Bus architecture 

a Chipsets 

= Expansion slots 

= Memory slots and external cache 
= CPUs and their sockets 

= Power connectors 

= Onboard disk drive connectors 

=  BIOS/UEFI/firmware 

a CMOS battery 


=  Front-panel connectors 
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In the following sections, you will learn about some of the most common components of 
a motherboard, what they do, and where they are located on the motherboard. We’ll show 
what each component looks like so that you can identify it on most any motherboard that 
you run across. In the case of some components, this chapter provides only a brief introduc- 
tion, with more detail to come in later chapters. 


Bus Architecture 


In a PC, data is sent from one component to another via a bus, which is a common collec- 
tion of signal pathways. In the very early days, PCs used serial buses, which sent one bit 
at a time and were painfully slow. Brilliant engineers realized that they could redesign the 
bus and send eight bits at a time (over synchronized separate lines), which resulted in a big 
speed increase. This was known as a parallel bus. 

The downside of parallel communications is the loss of circuit length (how long the cir- 
cuit could be) and throughput (how much data could move at one time). The signal could 
travel only a short distance, and the amount of data was limited due to the careful syn- 
chronization needed between separate lines, the speed of which must be controlled to limit 
skewing the arrival of the individual signals at the receiving end. 

What was once old is new again, as engineers have discovered methods to make serial 
transmissions work at data rates that are many times faster than parallel signals. Therefore, 
nearly everything you see today uses a serial bus. The only limitation of serial circuits is 
in the capability of the transceivers, which tends to grow over time at a refreshing rate 
due to technical advancements. Examples of specifications that have heralded the migra- 
tion toward the dominance of serial communications are Serial Advanced Technology 
Attachment (Serial ATA, or SATA), Universal Serial Bus (USB), IEEE 1394/FireWire, and 
Peripheral Component Interconnect Express (PCIe). 


The term bus is also used in any parallel or bit-serial wiring implementa- 

OTE tion where multiple devices can be attached at the same time in parallel or 
in series (daisy-chained). Examples include Small Computer System Inter- 
face (SCSI), USB, and Ethernet. 


On a motherboard, several different buses are used. Expansion slots of various architec- 
tures, such as PCle, are included to allow for the insertion of external devices or adapters. 
Other types of buses exist within the system to allow communication between the CPU, 
RAM, and other components with which data must be exchanged. Except for CPU slots 
and sockets and memory slots, there are no insertion points for devices in many closed bus 
systems because no adapters exist for such an environment. 

The various buses throughout a given computer system can be rated by their bus speeds. 
The higher the bus speed, the higher the performance of which the bus is capable. In some 
cases, various buses must be synchronized for proper performance, such as the system bus 
and any expansion buses that run at the front-side bus speed. Other times, one bus will ref- 
erence another for its own speed. The internal bus speed of a CPU is derived from the front- 
side bus clock, for instance. The buses presented throughout this chapter are accompanied 
by their speeds, where appropriate. 
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Chipsets 


A chipset is a collection of chips or circuits that perform interface and peripheral functions 
for the processor. This collection of chips is usually the circuitry that provides interfaces for 
memory, expansion cards, and onboard peripherals, and it generally dictates how a mother- 
board will communicate with the installed peripherals. 

Chipsets are usually given a name and model number by the original manufacturer. 
Typically, the manufacturer and model also tell you that your particular chipset has a 
certain set of features (for example, type of RAM supported, type and brand of onboard 
video, and so on). 

Chipsets can be made up of one or several integrated circuit chips. Intel-based moth- 
erboards, for example, typically use two chips. To know for sure, you must check the 
manufacturer’s documentation, especially because cooling mechanisms frequently obscure 
today’s chipset chips, sometimes hindering visual brand and model identification. 

Chipsets can be divided into two major functional groups, called Northbridge and 
Southbridge. Let’s take a brief look at these groups and the functions they perform. 


AMD and Intel have integrated the features of Northbridge and South- 
P: OTE bridge into most of their CPUs. Therefore, the CPU provides Northbridge 
and Southbridge functionality as opposed to separate chipsets. 


Northbridge 


The Northbridge subset of a motherboard’s chipset is the set of circuitry or chips that per- 
forms one very important function: management of high-speed peripheral communications. 
The Northbridge is responsible primarily for communications with integrated video using 
PCle, for instance, and processor-to-memory communications. Therefore, it can be said 
that much of the true performance of a PC relies on the specifications of the Northbridge 
component and its communications capability with the peripherals it controls. 


When we use the term Northbridge, we are referring to a functional 
Qo subset of a motherboard’s chipset. There isn’t actually a Northbridge 
brand of chipset. 


The communications between the CPU and memory occur over what is known as the 
front-side bus (FSB), which is just a set of signal pathways connecting the CPU and main 
memory, for instance. The clock signal that drives the FSB is used to drive communications 
by certain other devices, such as PCle slots, making them local-bus technologies. The 
back-side bus (BSB), if present, is a set of signal pathways between the CPU and external 
cache memory. The BSB uses the same clock signal that drives the FSB. If no back-side bus 
exists, cache is placed on the front-side bus with the CPU and main memory. 


12 Chapter 1 = Motherboards, Processors, and Memory 


The Northbridge is directly connected to the Southbridge (discussed next). It controls 
the Southbridge and helps to manage the communications between the Southbridge and the 
rest of the computer. 


Southbridge 


The Southbridge subset of the chipset is responsible for providing support to the slower 
onboard peripherals (USB, Serial and Parallel ATA, PS/2, parallel ports, serial ports, and so 
on), managing their communications with the rest of the computer and the resources given 
to them. These components do not need to keep up with the external clock of the CPU and 
do not represent a bottleneck in the overall performance of the system. Any component 
that would impose such a restriction on the system should eventually be developed for FSB 
attachment. 

In other words, if you’re considering any component other than the CPU, memory and 
cache, or PCle slots, the Southbridge is in charge. Most motherboards today have inte- 
grated USB, network, analog and digital audio, and FireWire ports for the Southbridge to 
manage, for example, all of which are discussed in more detail later in this chapter or in 
Chapter 3, “Peripherals and Connectors.” The Southbridge is also responsible for managing 
communications with the slower expansion buses, such as PCI, and legacy buses. 

Figure 1.4 is a photo of the chipset of a motherboard, with the heat sink of the 
Northbridge at the top left, connected to the heat-spreading cover of the Southbridge at the 
bottom right. 


FIGURE 1.4 A modern computer chipset 
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Figure 1.5 shows a schematic of a typical motherboard chipset (both Northbridge and 
Southbridge) and the components with which they interface. Notice which components 
interface with which parts of the chipset. 


FIGURE 1.5 A schematic of a typical motherboard chipset 
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Expansion Slots 


The most visible parts of any motherboard are the expansion slots. These are small plastic 
slots, usually from 1 to 6 inches long and approximately 1/2-inch wide. As their name sug- 
gests, these slots are used to install various devices in the computer to expand its capabili- 
ties. Some expansion devices that might be installed in these slots include video, network, 
sound, and disk interface cards. 

If you look at the motherboard in your computer, you will more than likely see one of 
the main types of expansion slots used in computers today, which are PCI and PCle. In the 
following sections, we will cover how to visually identify the different expansion slots on 
the motherboard. 


PCI Expansion Slots 


It’s now considered an older technology, but many motherboards in use today still con- 
tain 32-bit Peripheral Component Interconnect (PCI) slots. They are easily recogniz- 
able because they are only around 3-inches long and classically white, although modern 
boards take liberties with the color. PCI slots became extremely popular with the advent 
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of Pentium-class processors in the mid-1990s. Although popularity has shifted from PCI to 
PCle, the PCI slot’s service to the industry cannot be ignored; it has been an incredibly pro- 
lific architecture for many years. 

PCI expansion buses operate at 33 MHz or 66 MHz (version 2.1) over a 32-bit (4-byte) 
channel, resulting in data rates of 133 MBps and 266 MBps, respectively, with 133 MBps 
being the most common, server architectures excluded. PCI is a shared-bus topology, how- 
ever, so mixing 33 MHz and 66 MHz adapters in a 66MHz system will slow all adapters 
to 33 MHz. Older servers might have featured 64-bit PCI slots as well, since version 1.0, 
which double the 32-bit data rates. See the sidebar in this chapter titled “Arriving at the 
Exact Answer” for help with understanding the math involved in frequencies and bit rates. 








Arriving at the Exact Answer 


To get the math exactly right when dealing with frequencies and data rates ending in 33 
and 66, you have to realize that every 33 has an associated one-third (1/3), and every 66 
has an associated two-thirds (2/3). The extra quantities are left off of the final result but 
must be added back on to get the math exactly right. The good news is that omitting 
these small values from the equation still gets you close, and a bit of experience with the 
numbers leads to being able to make the connection on-the-fly. 





PCI slots and adapters are manufactured in 3.3V and SV versions. Universal adapters 
are keyed to fit in slots based on either of the two voltages. The notch in the card edge of 
the common SV slots and adapters is oriented toward the front of the motherboard, and the 
notch in the 3.3V adapters toward the rear. Figure 1.6 shows several PCI expansion slots. 
Note the 5V 32-bit slot in the foreground and the 3.3V 64-bit slots. Also notice that a uni- 
versal 32-bit card, which has notches in both positions, is inserted into and operates fine in 
the 64-bit 3.3V slot in the background. 


FIGURE 1.6 PCI expansion slots 
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PCle Expansion Slots 


The most common expansion slot architecture that is being used by motherboards is PCI 
Express (PCle). It was designed to be a replacement for AGP, or accelerated graphics port, 
and PCI. PCle has the advantage of being faster than AGP while maintaining the flexibility 
of PCI. PCIe has no plug compatibility with either AGP or PCI. Some modern PCIe mother- 
boards can be found with regular PCI slots for backward compatibility, but AGP slots have 
not been included for many years. 

PCle is casually referred to as a bus architecture to simplify its comparison with other 
bus technologies. True expansion buses share total bandwidth among all slots, each of 
which taps into different points along the common bus lines. In contrast, PCIe uses a 
switching component with point-to-point connections to slots, giving each component 
full use of the corresponding bandwidth and producing more of a star topology versus a 
bus. Furthermore, unlike other expansion buses, which have parallel architectures, PCle 
is a serial technology, striping data packets across multiple serial paths to achieve higher 
data rates. 

PCle uses the concept of lanes, which are the switched point-to-point signal paths 
between any two PCIe components. Each lane that the switch interconnects between any 
two intercommunicating devices comprises a separate pair of wires for both directions of 
traffic. Each PCle pairing between cards requires a negotiation for the highest mutually 
supported number of lanes. The single lane or combined collection of lanes that the switch 
interconnects between devices is referred to as a link. 

There are seven different link widths supported by PCle, designated x1 (pronounced “by 
1”), x2, x4, x8, x12, x16, and x32, with x1, x4, and x16 being the most common. The x8 
link width is less common than these but more common than the others. A slot that sup- 
ports a particular link width is of a physical size related to that width because the width is 
based on the number of lanes supported, requiring a related number of wires. As a result, 

a x8 slot is longer than a x1 slot but shorter than a x16 slot. Every PCIe slot has a 22-pin 
portion in common toward the rear of the motherboard, which you can see in Figure 1.7, in 
which the rear of the motherboard is to the left. These 22 pins comprise mostly voltage and 
ground leads. 

Four major versions of PCIe are currently specified: 1.x, 2.x, 3.0, and 4.0. For the 
four versions, a single lane, and hence a x1 slot, operates in each direction (or transmits 
and receives from either communicating device’s perspective), at a data rate of 250 MBps 
(almost twice the rate of the most common PCI slot), 500 MBps, approximately 1 GBps, 
and roughly 2 GBps, respectively. 
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FIGURE 1.7  PCle expansion slots 
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PCle 5.0 is expected to be finalized in the middle of 2019. Much like its pre- 
Á TE decessors, it doubles the speed of the previous version. Therefore, a PCle 

5.0 x1 adapter would operate at about 4 MBps in each direction. It usually 

takes at least 12 months for manufacturers to produce devices after a stan- 


dard has been ratified, so it’s unlikely that any motherboards or cards will 
hit the market before mid-2020 at the earliest. 


An associated bidirectional link has a nominal throughput of double these rates. Use 
the doubled rate when comparing PCIe to other expansion buses because those other rates 
are for bidirectional communication. This means that the 500 MBps bidirectional link of 
a x1 slot in the first version of PCIe was comparable to PCPs best, a 64-bit slot running at 
66 MHz and producing a throughput of 533 MBps. 


PP Bidirectional means that data flows in both directions, often simultane- 
A: ously. Unidirectional means data flows in only one direction. 


Combining lanes simply results in a linear multiplication of these rates. For example, 
a PCle 1.1 x16 slot is capable of 4 GBps of throughput in each direction, 16 times the 
250 MBps x1 rate. Bidirectionally, this fairly common slot produces a throughput of 
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8 GBps. Each subsequent PCle specification doubles this throughput. The aforementioned 
PCle 5.0 will produce bidirectional throughput of approximately 128 GBps, which is faster 
than some DDR4 standards (which is to say, it’s really, really fast). 








Using Shorter Cards in Longer Slots 


Up-plugging is defined in the PCle specification as the ability to use a higher-capability 
slot for a lesser adapter. In other words, you can use a shorter (fewer-lane) card ina 
longer slot. For example, you can insert a x8 card into a x16 slot. The x8 card won't com- 
pletely fill the slot, but it will work at x8 speeds if up-plugging is supported by the moth- 
erboard. Otherwise, the specification requires up-plugged devices to operate at only the 
x1 rate. This is something you should be aware of and investigate in advance. Down- 
plugging is possible only on open-ended slots, although not specifically allowed in the 
official specification. Even if you find or make (by cutting a groove in the end) an open- 
ended slot that accepts a longer card edge, the inserted adapter cannot operate faster 
than the slot’s maximum rated capability because the required physical wiring to the PCle 
switch in the Northbridge is not present. 





Because of its high data rate, PCIe is the current choice of gaming aficionados. 
Additionally, technologies similar to NVIDIA’s Scalable Link Interface (SLI) allow such 
users to combine preferably identical graphics adapters in appropriately spaced PCle x16 
slots with a hardware bridge to form a single virtual graphics adapter. The job of the bridge 
is to provide non-chipset communication among the adapters. The bridge is not a require- 
ment for SLI to work, but performance suffers without it. SLI-ready motherboards allow 
two, three, or four PCIe graphics adapters to pool their graphics processing units (GPUs) 
and memory to feed graphics output to a single monitor attached to the adapter acting as 
SLI master. SLI implementation results in increased graphics performance over single-PCle 
and non-PCle implementations. 

Refer back to Figure 1.7, which is a photo of an SLI-ready motherboard with three PCIe 
x16 slots (every other slot, starting with the top one), one PCIe x1 slot (second slot from the 
top), and two PCI slots (first and third slots from the bottom). Notice the latch and tab that 
secures the x16 adapters in place by their hooks. Any movement of these high-performance 
devices can result in temporary failure or poor performance. 








Using Riser Cards 


Most PC expansion cards plug directly into the motherboard. A special type of expansion 
card, called a riser card, provides additional slots that other expansion cards plug into. The 
other expansion cards are then parallel to the motherboard, as opposed to perpendicular. 
Figure 1.8 shows an example of a riser card. It’s an older example, but it illustrates the con- 
cept well. 
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FIGURE 1.8 Riser card in a motherboard 





By Dale Mahalko, Gilman, WI, USA CC BY-SA 3.0 from Wikimedia Commons 


Riser cards aren't often found in desktop PCs today but do still find some use in rack- 
mounted servers with low-profile cases. The motherboard must be designed to accept 
a riser card, and the case needs to be built for it as well, for the external portion of the 
expansion card to be accessible. 





Memory Slots and Cache 


Memory, or random access memory (RAM), slots are the next most notable slots on a 
motherboard. These slots are designed for the modules that hold memory chips that make 
up primary memory, which is used to store currently used data and instructions for the 
CPU. Many types of memory are available for PCs today. In this chapter, you will become 
familiar with the appearance and specifications of the slots on the motherboard so that you 
can identify them and appropriately install or replace RAM. 

For the most part, PCs today use memory chips arranged on a small circuit board. A 
dual in-line memory module (DIMM) is one type of circuit board. Today’s DIMMs differ 
in the number of conductors, or pins, that each particular physical form factor uses. Some 
common examples include 168-, 184-, 240-, and 288-pin configurations. In addition, lap- 
top memory comes in smaller form factors known as small outline DIMMs (SODIMMs) 
and MicroDIMMs. The single in-line memory module (SIMM) is an older memory form 
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factor that began the trend of placing memory chips on modules. More detail on memory 

packaging and the technologies that use them can be found later in this chapter in the sec- 
tion “Understanding Memory.” Figure 1.9 shows the form factors for some once-popular 

memory modules. Notice how they basically look the same, but that the module sizes and 
keying notches (in between the pins along the bottom) are different. 


FIGURE 1.9 Different memory module form factors 
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Memory slots are easy to identify on a motherboard. Classic DIMM slots were usu- 
ally black and, like all memory slots, were placed very close together. DIMM slots with 
color-coding are more common these days, however. The color-coding of the slots acts as 
a guide to the installer of the memory. See the section “Single-, Dual-, and Triple-Channel 
Memory” later in this chapter for more on the purpose of this color-coding. Consult the 
motherboard’s documentation to determine the specific modules allowed as well as their 
required orientation. The number of memory slots varies from motherboard to mother- 
board, but the structure of the different slots is similar. Metal pins in the bottom make 
contact with the metallic pins on each memory module. Small metal or plastic tabs on each 
side of the slot keep the memory module securely in its slot. Figure 1.10 shows four memory 
slots at the bottom of the image, with the CPU socket included for reference. 

Sometimes, the amount of primary memory installed is inadequate to service additional 
requests for memory resources from newly launched applications. When this condition 
occurs, the user may receive an “out of memory” error message and an application may fail 
to launch. One solution for this is to use the hard drive as additional RAM. This space on 
the hard drive is known as a swap file or a paging file. The technology in general is known 
as virtual memory. The swap file, PAGEFILE.SYS in modern Microsoft operating systems, 
is an optimized space that can deliver information to RAM at the request of the memory 
controller faster than if it came from the general storage pool of the drive. Note that virtual 
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memory cannot be used directly from the hard drive; it must be paged into RAM as the old- 
est contents of RAM are paged out to the hard drive to make room. The memory controller, 
by the way, is the chip that manages access to RAM as well as adapters that have had a few 
hardware memory addresses reserved for their communication with the processor. 


FIGURE 1.10 DDR memory slots 
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Nevertheless, relying too much on virtual memory (check your page fault statistics in the 
Reliability and Performance Monitor) results in the entire system slowing down noticeably. 
An inexpensive and highly effective solution is to add physical memory to the system, thus 
reducing its reliance on virtual memory. More information on virtual memory and its con- 
figuration can be found in Chapter 15, “Operating System Basics.” 

Another type of memory most PCs have is cache memory, which is small and fast and 
logically sits between the CPU and RAM. Cache is a very fast form of memory forged from 
static RAM, which is discussed in detail in the section “Understanding Memory” later in 
this chapter. Cache improves system performance by predicting what the CPU will ask for 
next and prefetching this information before being asked. This paradigm allows the cache 
to be smaller in size than the RAM itself. Only the most recently used data and code or 
that which is expected to be used next is stored in cache. 

You'll see three different cache designations: 


Level 1 Cache L1 cache is the smallest and fastest, and it’s on the processor die itself. In 
other words, it’s an integrated part of the manufacturing pattern that’s used to stamp the 
processor pathways into the silicon chip. You can’t get any closer to the processor than that. 
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While the definition of L1 cache has not changed much over the years, the same is not 
true for other cache levels. L2 and L3 cache used to be on the motherboard but now have 
moved on-die in most processors as well. The biggest differences are the speed and whether 
they are shared. 

Level 2 Cache L2 cache is larger but a little slower than L1 cache. For processors with 
multiple cores, each core will generally have its own dedicated L1 and L2 caches. A few 
processors share a common L2 cache among the cores. 

Level 3 Cache L3 cache is larger and slower than L1 or L2, and is usually shared among 
all processor cores. 

The typical increasing order of capacity and distance from the processor die is L1 cache, 
L2 cache, L3 cache, RAM, and HDD/SSD (hard disk drive and solid-state drive—more 
on these in Chapter 2). This is also the typical decreasing order of speed. The following 
list includes representative capacities of these memory types. The cache capacities are for 
each core of the original Intel Core i7 processor. The other capacities are simply modern 
examples. 


= [L1 cache—64 KB (32 KB each for data and instructions) 
=a L2cache—256 KB 

=» L3cache—4-12 MB 

= RAM—4-64 GB 

= HDD/SSD—100s of GB to several TB 


One way to find out how much cache your system has is to use a utility such as CPU-Z, 
as shown in Figure 1.11. CPU-Z is freeware that can show you the amount of cache, pro- 
cessor name and number, motherboard and chipset, and memory specifications. It can be 
found at www. cpuid.com. 


FIGURE 1.11 Cache in a system 


























Ë: CPU-Z = x 
CPU Caches | Mainboard | Memory | SPD | Graphics | Bench | About | 
rL1D-Cache 
Size |32 KBytes x4 
Descriptor |8-way set associative, 64-byte line size 
pahe — — — ——— 
Size |32 KBytes | x4 
Descriptor |8-way set associative, 64-byte line size 
L2 Cache = = = 
Size | 256 KBytes | x4 
Descriptor |4-way set associative, 64-byte line size 
L3 Cache 
Size |8 MBytes | 
Descriptor | 16-way set associative, 64-byte line size 























CPU-Z ver. 1.85.0.x64 _ Toole || Validate | Close | 





22 Chapter 1 = Motherboards, Processors, and Memory 


Figure 1.11 shows L1D and L11 caches. Many CPUs will split L1 cache into 
OTE cache for data (L1D) or instructions (L11). It’s highly unlikely you'll be tested 
on this, but it’s interesting to know. 


Central Processing Unit and Processor Socket 


The “brain” of any computer is the central processing unit (CPU). There’s no computer 
without a CPU. There are many different types of processors for computers—so many, 
in fact, that you will learn about them later in this chapter in the section “Understanding 
Processors.” 

Typically, in today’s computers, the processor is the easiest component to identify on 
the motherboard. It is usually the component that has either a fan or a heat sink (usually 
both) attached to it (as shown in Figure 1.12). These devices are used to draw away and 
disperse the heat that a processor generates. This is done because heat is the enemy of 
microelectronics. Today’s processors generate enough heat that, without the heat sink, they 
would permanently damage themselves and the motherboard in a matter of minutes, if not 
seconds. 


FIGURE 1.12 Two heat sinks, one with a fan 





CPU sockets are almost as varied as the processors that they hold. Sockets are basically 
flat and have several columns and rows of holes or pins arranged in a square, as shown in 
Figure 1.13. The left socket is known as Socket AM3, made for AMD processors such as 
the Athlon II, and has holes to receive the pins on the CPU. This is known as a pin grid 
array (PGA) arrangement for a CPU socket. The holes and pins are in a row/column orien- 
tation, an array of pins. The right socket is known as Socket R or Socket LGA 2011, and 
there are spring-loaded pins in the socket and a grid of lands on the CPU. The land grid 
array (LGA) is a newer technology that places the delicate pins (yet more sturdy than those 
on chips) on the cheaper motherboard instead of on the more expensive CPU, opposite to 
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the way that the aging PGA does. The device with the pins has to be replaced if the pins 
become too damaged to function. The PGA and LGA are mentioned again later in this 
chapter in the section “Understanding Processors.” 


FIGURE 1.13 CPU socket examples 





Modern CPU sockets have a mechanism in place that reduces the need to apply con- 
siderable force to the CPU to install a processor, which was necessary in the early days of 
personal computing. Given the extra surface area on today’s processors, excessive pressure 
applied in the wrong manner could damage the CPU packaging, its pins, or the mother- 
board itself. For CPUs based on the PGA concept, zero insertion force (ZIF) sockets are 
exceedingly popular. ZIF sockets use a plastic or metal lever on one of the two lateral edges 
to lock or release the mechanism that secures the CPU’s pins in the socket. The CPU rides 
on the mobile top portion of the socket, and the socket’s contacts that mate with the CPU’s 
pins are in the fixed bottom portion of the socket. The image of Socket AM3 shown on the 
left in Figure 1.13 illustrates the ZIF locking mechanism at the right edge of the socket. 

For processors based on the LGA concept, a socket with a different locking mechanism 
is used. Because there are no receptacles in either the motherboard or the CPU, there is 
no opportunity for a locking mechanism that holds the component with the pins in place. 
LGA-compatible sockets, as they’re called despite the misnomer, have a lid that closes over 
the CPU and is locked in place by an L-shaped arm that borders two of the socket’s edges. 
The nonlocking leg of the arm has a bend in the middle that latches the lid closed when the 
other leg of the arm is secured. The right image in Figure 1.13 shows an LGA socket with 
no CPU installed and the locking arm secured over the lid’s tab, along the top edge. 

Listing out all the socket types you might encounter would take a long time. Instead, 
we'll give you a sampling of some that you might see. The first thing you might notice is 
that sockets are made for Intel or AMD processors, but not both. Keep that in mind when 
replacing a motherboard or a processor. Make sure that the processor and motherboard 
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were designed for each other (even within the Intel or AMD families); otherwise, they won’t 
fit each other and won’t work. Table 1.1 lists some common desktop socket/CPU relation- 
ships. Servers and laptops/tablets generally have different sockets altogether, although some 
CPU sockets will support processors designed for desktops or servers. 


TABLE 1.1 Desktop PC socket types and the processors they support 





Socket Released Type Processors 

Socket AM4 2017 PGA AMD Ryzen 3, Ryzen 5, Ryzen 7 

Socket TR4 2017 LGA AMD Ryzen Threadripper 

LGA 2066 (Socket R4) 2017 LGA Intel Skylake-X and Kaby Lake-X 

LGA 1151 (Socket H4) 2015 LGA Intel Skylake, Kaby Lake, and Coffee Lake 
Socket FM2+ 2014 PGA AMD Kaveri and Godavari 

Socket AM1 2014 PGA AMD Athlon and Sempron 

LGA 1150 (Socket H3) 2013 LGA Intel Haswell, Haswell Refresh, and Broadwell 
Socket FM2 2012 PGA AMD Trinity 

LGA 2011 (Socket R) 2011 LGA Intel Core i7 (3xxx and 4xxx series), Xeon E5 


2xxx/4xxx series 


LGA 1155 (Socket H2) 2011 LGA Intel Sandy Bridge, Ivy Bridge, Xeon E3 12xx 
series 

Socket FM1 2011 PGA AMD Llano 

Socket AM3+ 2011 PGA AMD FX Vishera, FX Zambezi, Phenom Il, 


Athlon Il, Sempron 


Socket AM3 2009 PGA AMD Phenom II, Athlon Il, Sempron, Opteron 
1300 series 
LGA 1156 (Socket H) 2009 LGA Intel Core i7 (800 series), Core i5 (700 and 600 


series), Core i3 (500 series), Xeon (X3400 and 
L3400 series), Pentium (G6000 series), and 
Celeron (G1000 series) 


LGA 1366 (Socket B) 2008 LGA Intel Core i7 (900 series), Xeon (35xx, 36xx, 
55xx, and 56xx series) 
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Some legacy sockets, such as Socket 5 and Socket 7, supported both plat- 
I: forms, but it’s unlikely that you will see one in the wild, as they are over 
25 years old now. 








CD Real World Scenario 


Playing the Name Game 


Back in simpler times, Intel marketed only one or two processors at a time. For example, 
when the 80486DX was in the market, they didn’t have much else. Then the Pentium came 
along, followed by the Celeron (which everyone knew was a stripped-down Pentium), and 
the Pentium M, which was the mobile version of the Pentium. The active roster of proces- 
sors started to expand. 


Now, there are a lot of active chips, including the Xeon, Core series (i9, i7, i5, i3, and m3), 
and even the Pentium and Celeron are still kicking around. And with new innovation com- 
ing nearly every year, it’s difficult to keep track of what’s current. 


In about 2013, Intel began to publicize its project code names a bit more to make it easier 

to keep track of the new technology bundles. No longer were techs able to remember that 
an i7 required a specific type of socket, but they needed to know which i7 they were deal- 
ing with. For example, a Broadwell-based (2014) i7 requires an LGA 1150 socket, whereas 

most Kaby Lake (2016) i7s use an LGA 1151. One pin makes a huge difference! 


Odds are you aren't going to need to memorize all possible Intel chip and motherboard 
socket combinations for the exam or the real world. In the real world, the Internet’s 
always there to remind you of which socket you need for a specific processor. To give you 
a flavor, though, Table 1.2 covers a few of Intel’s recent CPU architecture codenames and 
the associated processor model numbers. 


TABLE 1.2 Select Intel desktop processors 





Name (Year) Core i9 Core i7 Core i5 Core i3 
Coffee Lake (2017) n/a 87xx 86xx 83xx 
80xx 85xx 81xx 
84xx 


Kaby Lake (2016) n/a 77XxX 76xxX 73xx 
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TABLE 1.2 Select Intel desktop processors (continued) 





Name (Year) Core i9 Core i7 Core i5 Core i3 
77xx 76xx 71xx 
75xXx 
74xx 
Skylake (2015) 79xxXE 78xxX 66xx 63xx 
79xxX 67xx 65xx 61x 
64xx 60xx 


To make things even more interesting, you might hear references to the nth generation of 
the i5 or i7 processor. For example, Coffee Lake is considered 8th generation. Other Intel 
codenames you will hear about over the next few years are Whiskey Lake, Cannon Lake, 
Ice Lake, Tiger Lake, and Sapphire Rapids. 


When you go to the parts store, though, you’re probably not going to ask for a Coffee 
Lake i7. You'll ask for an i7, see what they have in stock, and then figure out what mother- 
board you need. (Or alternatively, based on your motherboard, you'll figure out which i7 
you can use.) 


What does all of this mean you need to do? First, get comfortable knowing that a 
new architecture may require a different motherboard. Second, feel free to memorize 
some of the more common combinations of motherboards and processors if you find 
it helpful. Some combinations are easier than others. For example, all the processors 
in Table 1.2 ending in an X need an LGA 2066 socket (see Table 1.1). The others need 
LGA 1151. 





Power Connectors 


In addition to these sockets and slots on the motherboard, a special connector (the 24-pin 
white block connector shown in Figure 1.14) allows the motherboard to be connected to 
the power supply to receive power. This connector is where the ATX power connector 
(mentioned in Chapter 2 in the section “Understanding Power Supplies”) plugs in. 
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FIGURE 1.14 AnATX power connector on a motherboard 





Onboard Disk Drive Connectors 


Nearly all users store data, and the most widely used data storage device is a hard drive. 
There are multiple types of hard drives, and we’ll get into them in more detail in Chapter 2. 
Of course, those drives need to connect to the motherboard, and that’s what we’ll cover here. 

At one time, integrated drive electronics (IDE) drives were the most common type of 
hard drive found in computers. Though often thought of in relation to hard drives, IDE was 
much more than a hard drive interface; it was also a popular interface for many other drive 
types, including optical drives and tape drives. Today, we call it IDE Parallel ATA (PATA) 
and consider it to be a legacy technology. Figure 1.15 shows two PATA interfaces; you can 
see that one pin in the center is missing (as a key) to ensure that the cable gets attached 
properly. The industry now favors Serial ATA instead. 

Serial ATA (SATA) began as an enhancement to the original ATA specifications, also 
known as IDE and, today, PATA. Technology is proving that the orderly progression of 
data in a single-file path is superior to placing multiple bits of data in parallel and trying 
to synchronize their transmission to the point that each bit arrives simultaneously. In other 
words, if you can build faster transceivers, serial transmissions are simpler to adapt to the 
faster rates than are parallel transmissions. 

The first version of SATA, known as SATA 1.5 Gbps (and also by the less-preferred 
terms SATA I and SATA 150), used an 8b/10b-encoding scheme that requires 2 non-data 
overhead bits for every 8 data bits. The result is a loss of 20 percent of the rated bandwidth. 
The silver lining, however, is that the math becomes quite easy. Normally, you have to 
divide by 8 to convert bits to bytes. With 8b/10b encoding, you divide by 10. Therefore, the 
150 MBps throughput for which this version of SATA was nicknamed is easily derived as 
1/10 of the 1.5 Gbps transfer rate. The original SATA specification also provided for hot 
swapping at the discretion of the motherboard and drive manufacturers. 
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FIGURE 1.15 Two PATA hard drive connectors 





Similar math works for SATA 3 Gbps, also recklessly tagged as SATA II and SATA 300, 
and SATA 6 Gbps, which is not approved for being called SATA III or SATA 600, but the 
damage is already done. Note that each subsequent version doubles the throughput of the 
previous version. Figure 1.16 shows four SATA headers on a motherboard that will receive 
the data cable. Note that identifiers silkscreened onto motherboards often enumerate such 
headers. The resulting numbers are not related to the SATA version that the header sup- 
ports. Instead, such numbers serve to differentiate headers from one another and to map to 
firmware identifiers, often visible within the BIOS configuration utility. 


FIGURE 1.16 Four SATA headers 
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DPO A newer type of expansion slot used quite often for hard drives is M.2. It’s 
‘Qi not designed specifically for hard drives, but rather to replace the mini 
Serial ATA (mSATA) standard for ultra-small expansion components in lap- 
tops and smaller devices. We'll talk more about it in Chapter 2. 


BIOS/UEFI and the POST Routine 


Firmware is the name given to any software that is encoded in hardware, usually a read- 
only memory (ROM) chip, and it can be run without extra instructions from the operating 
system. Most computers, large printers, and devices with no operating system use firmware 
in some sense. The best example of firmware is a computer’s Basic Input/Output System 
(BIOS), which is burned into a chip. Also, some expansion cards, such as SCSI cards and 
graphics adapters, use their own firmware utilities for setting up peripherals. 

The BIOS chip, also referred to as the ROM BIOS chip, is one of the most important 
chips on the motherboard. This special memory chip contains the BIOS system software 
that boots the system and allows the operating system to interact with certain hardware in 
the computer in lieu of requiring a more complex device driver to do so. The BIOS chip is 
easily identified: If you have a brand-name computer, this chip might have on it the name of 
the manufacturer and usually the word BIOS. For clones, the chip usually has a sticker or 
printing on it from one of the major BIOS manufacturers (AMI, Phoenix/Award, Winbond, 
and others). On later motherboards, the BIOS might be difficult to identify or it might even 
be integrated into the Southbridge, but the functionality remains regardless of how it’s 
implemented. 

The successor to the BIOS is the Unified Extensible Firmware Interface (UEFI). The 
extensible features of the UEFI allow for the support of a vast array of systems and plat- 
forms by allowing the UEFI access to system resources for storage of additional modules 
that can be added at any time. In the following section, you'll see how a security feature 
known as Secure Boot would not be possible with the classic BIOS. It is the extensibility of 
the UEFI that makes such technology feasible. 


BIOS/UEFI 


Figure 1.17 gives you an idea of what a modern BIOS chip might look like on a mother- 
board. Despite the 1998 copyright on the label, which refers only to the oldest code pres- 
ent on the chip, this particular chip can be found on motherboards produced as late as 
2009. Notice also the Reset CMOS jumper at lower left and its configuration silkscreen at 
upper left. You might use this jumper to clear the CMOS memory, discussed shortly, when 
an unknown password, for example, is keeping you out of the BIOS configuration utility. 
The jumper in the photo is in the clear position, not the normal operating position. System 
bootup is typically not possible in this state. 
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FIGURE 1.17 A BIOS chip ona motherboard 
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At a basic level, the BIOS controls system boot options such as the sequence of drives 
from which it will look for operating system boot files. The boot sequence menu from a 
BIOS is shown in Figure 1.18. Other interface configuration options will be available too, 
such as enabling or disabling integrated ports or an integrated video card. 


FIGURE 1.18 BIOS boot sequence 
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Most BIOS setup utilities have more to offer than a simple interface for making selec- 
tions and saving the results. For example, these utilities often offer diagnostic routines that 
you can use to have the BIOS analyze the state and quality of the same components that it 
inspects during bootup, but at a much deeper level. 

Consider the scenario where a computer is making noise and overheating. You can 
use the BIOS configuration utility to access built-in diagnostics to check the rotational 
speed of the motherboard fans. If the fans are running slower than expected, the noise 
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could be related to the bearings of one or more fans, causing them to lose speed and, 
thus, cooling capacity. 

There is often also a page within the utility that gives you access to such bits of informa- 
tion as current live readings of the temperature of the CPU and the ambient temperature of 
the interior of the system unit. On such a page, you can set the temperature at which the 
BIOS sounds a warning tone and the temperature at which the BIOS shuts down the system 
to protect it. You can also monitor the instantaneous fan speeds, bus speeds, and voltage 
levels of the CPU and other vital landmarks to make sure that they are all within acceptable 
ranges. You might also be able to set a lower fan speed threshold at which the system warns 
you. In many cases, some of these levels can be altered to achieve such phenomena as over- 
clocking, which is using the BIOS to set the system clock higher than what the CPU is rated 
for, or undervolting, which is lowering the voltage of the CPU and RAM, which reduces 
power consumption and heat production. 

Some BIOS firmware can monitor the status of a contact on the motherboard for intru- 
sion detection. If the feature in the BIOS is enabled and the sensor on the chassis is con- 
nected to the contact on the motherboard, the removal of the cover will be detected and 
logged by the BIOS. This can occur even if the system is off, thanks to the CMOS battery. 
At the next bootup, the BIOS will notify you of the intrusion. No notification occurs over 
subsequent boots unless additional intrusion is detected. 

The BIOS has always played a role in system security. Since the early days of the per- 
sonal computer, the BIOS allowed the setting of two passwords—the user password and the 
supervisor, or access, password. The user password is required to leave the initial power-on 
screens and begin the process of booting an operating system. The supervisor password is 
required before entering the BIOS configuration utility. It is always a good idea to set the 
supervisor password, but the user password should not be set on public systems that need 
to boot on their own, in case of an unforeseen power-cycle. 

In more recent years, the role of the BIOS in system security has grown substantially. 
BIOS security has been extended to a point where the operating system is ready to take it 
over. The BIOS was a perfect candidate to supervise security and integrity in a platform- 
independent way. Coupled with the Trusted Platform Module (TPM), a dedicated security 
coprocessor, or crypto processor, the BIOS can be configured to boot the system only 
after authenticating the boot device. This authentication confirms that the hardware being 
booted to has been tied to the system containing the BIOS and TPM, a process known as 
sealing. Sealing the devices to the system also prohibits the devices from being used after 
removing them from the system. For further security, the keys created can be combined 
with a PIN or password that unlocks their use or with a USB flash drive that must be 
inserted before booting. 

Microsoft’s BitLocker uses the TPM to encrypt the entire drive. Normally, only user 
data can be encrypted, but BitLocker encrypts operating-system files, the Registry, the 
hibernation file, and so on, in addition to those files and folders that file-level encryption 
secures. If any changes have occurred to the Windows installation, the TPM does not 
release the keys required to decrypt and boot to the secured volume. 
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When a certain level of UEFI is used, the system firmware can also check digital signa- 
tures for each boot file it uses to confirm that it is the approved version and has not been 
tampered with. This technology is known as Secure Boot. The boot files checked include 
option ROMs (defined in the following section), the boot loader, and other operating- 
system boot files. Only if the signatures are valid will the firmware load and execute the 
associated software. 

The problem can now arise that a particular operating system might not be supported 
by the database of known-good signatures stored in the firmware. In such a situation, 
the system manufacturer can supply an extension that the UEFI can use to support that 
operating system—a task not possible with traditional BIOS-based firmware. 


P LoJack for Laptops is a UEFl-enabled security system developed by 
A: Absolute Software. It performs similarly to other UEFI security methods 
already discussed, such as drive encryption, but adds a few features. For 
example, LoJack can remotely track stolen laptops as well as lock and 
delete certain files. 


POST 


A major function of the BIOS is to perform a process known as a power-on self-test 
(POST). POST is a series of system checks performed by the system BIOS and other high- 
end components, such as the SCSI BIOS and the video BIOS, known collectively as option 
ROMs. Among other things, the POST routine verifies the integrity of the BIOS itself. It 
also verifies and confirms the size of primary memory. During POST, the BIOS also ana- 
lyzes and catalogs other forms of hardware, such as buses and boot devices, as well as man- 
ages the passing of control to the specialized BIOS routines mentioned earlier. The BIOS is 
responsible for offering the user a key sequence to enter the configuration routine as POST 
is beginning. Finally, once POST has completed successfully, the BIOS selects the boot 
device highest in the configured boot order and executes the master boot record (MBR) or 
similar construct on that device so that the MBR can call its associated operating system’s 
boot loader and continue booting up. 

The POST process can end with a beep code or displayed code that indicates the issue dis- 
covered. Each BIOS publisher has its own series of codes that can be generated. Figure 1.19 
shows a simplified POST display during the initial boot sequence of a computer. 


FIGURE 1.19 An example of a system POST screen 
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Flashing the System BIOS 


If ever you find that a hardware upgrade to your system is not recognized, even after the 
latest and correct drivers have been installed, perhaps a BIOS upgrade, also known as 
flashing the BIOS, is in order. Only certain hardware benefits from a BIOS upgrade, such 
as drives and a change of CPU or RAM types. Very often, this hardware is recognized 
immediately by the BIOS and has no associated driver that you must install. So, if your 
system doesn’t recognize the new device, and there’s no driver to install, the BIOS is a 
logical target. 


Let’s be clear about the fact that we are not talking about entering the BIOS setup utility 
and making changes to settings and subsequently saving your changes before exiting 
and rebooting. What we are referring to here is a replacement of the burned-in code 
within the BIOS itself. You might even notice after the upgrade that the BIOS setup utility 
looks different or has different pages and entries than before. 


On older systems and certain newer ones, a loss of power during the upgrade results in 
catastrophe. The system becomes inoperable until you replace the BIOS chip, if possible, 
or the motherboard itself. Most new systems, however, have a fail-safe or two. This could 
be a portion of the BIOS that does not get flashed and has just enough code to boot the 
system and access the upgrade image. It could be a passive section to which the upgrade 
is installed and switched to only if the upgrade is successful. Sometimes this is controlled 
onscreen. At other times, there may be a mechanism, such as a jumper, involved in the 
recovery of the BIOS after a power event occurs. The safest bet is to make sure that your 
laptop has plenty of battery power and is connected to AC power or your desktop is con- 
nected to an uninterruptible power supply (UPS). 


In all cases, if you think you need a BIOS upgrade, do not consult the BIOS manufacturer. 
Instead, go to the motherboard or system manufacturer and check its website. The moth- 
erboard or system manufacturer vendors have personalized their BIOS code after licens- 
ing it from the BIOS publisher. The vendor will give you access to the latest code as well 
as the appropriate flashing utility for its implementation. 





CMOS and CMOS Battery 

Your PC has to keep certain settings when it’s turned off and its power cord is unplugged: 
=» Date 

= Time 

= Hard drive/optical drive configuration 

a= Memory 

= CPU settings, such as overclocking 


= Integrated ports (settings as well as enable/disable) 
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= Boot sequence 

= Power management 

a Virtualization support 

a Security (passwords, Trusted Platform Module settings, LoJack) 


Consider a situation where you added a new graphics adapter to your desktop computer, 
but the built-in display port continues to remain active, prohibiting the new interface from 
working. The solution might be to alter your BIOS configuration to disable the internal 
graphics adapter, so that the new one will take over. Similar reconfiguration of your BIOS 
settings might be necessary when overclocking—or changing the system clock speed—is 
desired, or when you want to set BIOS-based passwords or establish TPM-based whole- 
drive encryption, as with Microsoft’s BitLocker. While not so much utilized today, the 
system date and time can be altered in the BIOS configuration utility of your system; once, 
in the early days of personal computing, the date and time actually might have needed to be 
changed this way. 

Your PC keeps these settings in a special memory chip called the complementary metal 
oxide semiconductor (CMOS) memory chip. Actually, CMOS (usually pronounced 
see-moss) is a manufacturing technology for integrated circuits. The first commonly used 
chip made from CMOS technology was a type of memory chip, the memory for the BIOS. 
As a result, the term CMOS stuck and is the accepted name for this memory chip. 

The BIOS starts with its own default information and then reads information from the 
CMOS, such as which hard drive types are configured for this computer to use, which 
drive(s) it should search for boot sectors, and so on. Any overlapping information read 
from the CMOS overrides the default information from the BIOS. A lack of corresponding 
information in the CMOS does not delete information that the BIOS knows natively. This 
process is a merge, not a write-over. CMOS memory is usually not upgradable in terms of 
its capacity and might be integrated into the BIOS chip or the Southbridge. 


Although there are technical differences, in the real world the terms BIOS 
s TE and CMOS (and BIOS chip and CMOS chip) are used interchangeably. 
You will hear someone say, “Did you check the BIOS?” or, “Did you check 
CMOS settings?” and they’re referring to the same thing. Even though it’s 
an oversimplification, most people feel comfortable with thinking about 
the BIOS as the firmware that controls the boot process, whereas CMOS 
is the chip itself. It’s incredibly unlikely that the A+ exam or any person 
is going to ask you to differentiate between the two, unless you get a job 
focusing specifically on those technologies. 


To keep its settings, integrated circuit-based memory must have power constantly. When 
you shut off a computer, anything that is left in this type of memory is lost forever. The 
CMOS manufacturing technology produces chips with very low power requirements. As 
a result, today’s electronic circuitry is more susceptible to damage from electrostatic dis- 
charge (ESD). Another ramification is that it doesn’t take much of a power source to keep 
CMOS chips from losing their contents. 
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To prevent CMOS from losing its rather important information, motherboard manu- 
facturers include a small battery called the CMOS battery to power the CMOS memory, 
shown in the bottom-left corner of Figure 1.20. The batteries come in different shapes and 
sizes, but they all perform the same function. Most CMOS batteries look like large watch 
batteries or small cylindrical batteries. Today’s CMOS batteries are most often of a long- 
life, non-rechargeable lithium chemistry. 


FIGURE 1.20 CMOS battery 





Front- and Top-Panel Connectors 


From the time of the very first personal computer, there has been a minimum expectation 
as to the buttons and LEDs that should appear on the front of the case. In today’s cases, 
buttons and LEDs have been added and placed on the top of the case or on a beveled edge 
between the top and the front. They have also been left on the front or have been used in a 
combination of these locations. 

Users expect a power button to use to turn the computer on. (These were on the side 
or back of very early PCs.) The soft power feature available through the front power but- 
ton, which is no more than a relay, allows access to multiple effects through the contact on 
the motherboard, based on how long the button is pressed. These effects can be changed 
through the BIOS or operating system. Users also expect a power light, often a green LED, 
to assure them that the button did its job. As time progressed, users were introduced to new 
things on the front panel of their computers. Each of these components depends on connec- 
tivity to the motherboard for its functionality. As a result, most motherboards have these 
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standardized connections in common. The following list includes the majority of these 
landmarks: 


= Power button 

= Power light 

= Reset button 

a Drive activity lights 
= Audio jacks 

= USB ports 


So common are the various interfaces and indicators found on the front panel of today’s 
computer chassis that the industry has standardized on a small number of connectors, making 
attachment to motherboards much simpler. Figure 1.21 shows a diagram for a motherboard 
header. Consult the motherboard’s documentation for a particular model’s pin assignments. 


FIGURE 1.21 The front-panel motherboard header 
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Reset Button 


The reset button appeared as a way to reboot the computer from a cold startup point with- 
out removing power from the components. Keeping the machine powered tends to prolong 
the life of the electronics affected by power cycling. Pressing the reset button also gets 
around software lockups because the connection to the motherboard allows the system to 
restart from the hardware level. One disadvantage to power cycling is that certain circuits, 
such as memory chips, might need time to drain their charge for the reboot to be com- 
pletely successful. This is why there is always a way to turn the computer off as well. 


Drive Activity Light 

In the early days of personal computing, the hard disk drive’s LED had to be driven by 

the drive itself. Before long, the motherboard was equipped with drive headers, so adding 
pins to drive the drive activity light was no issue. These days, all motherboards supply this 
connectivity. The benefit of having one LED for all internal drives is that all the drives are 
represented on the front panel when only one LED is provided. The disadvantage might 

be that you cannot tell which drive is currently active. This tends to be a minor concern 
because you often know which drive you’ve accessed. If you haven’t intentionally accessed 
any drive, it’s likely the drive that holds the operating system or virtual-memory swap file is 
being accessed by the system itself. In contrast, external drives with removable media, such 
as optical drives, supply their own activity light on their faceplate. 


Audio Jacks 


Early generations of optical drives had to have a special cable attached to the rear of the 
drive. The cable was then attached to the sound card if audio CDs were to be heard through 
the speakers attached to the sound card. Sound emanating from a CD-ROM running an 
application, such as a game, did not have to take the same route and could travel through 
the same path from the drive as general data. The first enhancement to this arrangement 
came in the form of a front 3.5 mm jack on the drive’s faceplate that was intended for head- 
phones but could also have speakers connected to it. The audio that normally ran across the 
special cable was rerouted to the front jack when something was plugged into it. 

Many of today’s motherboards have 10-position pin headers designed to connect to 
standardized front-panel audio modules. Some of these modules have legacy AC’97 analog 
ports on them, whereas others have high-definition (HD) audio connections. Motherboards 
that accommodate both have a BIOS setting that enables you to choose which header you 
want to activate, with the HD setting most often being the default. 


USB Ports 


So many temporarily attached devices feature USB connectivity, such as USB keys (flash 
drives) and cameras, that front-panel connectivity is a must. Finding your way to the back 
of the system unit for a brief connection is hardly worth the effort in some cases. For many 
years, motherboards have supplied one or more 10-position headers for internal connectiv- 
ity of front-panel USB ports. Because this header size is popular for many applications, only 
9 positions tend to have pins protruding, while the 10th position acts as a key, showing 


38 Chapter 1 = Motherboards, Processors, and Memory 


up in different spots for each application to discourage the connection of the wrong cable. 
Figure 1.22 shows USB headers on a motherboard. The labels “USB56” and “USB78” indi- 
cate that one block serves ports 5 and 6, while the other serves ports 7 and 8, all of which 
are arbitrary, based on the manufacturer’s numbering convention. 


FIGURE 1.22 Two motherboard USB headers 





Understanding Processors 


Now that you’ve learned the basics of the motherboard, you need to learn about the most 
important component on the motherboard: the CPU. The role of the CPU, or central pro- 
cessing unit, is to control and direct all the activities of the computer using both external 
and internal buses. It is a processor chip consisting of an array of millions of transistors. 
Intel and Advanced Micro Devices (AMD) are the two largest PC-compatible CPU manu- 
facturers. Their chips were featured in Table 1.1 during the discussion of the sockets into 
which they fit. 

Today’s AMD and Intel CPUs should be compatible with every PC-based operating sys- 
tem and application in the market. It’s possible that you could run into an app that doesn’t 
work quite right on an AMD chip, but those cases are exceedingly rare. From a compatibil- 
ity standpoint, the most important thing to remember is that the motherboard and proces- 
sor need to be made for each other. The rest of the hardware plugs into the motherboard 
and will be CPU brand agnostic. 


The term chip has grown to describe the entire package that a technician 

OTE might install in a socket. However, the word originally denoted the silicon 
wafer that is generally hidden within the carrier that you actually see. The 
external pins that you see are structures that can withstand insertion into 
a socket and are carefully threaded from the wafer’s minuscule contacts. 
Just imagine how fragile the structures must be that you don’t see. 


Older CPUs are generally square, with contacts arranged in a pin grid array (PGA). Prior 
to 1981, chips were found in a rectangle with two rows of 20 pins known as a dual in-line 
package (DIP)—see Figure 1.23. There are still integrated circuits that use the DIP form 
factor; however, the DIP form factor is no longer used for PC CPUs. Most modern CPUs 
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use the LGA form factor. Figure 1.13, earlier in this chapter, shows an LGA socket next to 
a PGA socket. Additionally, the ATX motherboard in Figure 1.2 has a PGA socket, while 
the micro ATX motherboard has an LGA. 


FIGURE 1.23 DIP and PGA 





DIP (Dual In-line Package) 





Intel and AMD both make extensive use of an inverted socket/processor combination 
of sorts. As mentioned earlier, the land grid array (LGA) packaging calls for the pins to be 
placed on the motherboard, while the mates for these pins are on the processor packaging. 
As with PGA, LGA is named for the landmarks on the processor, not the ones on the moth- 
erboard. As a result, the grid of metallic contact points, called lands, on the bottom of the 
CPU gives this format its name. 

You can easily identify which component inside the computer is the CPU because it is 
a large square lying flat on the motherboard with a very large heat sink and fan (refer to 
Figure 1.12). The CPU is almost always located very close to the RAM to improve system 
speed, as shown in Figure 1.1, Figure 1.2, and Figure 1.10. 

Modern processors may feature the following characteristics: 


Multicore Older processors were single core, meaning that there was one set of instruc- 
tion pathways through the processor. Therefore, they could process one set of tasks at a 
time. Designers then figured out how to speed up the computer by creating multiple cores 
within one processor package. Each core effectively operates as its own independent proces- 
sor, provided that the operating system and applications are able to support multicore tech- 
nology. (Nearly all do.) Today, almost all desktop CPUs in the market are multicore. 


As an interesting aside, throughout the 1980s and 1990s, processor clock 

Pn speeds grew at very fast rates. But they haven't gotten much faster over 
the last 10-15 years as designers ran into technical limitations for increas- 
ing speeds. Instead, computers have gotten faster because of the introduc- 
tion of multicore processors, which is basically like having two (or four or 
eight) separate processors in one computer. 


Hyperthreading This term refers to Intels Hyper-Threading Technology (HTT). HTT is 
a form of simultaneous multithreading (SMT). SMT takes advantage of a modern CPU’s 
superscalar architecture. Superscalar processors can have multiple instructions operating 
on separate data in parallel. 


HTT-capable processors appear to the operating system to be two processors. As a 
result, the operating system can schedule two processes at the same time, as in the case 
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of symmetric multiprocessing (SMP), where two or more processors use the same system 
resources. In fact, the operating system must support SMP in order to take advantage of 
HTT. If the current process stalls because of missing data caused by, say, cache or branch 
prediction issues, the execution resources of the processor can be reallocated for a different 
process that is ready to go, reducing processor downtime. 


HTT manifests itself in the Windows 10 Task Manager by, for example, showing graphs 
for twice as many CPUs as the system has cores. These virtual CPUs are listed as logical 
processors (see Figure 1.24). 


FIGURE 1.24 Logical processors in Windows 
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For an in-market example, compare the Intel iS with the Intel i7. Similar models will have 
the same number of cores (say, four), but the i7 supports HTT, whereas the i5 does not. 
This gives the i7 a performance edge over its cousin. For everyday email and Internet use, 
this difference won’t amount to much. But for someone who is using resource-intensive 
apps such as online gaming or virtual reality, the difference can be important. 


Understanding Processors 


41 





sS Real World Scenario 


Which CPU Do You Have? 





The surest way to determine which CPU your computer is using is to open the case and 
view the numbers stamped on the CPU, a process that today requires removal of the active 

heat sink. However, you may be able to get an idea without opening the case and removing 

the heat sink and fan because many manufacturers place a very obvious sticker somewhere 
on the case indicating the processor type. Failing this, you can always go to the manufac- 
turer’s website and look up the information on the model of computer you have. 


An easier way may be to look in Control Panel > System, as shown in Figure 1.25. Even 
more detailed information can be found by running the System Information by clicking 
Start and entering msinfo32.exe. Click System Information when it appears as the Best 
Match. A final way to determine a computer’s CPU is to save your work, exit any open 
programs, and restart the computer. Watch closely as the computer boots back up. You 
should see a notation that tells you what chip you are using. 


FIGURE 1.25 System information 
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Windows edition 
Windows 10 Home Bel Ps 
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System 
Processor: Intel(R) Core(TM) i7 CPU 860 @2.80GHz 2.80 GHz 
Installed memory (RAM): 8.00 GB 
System type: 64-bit Operating System, x64-based processor 
Pen and Touch: No Pen or Touch Input is available for this Display 
Computer name, domain, and workgroup settings 
Computer name: DESKTOP-EFODRK1 @ change settings 


Full computer name: DESKTOP-EFODRK1 

Computer description: 

Workgroup: WORKGROUP 
Windows activation 


Windows is activated Read the Microsoft Software License Terms 











Throttling CPU throttling allows for reducing the operating frequency of the CPU dur- 
ing times of less demand or during battery operation. CPU throttling is very common in 
processors for mobile devices, where heat generation and system-battery drain are key 
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issues of full power usage. You might discover throttling in action when you use a utility 
that reports a lower CPU clock frequency than expected. If the load on the system does not 
require full-throttle operation, there is no need to push such a limit. 


Speed The speed of the processor is generally described in clock frequency (MHz or 
GHz). Since the dawn of the personal computer industry, motherboards have included 
oscillators, quartz crystals shaved down to a specific geometry so that engineers know 
exactly how they will react when a current is run through them. The phenomenon of a 
quartz crystal vibrating when exposed to a current is known as the piezoelectric effect. The 
crystal (XTL) known as the system clock keeps the time for the flow of data on the moth- 
erboard. How the front-side bus uses the clock leads to an effective clock rate known as the 
FSB speed. As discussed in the section “Types of Memory” later in this chapter, the FSB 
speed is computed differently for different types of RAM (DDR2, DDR3, DDR4, and so 
forth). From here, the CPU multiplies the FSB speed to produce its own internal clock rate, 
producing the third speed mentioned thus far. 


As a result of the foregoing tricks of physics and mathematics, there can be a discrepancy 
between the front-side bus frequency and the internal frequency that the CPU uses to latch 
data and instructions through its pipelines. This disagreement between the numbers comes 
from the fact that the CPU is capable of splitting the clock signal it receives from the exter- 
nal oscillator that drives the front-side bus into multiple regular signals for its own inter- 
nal use. In fact, you might be able to purchase a number of processors rated for different 
(internal) speeds that are all compatible with a single motherboard that has a front-side bus 
rated, for instance, at 1,333 MHz. Furthermore, you might be able to adjust the internal 
clock rate of the CPU that you purchased through settings in the BIOS. The successful tech- 
nician needs to be familiar with more basic information than this, however. The sidebar 
titled “Matching System Components” explains these basics. 


The speed of a processor can also be tweaked by overclocking, or running the processor 

at a higher speed than that which the manufacturer rated it. Running at a higher speed 
requires more voltage and also generates more heat, which can shorten the life of the CPU. 
Manufacturers discourage the practice (of course, they want you to just buy a faster and 
more expensive CPU), and it often voids any warranty. Therefore, our official recommenda- 
tion is to not do it. If you’re curious, though, plenty of information on how to overclock is 
available online. 








Matching System Components 


In a world of clock doubling, tripling, quadrupling, and so forth, it becomes increasingly 
important to pay attention to what you are buying when you purchase CPUs, memory, 
and motherboards a la carte. The only well-known relationship that exists in the 
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marketplace among these components is the speed of the FSB (in MHz) and the 
throughput of the memory (in MBps). Because 8 bytes are transferred in parallel by a 
processor with a 64-bit (64 bits = 8 bytes) system data bus, you have to know the FSB 
rating before you choose the RAM for any particular modern motherboard. For example, 
an FSB of 800 MHz requires memory rated at a throughput of 6,400 MBps (800 million 
cycles per second x 8 bytes per cycle). 


Matching CPUs with motherboards or CPUs with memory requires consulting the docu- 
mentation or packaging of the components. Generally, the CPU gets selected first. Once 
you know the CPU you want, the motherboard tends to come next. You must choose a 
motherboard that features a socket compatible with your chosen CPU. The FSB or Quick- 
Path Interconnect (OPI) used on the selected motherboard/CPU dictates the RAM that you 
should purchase. OPI is discussed in more detail later in this chapter, in the “Choosing the 
Right Memory for Your CPU” sidebar. 





32- and 64-Bit Processors The set of data lines between the CPU and the primary 
memory of the system can be 32 or 64 bits wide, among other widths. The wider the bus, 
the more data that can be processed per unit of time, and hence, more work can be per- 
formed. Internal registers in the CPU might be only 32 bits wide, but with a 64-bit system 
bus, two separate pipelines can receive information simultaneously. For true 64-bit CPUs, 
which have 64-bit internal registers and can run x64 versions of Microsoft operating 
systems, the external system data bus will always be 64 bits wide or some larger multiple 
thereof. 


Virtualization Support Many of today’s CPUs support virtualization in hardware, which 
eases the burden on the system that software-based virtualization imposes. For more infor- 
mation on virtualization, see Chapter 9, “Network Services, Virtualization, and Cloud 
Computing.” AMD calls its virtualization technology AMD-V (V for virtualization), 
whereas Intel calls theirs Virtualization Technology (VT). Most processors made today 
support virtual technology, but not all. Keep in mind that the BIOS and operating system 
must support it as well for virtualization to work. You may need to manually enable the 
virtualization support in the BIOS before it can be used. If you have an Intel processor 

and would like to check its support of VT, visit the following site to download the Intel 
Processor Identification Utility: 


https: //downloadcenter.intel.com/download/7838 


As shown in Figure 1.26, the CPU Technologies tab of this utility tells you if your CPU 
supports Intel VT. 
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FIGURE 1.26 Intel Processor Identification Utility 
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Intel(R) Virtualization Technology Yes 
Intel(R) Hyper-Threading Technology Yes 
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Other Intel Technologies Supported 


Enhanced Intel SpeedStep(R) Technology Yes Intel(R) Advanced Vector Extensions No 
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Intel(R) SSE2 Yes Intel VT-x with Extended Page Tables Yes 
Intel(R) SSE3 Yes 
Intel(R) SSE4 Yes 


Intel processor numbers are not a measure of performance. Processor numbers differentiate features within each processor 
Da not across different processor families. See http://www intel.com/products/processor_number for details. 















Integrated GPU Intel and AMD both have a line of low-power CPUs, originally aimed at 
the netbook and embedded markets, that have built-in graphics processing units (GPUs). 
Building in specialized functionality to CPUs is nothing new, but before now, math copro- 
cessors were some of the most complex features added on to the die of CPUs. A GPU, then, 
which is normally a large chip on your graphics adapter, is quite a bit more complex than 
anything heretofore integrated into the CPU. Integrated GPUs take much of the burden off of 
the CPU itself in addition to minimizing the amount of off-package communication that must 
occur, which improves overall system performance. As if that were not enough, the CPUs 

in this class are quite a bit smaller than standard CPUs. The Intel Atom and AMD Fusion 
(now simply APU for Accelerated Processing Unit) lines of CPUs were the first to have built-in 
GPUs and open the door for other complex systems to be built into future processors. 


Understanding Memory 


“More memory, more memory, I don’t have enough memory!” Today, adding memory is 
one of the most popular, easy, and inexpensive ways to upgrade a computer. As the com- 
puter’s CPU works, it stores data and instructions in the computer’s memory. Contrary to 
what you might expect from an inexpensive solution, memory upgrades tend to afford the 
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greatest performance increase as well, up to a point. Motherboards have memory limits; 
operating systems have memory limits; CPUs have memory limits. 

To identify memory visually within a computer, look for several thin rows of small cir- 
cuit boards sitting vertically, potentially packed tightly together near the processor. In situ- 
ations where only one memory stick is installed, it will be that stick and a few empty slots 
that are tightly packed together. Figure 1.27 shows where memory is located in a system— 
in this case, all four banks are full. 


FIGURE 1.27 Location of memory within a system 





Important Memory Terms 

There are a few technical terms and phrases that you need to understand with regard to 
memory and its function: 

= Parity checking 

=a  Error-correcting code (ECC) 

= Single- and double-sided memory 

=  Single-, dual-, and triple-channel memory 


These terms are discussed in detail in the following sections. 
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Parity Checking and Memory Banks 


Parity checking is a rudimentary error-checking scheme that offers no error correction. 
Parity checking works most often on a byte, or 8 bits, of data. A ninth bit is added at the 
transmitting end and removed at the receiving end so that it does not affect the actual data 
transmitted. If the receiving end does not agree with the parity that is set in a particular 
byte, a parity error results. The four most common parity schemes affecting this extra bit 
are known as even, odd, mark, and space. Even and odd parity are used in systems that 
actually compute parity. Mark (a term for a digital pulse, or 1 bit) and space (a term for the 
lack of a pulse, or a 0 bit) parity are used in systems that do not compute parity but expect 
to see a fixed bit value stored in the parity location. Systems that do not support or reserve 
the location required for the parity bit are said to implement non-parity memory. 

The most basic model for implementing memory in a computer system uses eight mem- 
ory chips to form a set. Each memory chip holds millions or billions of bits of information, 
each in its own cell. For every byte in memory, one bit is stored in each of the eight chips. 
A ninth chip is added to the set to support the parity bit in systems that require it. One or 
more of these sets, implemented as individual chips or as chips mounted on a memory mod- 
ule, form a memory bank. 

A bank of memory is required for the computer system to recognize electrically that the min- 
imum number of memory components or the proper number of additional memory components 
has been installed. The width of the system data bus, the external bus of the processor, dictates 
how many memory chips or modules are required to satisfy a bank. For example, one 32-bit, 
72-pin SIMM (single in-line memory module) satisfies a bank for an old 32-bit CPU, such as a 
386 or 486 processor. Two such modules are required to satisfy a bank for a 64-bit processor— 
a Pentium, for instance. However, only a single 64-bit, 168-pin DIMM is required to satisfy the 
same Pentium processor. For those modules that have fewer than eight or nine chips mounted 
on them, more than 1 bit for every byte is being handled by some of the chips. For example, 
if you see three chips mounted, the two larger chips customarily handle 4 bits, a nibble, from 
each byte stored, and the third, smaller chip handles the single parity bit for each byte. 

Even and odd parity schemes operate on each byte in the set of memory chips. In each 
case, the number of bits set to a value of 1 is counted up. If there is an even number of 
1 bits in the byte (0, 2, 4, 6, or 8), even parity stores a 0 in the ninth bit, the parity bit; 
otherwise, it stores a 1 to even up the count. Odd parity does just the opposite, storing a 
1 in the parity bit to make an even number of 1s odd and a 0 to keep an odd number of 
1s odd. You can see that this is effective only for determining if there was a blatant error 
in the set of bits received, but there is no indication as to where the error is and how to 
fix it. Furthermore, the total 1-bit count is not important, only whether it’s even or odd. 
Therefore, in either the even or odd scheme, if an even number of bits is altered in the same 
byte during transmission, the error goes undetected because flipping 2, 4, 6, or all 8 bits 
results in an even number of 1s remaining even and an odd number of 1s remaining odd. 

Mark and space parity are used in systems that want to see 9 bits for every byte trans- 
mitted but don’t compute the parity bit’s value based on the bits in the byte. Mark parity 
always uses a 1 in the parity bit, and space parity always uses a 0. These schemes offer 
less error detection capability than the even and odd schemes because only changes in the 
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parity bit can be detected. Again, parity checking is not error correction; it’s error detection 
only, and not the best form of error detection at that. Nevertheless, an error can lock up the 
entire system and display a memory parity error. Enough of these errors and you need to 
replace the memory. Therefore, parity checking remains from the early days of computing 
as an effective indicator of large-scale memory and data-transmission failure, such as with 
serial interfaces attached to analog modems or networking console interfaces, but not so 
much for detecting random errors. 

In the early days of personal computing, almost all memory was parity-based. As qual- 
ity has increased over the years, parity checking in the RAM subsystem has become more 
uncommon. As noted earlier, if parity checking is not supported, there will generally be 
fewer chips per module, usually one less per column of RAM. 


Error Checking and Correction 


The next step in the evolution of memory error detection is known as error-correcting code 
(ECC). If memory supports ECC, check bits are generated and stored with the data. An 
algorithm is performed on the data and its check bits whenever the memory is accessed. If 
the result of the algorithm is all zeros, then the data is deemed valid and processing contin- 
ues. ECC can detect single- and double-bit errors and actually correct single-bit errors. In 
other words, if a particular byte—group of 8 bits—contains errors in 2 of the 8 bits, ECC 
can recognize the error. If only 1 of the 8 bits is in error, ECC can correct the error. 


Single- and Double-Sided Memory 


Commonly speaking, the terms single-sided memory and double-sided memory refer to 
how some memory modules have chips on one side and others have chips on both sides. 
Double-sided memory is essentially treated by the system as two separate memory mod- 
ules. Motherboards that support such memory have memory controllers that must switch 
between the two “sides” of the modules and, at any particular moment, can access only 
the side to which they have switched. Double-sided memory allows more memory to be 
inserted into a computer, using half the physical space of single-sided memory, which 
requires no switching by the memory controller. 


Single-, Dual-, and Triple-Channel Memory 


Standard memory controllers manage access to memory in chunks of the same size as the 
system bus’s data width. This is considered communicating over a single channel. Most 
modern processors have a 64-bit system data bus. This means that a standard memory con- 
troller can transfer exactly 64 bits of information at a time. Communicating over a single 
channel is a bottleneck in an environment where the CPU and memory can both oper- 
ate faster than the conduit between them. Up to a point, every channel added in parallel 
between the CPU and RAM serves to ease this constriction. 

Memory controllers that support dual- and triple-channel memory implementation 
were developed in an effort to alleviate the bottleneck between the CPU and RAM. Dual- 
channel memory is the memory controller’s coordination of two memory banks to work as 
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a synchronized set during communication with the CPU, doubling the specified system bus 
width from the memory’s perspective. Triple-channel memory, then, demands the coordi- 
nation of three memory modules at a time. 

The major difference between dual- and triple-channel architectures is that triple- 
channel memory employs a form of interleaving that reduces the amount of information 
transferred by each module. Nevertheless, there is an overall performance increase over 
that of dual-channel memory because of the capability to access more information per unit 
of time with triple-channel memory. 

Because today’s processors largely have 64-bit external data buses, and because one stick 
of memory satisfies this bus width, there is a 1:1 ratio between banks and modules. This 
means that implementing dual- and triple-channel memory in today’s most popular com- 
puter systems requires that pairs or triads of memory modules be installed at a time. Note, 
however, that it’s the motherboard, not the memory, that implements dual- and triple-chan- 
nel memory (more on this in a moment). Single-channel memory, in contrast, is the classic 
memory model that dictates only that a complete bank be satisfied whenever memory is ini- 
tially installed or added. One bank supplies only half the width of the effective bus created 
by dual-channel support, for instance, which by definition pairs two banks at a time. 

In almost all cases, multichannel implementations support single-channel installation, but 
poorer performance should be expected. The same loss of performance occurs when only two 
modules are installed in a triple-channel motherboard. Multichannel motherboards include 
slots of different colors, usually one of each color per set of slots. To use only a single channel, 
you populate slots of the same color, skipping neighboring slots to do so. Filling neighboring 
slots in a dual-channel motherboard takes advantage of its dual-channel capability. 

Because of the special tricks that are played with memory subsystems to improve over- 
all system performance, care must be taken during the installation of disparate memory 
modules. In the worst case, the computer will cease to function when modules of different 
speeds, different capacities, or different numbers of sides are placed together in slots of the 
same channel. If all of these parameters are identical, there should be no problem with pair- 
ing modules. Nevertheless, problems could still occur when modules from two different 
manufacturers or certain unsupported manufacturers are installed, all other parameters 
being the same. Technical support or documentation from the manufacturer of your moth- 
erboard should be able to help with such issues. 

Although it’s not the make-up of the memory that leads to dual-channel support but 
instead the technology on which the motherboard is based, some memory manufacturers 
still package and sell pairs and triplets of memory modules in an effort to give you peace 
of mind when you’re buying memory for a system that implements dual- or triple-channel 
memory architecture. Keep in mind, the motherboard memory slots have the distinctive 
color-coding, not the memory modules. 


Types of Memory 


Memory comes in many formats. Each one has a particular set of features and characteris- 
tics, making it best suited for a particular application. Some decisions about the application 
of the memory type are based on suitability; others are based on affordability to consumers 
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or marketability to computer manufacturers. The following list gives you an idea of the vast 


array of memory types and subtypes: 
= DRAM (dynamic random access memory) 
ADRAM (asynchronous DRAM) 
FPM DRAM (fast page mode DRAM) 
EDO DRAM (extended data out DRAM) 
BEDO DRAM (burst EDO DRAM) 
SDRAM (synchronous DRAM) 
SDR SDRAM (single data rate SDRAM) 
DDR SDRAM (double data rate SDRAM) 
DDR2 SDRAM (double data rate, version two, SDRAM) 
DDR3 SDRAM (double data rate, version three, SDRAM) 
DDR4 SDRAM (double data rate, version four, SDRAM) 
DDR5 SDRAM (double data rate, version five, SDRAM) 
= SRAM (static random access memory) 


= ROM (read-only memory) 








I Can't Fill All My Memory Slots 


As a reminder, most motherboard manufacturers document the quantity and types of 
modules that their equipment supports. Consult your documentation, whether in print or 
online, when you have questions about supported memory. Most manufacturers require 
that slower memory be inserted in lower-numbered memory slots. This is because such a 
system adapts to the first module it sees, looking at the lower-numbered slots first. Coun- 
terintuitively, however, it might be required that you install modules of larger capacity 
rather than smaller modules in lower-numbered slots. 


Additionally, memory technology continues to advance after each generation of moth- 
erboard chipsets is announced. Don’t be surprised when you attempt to install a single 
module of the highest available capacity in your motherboard and the system doesn’t 
recognize the module, either by itself or with others. That capacity of module might not 
have been in existence when the motherboard’s chipset was released. Sometimes, flash- 
ing the BIOS is all that is required. Consult the motherboard’s documentation. 


One common point of confusion, not related to capacity, when memory is installed is the 
lack of recognition of four modules when two or three modules work fine, for example. 
In such a case, let’s say your motherboard’s memory controller supports a total of four 
modules. Recall that a double-sided module acts like two separate modules. If you are 
using double-sided memory, your motherboard might limit you to two such modules 
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comprising four sides (essentially four virtual modules), even though you have four slots 
on the board. If instead you start with three single-sided modules, when you attempt to 
install a double-sided module in the fourth slot, you are essentially asking the mother- 
board to accept five modules, which it cannot. 





Pay particular attention to all synchronous DRAM types. Note that the type of memory 
does not dictate the packaging of the memory. Conversely, however, you might notice one 
particular memory packaging holding the same type of memory every time you come across 
it. Nevertheless, there is no requirement to this end. Let’s detail the intricacies of some of 
these memory types. 


DRAM 


DRAM is dynamic random access memory. This is what most people are talking about when 
they mention RAM. When you expand the memory in a computer, you are adding DRAM 
chips. You use DRAM to expand the memory in the computer because it’s a cheaper type of 
memory. Dynamic RAM chips are cheaper to manufacture than most other types because 
they are less complex. Dynamic refers to the memory chips’ need for a constant update signal 
(also called a refresh signal) in order to keep the information that is written there. If this sig- 
nal is not received every so often, the information will bleed off and cease to exist. Currently, 
the most popular implementations of DRAM are based on synchronous DRAM and include 
DDR2, DDR3, and DDR4. Before discussing these technologies, let’s take a quick look at the 
legacy asynchronous memory types, none of which should appear on modern exams. 


Asynchronous DRAM 


Asynchronous DRAM (ADRAM) is characterized by its independence from the CPU’s 
external clock. Asynchronous DRAM chips have codes on them that end in a numerical 
value that is related to (often 1/10 of the actual value of) the access time of the memory. 
Access time is essentially the difference between the time when the information is requested 
from memory and the time when the data is returned. Common access times attributed to 
asynchronous DRAM were in the 40- to 120-nanosecond (ns) vicinity. A lower access time 
is obviously better for overall performance. 

Because ADRAM is not synchronized to the front-side bus, you would often have to insert 
wait states through the BIOS setup for a faster CPU to be able to use the same memory as a 
slower CPU. These wait states represented intervals in which the CPU had to mark time and do 
nothing while waiting for the memory subsystem to become ready again for subsequent access. 

Common asynchronous DRAM technologies included fast page mode (FPM), extended 
data out (EDO), and burst EDO (BEDO). Feel free to investigate the details of these par- 
ticular technologies, but a thorough discussion of these memory types is not necessary here. 
The A+ technician should be concerned with synchronous forms of RAM, which are the 
only types of memory being installed in mainstream computer systems today. 


Synchronous DRAM 


Synchronous DRAM (SDRAM) shares a common clock signal with the computer’s system- 
bus clock, which provides the common signal that all local-bus components use for each step 
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that they perform. This characteristic ties SDRAM to the speed of the FSB and hence the 
processor, eliminating the need to configure the CPU to wait for the memory to catch up. 

Originally, SDRAM was the term used to refer to the only form of synchronous DRAM 
on the market. As the technology progressed, and more was being done with each clock 
signal on the FSB, various forms of SDRAM were developed. What was once called simply 
SDRAM needed a new name retroactively. Today, we use the term single data rate SDRAM 
(SDR SDRAM) to refer to this original type of SDRAM. 


SDR SDRAM SDR SDRAM is now considered a legacy RAM technology, and it is pre- 
sented here only to provide a basis for the upcoming discussion of DDR and other more 
advanced RAM. With SDR SDRAM, every time the system clock ticks, 1 bit of data can 
be transmitted per data pin, limiting the bit rate per pin of SDRAM to the corresponding 
numerical value of the clock’s frequency. With today’s processors interfacing with memory 
using a parallel data-bus width of 8 bytes (hence the term 64-bit processor), a 100 MHz 
clock signal produces 800 MBps. That’s mega bytes per second, not mega bits. Such mem- 
ory modules are referred to as PC100, named for the true FSB clock rate upon which they 
rely. PC100 was preceded by PC66 and succeeded by PC133, which used a 133 MHz clock 
to produce 1,066 MBps of throughput. 


Note that throughput in megabytes per second is easily computed as eight times the rating 
in the name. This trick works for the more advanced forms of SDRAM as well. The com- 
mon thread is the 8-byte system data bus. Incidentally, you can double throughput results 
when implementing dual-channel memory. 


DDR SDRAM Double data rate (DDR) SDRAM earns its name by doubling the transfer 
rate of ordinary SDRAM; it does so by double-pumping the data, which means transferring 
a bit per pin on both the rising and falling edges of the clock signal. This obtains twice the 
transfer rate at the same FSB clock frequency. It’s the increasing clock frequency that gener- 
ates heating issues with newer components, so keeping the clock the same is an advantage. 
The same 100 MHz clock gives a DDR SDRAM system the impression of a 200 MHz 
clock compared to an SDR SDRAM system. For marketing purposes, and to aid in the 
comparison of disparate products (DDR vs. SDR, for example), the industry has settled on 
the practice of using this effective clock rate as the speed of the FSB. 








Module Throughput Related to FSB Speed 
There is always an 8:1 module-to-chip (or module-to-FSB-speed) numbering ratio because 


of the 8 bytes that are transferred at a time with 64-bit processors (not because of the ratio 
of 8 bits per byte). The formula in Figure 1.28 explains how this relationship works. 


FIGURE 1.28 The 64-bit memory throughput formula 





FSB in MHz — (cyetes/second) 


X 8 bytes (bytes/cyete) 
throughput (bytes/second) 
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Because the actual system clock speed is rarely mentioned in marketing literature, on pack- 
aging, or on store shelves for DDR and higher, you can use this advertised FSB frequency 

in your computations for DDR throughput. For example, with a 100 MHz clock and two 
operations per cycle, motherboard makers will market their boards as having an FSB of 

200 MHz. Multiplying this effective rate by 8 bytes transferred per cycle, the data rate is 
1,600 MBps. Because DDR made throughput a bit trickier to compute, the industry began 
using this final throughput figure to name the memory modules instead of the actual fre- 
quency, which was used when naming SDR modules. This makes the result seem many times 
better (and much more marketable), while it’s really only twice (or so) as good, or close to it. 


In this example, the module is referred to as PC1600, based on a throughput of 1,600 MBps. 
The chips that go into making PC1600 modules are named DDR200 for the effective FSB 
frequency of 200 MHz. Stated differently, the industry uses DDR200 memory chips to 
manufacture PC1600 memory modules. 


Let’s make sure that you grasp the relationship between the speed of the FSB and the name 
for the related chips as well as the relationship between the name of the chips (or the speed 
of the FSB) and the name of the modules. Consider an FSB of 400 MHz, meaning an actual 
clock signal of 200 MHz, by the way—the FSB is double the actual clock for DDR, remem- 
ber. It should be clear that this motherboard requires modules populated with DDR400 
chips and that you'll find such modules marketed and sold as PC3200. 


Let’s try another. What do you need for a motherboard that features a 333 MHz FSB 
(actual clock is 166 MHz)? Well, just using the 8:1 rule mentioned earlier, you might be 

on the lookout for a PC2667 module. Note, however, that sometimes the numbers have to 
be played with a bit to come up with the industry’s marketing terms. You’ll have an easier 
time finding PC2700 modules that are designed specifically for a motherboard like yours, 
with an FSB of 333 MHz. The label isn’t always technically accurate, but round numbers 
sell better, perhaps. The important concept here is that if you find PC2700 modules and 
PC2667 modules, there’s absolutely no difference; they both have a 2667 MBps throughput 
rate. Go for the best deal; just make sure that the memory manufacturer is reputable. 


DDR2 SDRAM Think of the 2 in DDR2 as yet another multiplier of 2 in the SDRAM 
technology, using a lower peak voltage to keep power consumption down (1.8V vs. the 
2.5V of DDR). Still double-pumping, DDR2, like DDR, uses both sweeps of the clock sig- 
nal for data transfer. Internally, DDR2 further splits each clock pulse in two, doubling the 
number of operations it can perform per FSB clock cycle. Through enhancements in the 
electrical interface and buffers, as well as through adding off-chip drivers, DDR2 nomi- 
nally produces four times the throughput that SDR is capable of producing. 


Continuing the DDR example, DDR2, using a 100 MHz actual clock, transfers data in 
four operations per cycle (effective 400 MHz FSB) and still 8 bytes per operation, for a 
total of 3,200 MBps. Just as with DDR, chips for DDR2 are named based on the perceived 
frequency. In this case, you would be using DDR2-400 chips. DDR2 carries on the effec- 
tive FSB frequency method for naming modules but cannot simply call them PC3200 mod- 
ules because those already exist in the DDR world. DDR2 calls these modules PC2-3200. 
(Note the dash to keep the numeric components separate.) 
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As another example, it should make sense that PC2-5300 modules are populated with 
DDR2-667 chips. Recall that you might have to play with the numbers a bit. If you multi- 
ply the well-known FSB speed of 667 MHz by 8 to figure out what modules you need, you 
might go searching for PC2-5333 modules. You might find someone advertising such mod- 
ules, but most compatible modules will be labeled PC2-5300 for the same marketability 
mentioned earlier. They both support 5,333 MBps of throughput. 


DDR3 SDRAM The next generation of memory devices was designed to roughly double 
the performance of DDR2 products. Based on the functionality and characteristics of 
DDR2’s proposed successor, most informed consumers and some members of the industry 
surely assumed the forthcoming name would be DDR4. This was not to be, however, and 
DDR3 was born. This naming convention proved that the 2 in DDR2 was not meant to be 
a multiplier but instead a revision mark of sorts. Well, if DDR2 was the second version of 
DDR, then DDR3 is the third. DDR3 is a memory type that was designed to be twice as 
fast as the DDR2 memory that operates with the same system clock speed. Just as DDR2 
was required to lower power consumption to make up for higher frequencies, DDR3 must 
do the same. In fact, the peak voltage for DDR3 is only 1.5V. 


The most commonly found range of actual clock speeds for DDR3 tends to be from 133 MHz 
at the low end to less than 300 MHz. Because double-pumping continues with DDR3, and 
because four operations occur at each wave crest (eight operations per cycle), this frequency 
range translates to common FSB implementations from 1,066 MHz to more than 2,000 MHz 
in DDR3 systems. These memory devices are named following the conventions established ear- 
lier. Therefore, if you buy a motherboard with a 1,600 MHz FSB, you know immediately that 
you need a memory module populated with DDR3-1600 chips, because the chips are always 
named for the FSB speed. Using the 8:1 module-to-chip/FSB naming rule, the modules that you 
need would be called PC3-12800, supporting a 12,800 MBps throughput. 


The earliest DDR3 chips, however, were based on a 100 MHz actual clock signal, so we can 
build on our earlier example, which was also based on an actual clock rate of 100 MHz. 
With eight operations per cycle, the FSB on DDR3 motherboards is rated at 800 MHz, 

quite a lot of efficiency while still not needing to change the original clock with which our 
examples began. Applying the 8:1 rule again, the resulting RAM modules for this mother- 
board are called PC3-6400 and support a throughput of 6,400 MBps, carrying chips called 
DDR3-800, again named for the FSB speed. 


DDR4 SDRAM Continuing the inevitable march of technology, DDR4 is the next iteration 

of SDRAM on the market. As you would expect, the speed of DDR4 is roughly double 

that of DDR3. DDR3 provided data rates of approximately 800 Mbps to 2,133 Mbps, 
whereas DDR4 ranges between 1,600 Mbps and 3,200 Mbps. DDR also runs at a lower 
voltage—1.2 volts. Finally, DDR4 can support more memory per chip, up to 512 GB per chip. 
Realistically, though, no one produces motherboards (or RAM) that support that quantity. 


DDR5 RAM, which will once again double the speed of its predecessors, is 
A TE supposed to be released in late 2018 or early 2019. DDR5 is already being 


used on video cards, though. 
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E Real World Scenario 


Choosing the Right Memory for Your CPU 


Picking out the right memory for your CPU and motherboard is all about understanding 
the minimum performance required for the CPU you choose. Sometimes, the mother- 
board you choose to mate with the CPU makes your decision for you. If you go with the 
cheaper motherboard, you might find that just a single channel of DDR3 is all you need to 
worry about. Otherwise, the more expensive boards might support dual- or triple-channel 
memory and require DDR4 modules. It’s usually safe to assume that the higher price of 
admission gets you better performance. This is generally true on paper, but you might 
find that the higher-end setup doesn’t knock your socks off the way you expected. 


Let’s say that you head down to your local computer store where motherboards, CPUs, 
memory, and other computer components are sold a la carte. You're interested in put- 
ting together your own system from scratch. Usually, you will have a CPU in mind that 
you would like to use in your new system. Assume you want to save money and choose, 
for example, an Intel Core i3-3250 dual-core processor. It’s fast enough at 3.5 GHz, and it 
calls for an older LGA 1155 socket, meaning that you'll save a bit of money on that per- 
formance but you won't be approaching the state of the art. Nevertheless, the FSB with 
which this CPU is outfitted runs at a healthy 1,333 MHz, and its associated chipsets call 
for DDR3 memory. As a result, you will need to purchase one or more modules that con- 
tain DDR3-1333 chips, especially if you buy a motherboard that supports dual-channel 
memory. Therefore, you'll be buying PC3-10600 modules (multiplying 1,333 by 8 and 
adjusting for marketing). Recall the 8:1 module-to-chip/FSB naming convention. 


Perhaps you'd prefer the pricier Intel Core i9-7980XE Extreme Edition 18-core processor. 
With a little research, you discover that Intel did away with the FSB by moving the mem- 
ory controller out of the Northbridge and into the CPU. What remains is what Intel calls the 
QOPI, or QuickPath Interconnect. OPI is a PCle-like path that uses 20 bidirectional lanes to 
move data exceedingly fast between the CPU and RAM, requiring less capable RAM than 
FSB CPUs to do the same amount of work. The Core i9 requires a motherboard that has an 
LGA 2066 socket and supports a minimum of DDR4-2666 memory chips (chips, not mod- 
ules). Therefore, you'll be buying at least one stick of your chosen capacity of PC4-21300 
(multiplying 2,666 by 8 and rounding for marketing purposes), or more sticks if you decide 
to take advantage of the chip’s ability to access as many as four channels of memory. 


You might expect that more expensive higher-end processors require more expensive, 
higher-end RAM. Generally this is true, but the cost difference isn’t as much as you might 
think. For illustrative purposes, at the time of this writing—and remember, prices change 
all the time—16 GB of PC3-10600 RAM is about $180, whereas 16 GB of PC4-21300 is 
around $220. Compare that with the cost of the $160 i3 versus the $1,800 i9 Extreme, and 
the difference seems negligible. 
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SRAM 


Static random access memory (SRAM) doesn’t require a refresh signal like DRAM does. 
The chips are more complex and are thus more expensive. However, they are considerably 
faster. DRAM access times come in at 40 nanoseconds (ns) or more; SRAM has access 
times faster than 10ns. SRAM is classically used for cache memory. 


ROM 


ROM stands for read-only memory. It is called read-only because you could not write to 
the original form of this memory. Once information had been etched on a silicon chip and 
manufactured into the ROM package, the information couldn’t be changed. Some form 
of ROM is normally used to store the computer’s BIOS because this information normally 
does not change often. 

The system ROM in the original IBM PC contained the power-on self-test (POST), 
BIOS, and cassette BASIC. Later, IBM computers and compatibles included everything but 
the cassette BASIC. The system ROM enables the computer to “pull itself up by its boot- 
straps,” or boot (find and start the operating system). 

Through the years, different forms of ROM were developed that could be altered, later 
ones more easily than earlier ones. The first generation was the programmable ROM 
(PROM), which could be written to for the first time in the field using a special program- 
ming device, but then no more. You may liken this to the burning of a DVD-R. 

The erasable PROM (EPROM) followed the PROM, and it could be erased using ultra- 
violet light and subsequently reprogrammed using the original programming device. These 
days, flash memory is a form of electronically erasable PROM (EEPROM). Of course, it 
does not require UV light to erase its contents, but rather a slightly higher than normal 
electrical pulse. 


Although the names of these memory devices are different, they all con- 

á TE tain ROM. Therefore, regardless which of these technologies is used to 
manufacture a BIOS chip, it’s never incorrect to say that the result is a 
ROM chip. 


Memory Packaging 


First of all, it should be noted that each motherboard supports memory based on the speed 
of the front-side bus (or the CPU’s QPI) and the memory’s form factor. For example, if the 
motherboard’s FSB is rated at a maximum speed of 1,333 MHz and you install memory 
that is rated at 1,066 MHz, the memory will operate at only 1,066 MHz, if it works at 
all, thus making the computer operate slower than it could. In their documentation, most 
motherboard manufacturers list which type(s) of memory they support as well as its maxi- 
mum speeds and required pairings. 
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The memory slots on a motherboard are designed for particular module form factors or 
styles. RAM historically evolved from form factors no longer seen for such applications, 
such as dual in-line package (DIP), single in-line memory module (SIMM), and single in- 
line pin package (SIPP). The most popular form factors for primary memory modules today 
are as follows: 


a DIMM (dual in-line memory module) 
= SODIMM (small outline dual in-line memory module) 


Desktop computers will use DIMMs. Laptops and smaller devices require SODIMMs or 
smaller memory packaging. So, in addition to coordinating the speed of the components, 
their form factor is an issue that must be addressed. 


DIMM 


One type of memory package is known as a DIMM, which stands for dual in-line memory 
module. DIMMs are 64-bit memory modules that are used as a package for the SDRAM 
family: SDR, DDR, DDR2, DDR3, and DDR4. The term dual refers to the fact that, unlike 
their SIMM predecessors, DIMMs differentiate the functionality of the pins on one side 

of the module from the corresponding pins on the other side. With 84 pins per side, this 
makes 168 independent pins on each standard SDR module, as shown with its two keying 
notches as well as the last pin labeled 84 on the right side in Figure 1.29. SDR SDRAM 
modules are no longer part of the CompTIA A+ objectives, and they are mentioned here as 
a foundation only. 


FIGURE 1.29 An SDR dual in-line memory module (DIMM) 





The DIMM used for DDR memory has a total of 184 pins and a single keying notch, 
whereas the DIMM used for DDR2 has a total of 240 pins, one keying notch, and pos- 
sibly an aluminum cover for both sides, called a heat spreader and designed like a heat 
sink to dissipate heat away from the memory chips and prevent overheating. The DDR3 
DIMM is similar to that of DDR2. It has 240 pins and a single keying notch, but the 
notch is in a different location to avoid cross insertion. Not only is the DDR3 DIMM 
physically incompatible with DDR2 DIMM slots, it’s also electrically incompatible. A 
DDR4 DIMM is the same length as a DDR3 DIMM, but is about 0.9mm taller and has 
288 pins. The key is in a different spot, so you can’t put DDR4 memory into a DDR2 or 
DDR3 slot. 
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Figure 1.30 shows, from top to bottom, DDR4, DDR3, and DDR2 DIMMs. 


FIGURE 1.30 DDR4, DDR3, and DDR2 DIMMs 
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Inserting and Removing Memory Modules 


The original single in-line memory modules had to be inserted into their slots at a 45° 
angle. The installer then had to apply slight pressure as the module was maneuvered 
upright at a 90° angle to the motherboard, where a locking mechanism would grip the 
module and prevent it from returning to its 45° position. This procedure created a pres- 
sure that reinforced the contact of the module with its slot. Releasing the clips on either 
end of the module unlocked it and allowed it to return to 45°, where it could be removed. 


DIMM slots, by comparison, have no spring action. DIMMs are inserted straight into the 
slot with the locking tabs pulled away from the module. The locking tabs are at either end 
of the module, and they automatically snap into place, securing the module. Pulling the 
tabs away from the module releases the module from the slot, allowing it to be effort- 
lessly removed. 
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SODIMM 


Notebook computers and other computers that require much smaller components don’t use 
standard RAM packages, such as DIMMs. Instead, they call for a much smaller memory 
form factor, such as a small outline DIMM (SODIMM). SODIMMs are available in many 
physical implementations, including the older 32-bit (72- and 100-pin) configuration and 
newer 64-bit (144-pin SDR SDRAM, 200-pin DDR/DDR2, 204-pin DDR3, and 260- 

pin DDR4) configurations. DDR4 SODIMMs are slightly longer (69.6 mm) than DDR3 
SODIMMS (67.6 mm). 

All 64-bit modules have a single keying notch. The 144-pin module’s notch is slightly off 
center. Note that although the 200-pin SODIMMs for DDR and DDR2 have slightly differ- 
ent keying, it’s not so different that you don’t need to pay close attention to differentiate the 
two. They are not, however, interchangeable. DDR3 and DDR4 are keyed differently from 
the others as well, and, as mentioned previously, DDR4 modules are longer. Figure 1.31 
shows a DDR3 SODIMM compared to DDR3 and DDR2 DIMMs. 


FIGURE 1.31 DDR3SODIMM vs. DDR3 and DDR2 DIMMs 
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Understanding Cooling Systems 


It’s a basic concept of physics: Electronic components turn electricity into work and heat. 
The excess heat must be dissipated or it will shorten the life of the components. In some 
cases (like with the CPU), the component will produce so much heat that it can destroy 
itself in a matter of seconds if there is not some way to remove this extra heat. 

Air-cooling methods are used to cool the internal components of most PCs. With air 
cooling, the movement of air removes the heat from the component. Sometimes, large 
blocks of metal called heat sinks are attached to a heat-producing component in order to 
dissipate the heat more rapidly. 


Fans 


When you turn on a computer, you will often hear lots of whirring. Contrary to popular 
opinion, the majority of the noise isn’t coming from the hard disk (unless it’s about to go 
bad). Most of this noise is coming from the various fans inside the computer. Fans provide 
airflow within the computer. 

Most PCs have a combination of the following seven fans: 


Front Intake Fan This fan is used to bring fresh, cool air into the computer for cooling 
purposes. 


Rear Exhaust Fan This fan is used to take hot air out of the case. 


Power Supply Exhaust Fan This fan is usually found at the back of the power supply, and 
it is used to cool the power supply. In addition, this fan draws air from inside the case into 
vents in the power supply. This pulls hot air through the power supply so that it can be 
blown out of the case. The front intake fan assists with this airflow. The rear exhaust fan 
supplements the power supply fan to achieve the same result outside of the power supply. 


CPU Fan This fan is used to cool the processor. Typically, this fan is attached to a large 
heat sink, which is in turn attached directly to the processor. 


Chipset Fan Some motherboard manufacturers replaced the heat sink on their onboard 
chipset with a heat sink and fan combination as the chipset became more advanced. This 
fan aids in the cooling of the onboard chipset (especially useful when overclocking—setting 
the system clock frequency higher than the default). 


Video Card Chipset Fan As video cards get more complex and have higher performance, 
more video cards have cooling fans directly attached. Despite their name, these fans don’t 
attach to a chipset in the same sense as to a chipset on a motherboard. The chipset here 

is the set of chips mounted on the adapter, including the GPU and graphics memory. On 
many late-model graphics adapters, the equivalent of a second slot is dedicated to cooling 
the adapter. The cooling half of the adapter has vents in the backplane bracket to exhaust 
the heated air. 
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Memory Module Fan The more capable memory becomes of keeping up with the CPU, 
the hotter the memory runs. As an extra measure of safety, regardless of the presence of 

heat spreaders on the modules, an optional fan setup for your memory might be in order. 
See the upcoming section “Memory Cooling” for more information. 








Motherboard Fan Power Connectors 


It’s important to be aware of the two main types of fan connections found on today’s 
motherboards. One of these connectors has only three connections, while the other has 
four. The fan connectors and motherboard headers are interchangeable between the two 
pinouts, but if a chassis fan has four conductors, it’s a sign that it’s calling for connectiv- 
ity to an extra +5VDC (volts direct current) connection that the most common three-pin 
header doesn’t offer. A more rare three-pin chassis-fan connector features a +12VDC 
power connection for heavier-duty fans and a rotation pin used as an input to the mother- 
board for sensing the speed of the fan. 


Four-pin CPU connections place the ground and power connections in pins 1 and 2, 
respectively, so that two-pin connectors can be used to power older fans. The four-pin 
header also offers a tachometer input signal from the fan on pin 3 so that the speed of the 
fan can be monitored by the BIOS and other utilities. Look for markings such as CPU FAN 
IN to identify this function. Pin 4 might be labeled CPU FAN PWM to denote the pulse- 
width modulation that can be used to send a signal to the fan to control its speed. This is 
the function lost when a three-pin connector is placed in the correct position on a four-pin 
header. Four-pin chassis-fan connectors can share the tachometer function but replace 
the speed control function with the extra 5V mentioned earlier. 


Other power connections and types will be covered in Chapter 2, including the Molex con- 
nector, which can be used to power chassis and CPU fans using an adapter or the built-in 
connector on mostly older fans manufactured before the motherboard connectors were 
standardized. Figure 1.32 shows two three-pin chassis-fan headers on a motherboard. 


FIGURE 1.32 _ Three-pin chassis-fan headers 
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Figure 1.33 shows a four-pin CPU fan header with an approaching three-pin connector 
from the fan. Note that the keying tab is lined up with the same three pins it’s lined up 
with in the three-pin connectors. 


FIGURE 1.33 A four-pin CPU fan header 
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This physical aspect and the similar pin functions are what make these connectors 
interchangeable, provided that the header’s function matches the role of the fan being 
connected. Figure 1.34 shows the resulting unused pin on the four-pin header. Again, con- 
trolling the fan’s speed is not supported in this configuration. 


FIGURE 1.34 Position of a three-pin connector on a four-pin header 








62 Chapter 1 = Motherboards, Processors, and Memory 


Ideally, the airflow inside a computer should resemble what is shown in Figure 1.35, 
where the back of the chassis is shown on the left in the image. 


FIGURE 1.35 System unit airflow 
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Note that you must pay attention to the orientation of the power supply’s airflow. If the 
power supply fan is an exhaust fan, as assumed in this discussion, the front and rear fans 
will match their earlier descriptions: front, intake; rear, exhaust. If you run across a power 
supply that has an intake fan, the orientation of the supplemental chassis fans should be 
reversed as well. The rear chassis fan(s) should always be installed in the same orientation 
the power supply fan runs to avoid creating a small airflow circuit that circumvents the 
cross flow of air throughout the case. The front chassis fan and the rear fans should always 
be installed in reverse orientation to avoid having them fight against each other and thereby 
reduce the internal airflow. Reversing supplemental chassis fans is usually no harder than 
removing four screws and flipping the fan. Sometimes, the fan might just snap out, flip, and 
then snap back in, depending on the way it is rigged up. 


Memory Cooling 


If you are going to start overclocking your computer, you will want to do everything in 
your power to cool all of its components, and that includes the memory. 

There are two methods of cooling memory: passive and active. The passive memory 
cooling method just uses the ambient case airflow to cool the memory through the use of 
enhanced heat dissipation. For this, you can buy either heat sinks or, as mentioned earlier, 
special “for memory chips only” devices known as heat spreaders. Recall that these are 
special aluminum or copper housings that wrap around memory chips and conduct the heat 
away from them. 
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Active cooling, on the other hand, usually involves forcing some kind of cooling 
medium (air or water) around the RAM chips themselves or around their heat sinks. Most 
often, active cooling methods are just high-speed fans directing air right over a set of heat 
spreaders. 


Hard Drive Cooling 


You might be thinking, “Hey, my hard drive is doing work all the time. Is there anything 
I can do to cool it off?” There are both active and passive cooling devices for hard drives. 
Most common, however, is the active cooling bay. You install a hard drive in a special 
device that fits into a 514” expansion bay. This device contains fans that draw in cool air 
over the hard drive, thus cooling it. Figure 1.36 shows an example of one of these active 
hard drive coolers. As you might suspect, you can also get heat sinks for hard drives. 


FIGURE 1.36 An active hard disk cooler 





Chipset Cooling 


Every motherboard has a chip or chipset that controls how the computer operates. As with 
other chips in the computer, the chipset is normally cooled by the ambient air movement in 
the case. However, when you overclock a computer, the chipset may need to be cooled more 
because it is working harder than it normally would be. Therefore, it is often desirable to 
replace the onboard chipset cooler with a more efficient one. Refer back to Figure 1.4 for a 
look at a modern chipset cooling solution. 


CPU Cooling 


Probably the greatest challenge in cooling is the computer’s CPU. It is the component that 
generates the most heat in a computer (aside from some pretty insane GPUs out there). As 
a matter of fact, if a modern processor isn’t actively cooled all of the time, it will generate 
enough heat to burn itself up in seconds. That’s why most motherboards have an internal 
CPU heat sensor and a CPU_FAN sensor. If no cooling fan is active, these devices will shut 
down the computer before damage occurs. 
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There are a few different types of CPU cooling methods, but the most important can be 
grouped into three broad categories: air cooling, liquid cooling, and fan-less and passive 
cooling methods. 


Air Cooling 


The parts inside most computers are cooled by air moving through the case. The CPU is 
no exception. However, because of the large amount of heat produced, the CPU must have 
(proportionately) the largest surface area exposed to the moving air in the case. Therefore, 
the heat sinks on the CPU are the largest of any inside the computer. 

The CPU fan often blows air down through the body of the heat sink to force the heat 
into the ambient internal air where it can join the airflow circuit for removal from the 
case. However, in some cases, you might find that the heat sink extends up farther, using 
radiator-type fins, and the fan is placed at a right angle and to the side of the heat sink. 
This design moves the heat away from the heat sink immediately instead of pushing the air 
down through the heat sink. CPU fans can be purchased that have an adjustable rheostat to 
allow you to dial in as little airflow as you need, aiding in noise reduction but potentially 
leading to accidental overheating. 

It should be noted that the highest-performing CPU coolers use copper plates in direct 
contact with the CPU. They also use high-speed and high-CFM cooling fans to dissipate 
the heat produced by the processor. CFM is short for cubic feet per minute, an airflow mea- 
surement of the volume of air that passes by a stationary object per minute. 

Most new CPU heat sinks use tubing to transfer heat away from the CPU. With any 
cooling system, the more surface area exposed to the cooling method, the better the cool- 
ing. Plus the heat pipes can be used to transfer heat to a location away from the heat source 
before cooling. This is especially useful in cases where the form factor is small and with 
laptops, where open space is limited. 

With advanced heat sinks and CPU cooling methods like this, it is important to improve 
the thermal transfer efficiency as much as possible. To that end, cooling engineers came 
up with a compound that helps to bridge the extremely small gaps between the CPU and 
the heat sink, which avoids superheated pockets of air that can lead to focal damage of the 
CPU. This product is known as thermal transfer compound, or simply thermal compound 
(alternatively, thermal grease or thermal paste), and it can be bought in small tubes. Single- 
use tubes are also available and alleviate the guesswork involved with how much you 
should apply. Watch out, though; this stuff makes quite a mess and doesn’t want to come 
off your fingers very easily. 

Apply the compound by placing a bead in the center of the heat sink, not on the CPU, 
because some heat sinks don’t cover the entire CPU package. That might sound like a prob- 
lem, but some CPUs don’t have heat-producing components all the way out to the edges. 
Some CPUs even have a raised area directly over the silicon die within the packaging, 
resulting in a smaller contact area between the components. You should apply less than you 
think you need because the pressure of attaching the heat sink to the CPU will spread the 
compound across the entire surface in a very thin layer. It’s advisable to use a clean, lint- 
free applicator of your choosing to spread the compound around a bit as well, just to get 
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the spreading started. You don’t need to concern yourself with spreading it too thoroughly 
or too neatly because the pressure applied during attachment will equalize the compound 
quite well. During attachment, watch for oozing compound around the edges, clean it off 
immediately, and use less next time. 








Improving and Maintaining CPU Cooling 


In addition to using thermal compound, you can enhance the cooling efficiency of a CPU 
heat sink by lapping the heat sink, which smoothens the mating surface using a very 
fine sanding element, about 1000-grit in the finishing stage. Some vendors of the more 
expensive heat sinks will offer this service as an add-on. 


If your CPU has been in service for an extended period of time, perhaps three years or 
more, it is a smart idea to remove the heat sink and old thermal compound and then 
apply fresh thermal compound and reattach the heat sink. Be careful, though; if your ther- 
mal paste has already turned into thermal “glue,” you can wrench the processor right out 
of the socket, even with the release mechanism locked in place. Invariably, this damages 
the pins on the chip. Try running the computer for a couple of minutes to warm the paste 
and then try removing the heat sink again. 


Counterintuitively, perhaps, you can remove a sealed heat sink from the processor by 
gently rotating the heat sink to break the paste’s seal. Again, this can be made easier with 
heat. If the CPU has risen in the socket already, however, rotating the heat sink would be 
an extremely bad idea. Sometimes, after you realize that the CPU has risen a bit and that 
you need to release the mechanism holding it in to reseat it, you find that the release arm 
is not accessible with the heat sink in place. This is an unfortunate predicament that will 
present plenty of opportunity to learn. 





If you’ve ever installed a brand-new heat sink onto a CPU, you’ve most likely used ther- 
mal compound or the thermal compound patch that was already applied to the heat sink 
for you. If your new heat sink has a patch of thermal compound pre-applied, don’t add 
more. If you ever remove the heat sink, don’t try to reuse the patch or any other form of 
thermal compound. Clean it all off and start fresh. 


Liquid Cooling 


Liquid cooling is a technology whereby a special water block is used to conduct heat away 
from the processor (as well as from the chipset). Water is circulated through this block to a 
radiator, where it is cooled. 

The theory is that you could achieve better cooling performance through the use of 
liquid cooling. For the most part, this is true. However, with traditional cooling methods 
(which use air and water), the lowest temperature you can achieve is room temperature. 
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Plus, with liquid cooling, the pump is submerged in the coolant (generally speaking), so as 
it works, it produces heat, which adds to the overall liquid temperature. 

The main benefit to liquid cooling is silence. Only one fan is needed: the fan on the radi- 
ator to cool the water. So, a liquid-cooled system can run extremely quietly. 

Liquid cooling, while more efficient than air cooling and much quieter, has its draw- 
backs. Most liquid-cooling systems are more expensive than supplemental fan sets and 
require less familiar components, such as a reservoir, pump, water block(s), hose, and 
radiator. 

The relative complexity of installing liquid cooling systems, coupled with the perceived 
danger of liquids in close proximity to electronics, leads most computer owners to consider 
liquid cooling a novelty or a liability. The primary market for liquid cooling is the high- 
performance niche that engages in overclocking to some degree. However, developments in 
active air cooling, including extensive piping of heat away from the body of the heat sink, 
have kept advanced cooling methods out of the forefront. Nevertheless, advances in fluids 
with safer electrolytic properties and even viscosities keep liquid cooling viable. 

In the next sections, you will notice a spate of seeming liquid-cooling methods. While 
these methods use liquid in the execution of their cooling duties, liquid to them is analo- 
gous to the heat used in cartridges to effect printing in inkjet printers. In other words, the 
following cooling systems are no more liquid-cooling methods than inkjet printers are ther- 
mal printers. 


Fanless and Passive CPU Cooling Methods 


Advancements in air cooling led to products like the Scythe Ninja series, which is a stack 
of thin aluminum fins with copper tubing running up through them. Some of the hottest- 
running CPUs can be passively cooled with a device like this, using only the existing air- 
movement scheme from your computer’s case. Adding a fan to the side, however, adds to 
the cooling efficiency but also to the noise level, even though Scythe calls this line Ninja 
because of how quiet it is. 

In addition to standard and advanced air-cooling methods, there are other methods 
of cooling a CPU (and other chips as well). Many of these are fanless, in that they do not 
include a fan but are still considered active because they require power to operate. Others 
require neither a fan nor power, making them passive methods. Some of these methods 
might appear somewhat unorthodox, but they often deliver extreme results. 


Experimental methods can also result in permanent damage to your com- 
OTE puter, so try them at your own risk. 


Heat Pipes 


Heat pipes are closed systems that employ some form of tubing filled with a liquid suitable 
for the applicable temperature range. Pure physics is used with this technology to achieve 
cooling to ambient temperatures; no outside mechanism is used. One end of the heat pipe is 
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heated by the component being cooled. This causes the liquid at the heated end to evaporate 
and increase the relative pressure at that end of the heat pipe with respect to the cooler end. 
This pressure imbalance causes the heated vapor to equalize the pressure by migrating to 
the cooler end, where the vapor condenses and releases its heat, warming the nonheated 
end of the pipe. The cooler environment surrounding this end transfers the heat away from 
the pipe by convection. The condensed liquid drifts to the pipe’s walls and is drawn back to 
the heated end of the heat pipe by gravity or by a wicking material or texture that lines the 
inside of the pipe. Once the liquid returns, the process repeats. 

Heat pipes are found throughout the computing industry but are particularly beneficial 
in smaller devices, even as large as laptops. This is because heat pipes work in the absence 
of cavernous spaces that support airflow. A simple radiator of sorts at the cool end of the 
pipes, coupled with a simple fan, is enough to keep such devices running cool indefinitely. 


Peltier Cooling Devices 


Water- and air-cooling devices are extremely effective by themselves, but they are more 
effective when used with a device known as a Peltier cooling element. These devices, also 
known as thermoelectric coolers (TECs), facilitate the transfer of heat from one side of 
the element, made of one material, to the other side, made of a different material. Thus, 
they have a hot side and a cold side. The cold side should always be against the CPU sur- 
face, and optimally, the hot side should be mated with a heat sink or water block for heat 
dissipation. Consequently, TECs are not meant to replace air-cooling mechanisms but to 
complement them. 

One of the downsides to TECs is the likelihood of condensation because of the sub- 
ambient temperatures these devices produce. Closed-cell foams can be used to guard 
against damage from condensation. 


Phase-Change Cooling 


With phase-change cooling, the cooling effect from the change of a liquid to a gas is used 
to cool the inside of a PC. It is a very expensive method of cooling, but it does work. Most 
often, external air-conditioner-like pumps, coils, and evaporators cool the coolant, which is 
sent, ice cold, to the heat sink blocks on the processor and chipset. Think of it as a water- 
cooling system that chills the water below room temperature. Unfortunately, this is easily 
the noisiest cooling method in this discussion. Its results cannot be ignored, however; it is 
possible to get CPU temps in the range of —4° F (-20° C). Normal CPU temperatures hover 
between 104° F and 122° F (40° C and 50° C). 

The major drawback to this method is that in higher-humidity conditions, condensation 
can bea problem. The moisture from the air condenses on the heat sink and can run off 
onto and under the processor, thus shorting out the electronics. Designers of phase-change 
cooling systems offer solutions to help ensure that this isn’t a problem. Products in the form 
of foam, silicone adhesive, and greaseless, noncuring adhesives are available to seal the 
surface and perimeter of the processor. Additionally, manufacturers sell gaskets and shims 
that correspond to specific processors, all designed to protect your delicate and expensive 
components from damage. 
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Liquid Nitrogen and Helium Cooling 


In the interest of completeness, there is a novel approach to super-cooling processors that 
is ill advised under all but the most extreme circumstances. By filling a vessel placed over 
the component to be cooled with a liquid form of nitrogen or, for an even more intense 
effect, helium, temperatures from —100° C to -240° C can be achieved. The results are 
short lived and only useful in overclocking with a view to setting records. The processor 
is not likely to survive the incident due to the internal stress from the extreme temperature 
changes as well as the stress placed on the microscopic internal joints by the passage of 
excessive electrons. 


Undervolting 


Not an attachment, undervolting takes advantage of the property of physics whereby reduc- 
tion in voltage has an exponential effect on the reduction of power consumption and asso- 
ciated heat production. Undervolting requires a BIOS (where the setting is made) and CPU 
combination that supports it. 

You should monitor the system for unpredictable adverse effects. One of your trouble- 
shooting steps might include returning the CPU voltage to normal and observing the 
results. 


Summary 


In this chapter, we took a tour of the key internal system components of a PC. You learned 
primarily about the “big three,” which are the motherboard, processor, and memory. 
Included in the motherboard discussion were form factors, connector types, such as PCle 
and SATA, BIOS/UEFI settings, and the CMOS battery. CPU topics included features such 
as multicore, hyperthreading, and virtualization, as well as compatibility. With RAM you 
learned about different types (GSODIMMs, DDR2, DDR3, and DDR4) and concepts such as 
single-, dual-, and triple-channel, error correcting, and parity. 

Finally, the chapter ended with cooling systems, which keep the components from dam- 
aging themselves with excess heat. This chapter laid the foundation for the rest of the book, 
including the next few chapters on additional hardware components. 


Exam Essentials 


Know the types of system boards. Know the characteristics of and differences between 
ATX, micro ATX, ITX, and mini-ITX motherboards. 


Know the components of a motherboard. Be able to describe, identify, and replace (where 
applicable) motherboard components, such as chipsets, expansion slots, memory slots, pro- 
cessor sockets, power connectors, BIOS/UEFI (firmware), and CMOS batteries. 
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Understand the purposes and characteristics of processors. Be able to discuss the differ- 
ent processor packaging, old and new, and know the meaning of the terms hyperthreading, 
cores, cache, speed, virtualization support, and integrated GPU. 


Understand the purposes and characteristics of memory. Know about the characteristics 
that set the various types of memory apart from one another. This includes the actual types 
of memory, such as DRAM (which includes several varieties), SRAM, ROM, and CMOS, 
as well as memory packaging, such as DIMMs and SODIMMs. Also have a firm under- 
standing of the different levels of cache memory as well as its purpose in general. 


Know how to replace RAM, given a scenario. RAM must match the motherboard in form 
factor and in speed. For example, some motherboards will only accept DDR3 or DDR4 
memory. The speed should be compatible with the FSB. 


Understand the purposes and characteristics of cooling systems. Know the different ways 
internal components can be cooled and how overheating can be prevented. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 
1. Which computer component contains all the circuitry necessary for other components or 
devices to communicate with one another? 
A. Motherboard 
B. CPU 
Cc. RAM 
D. Expansion bus 
2. You are told by a technician over the phone that you need to bring replacement DDR 
SDRAM memory. What type of packaging is used for DDR SDRAM memory? 
A. 168-pin DIMM 
B. 224-pin DIMM 
C. 184-pin DIMM 
D. 240-pin DIMM 
3. You need to replace memory in a desktop PC and to go purchase RAM. When you are at 


the store, you need to find the appropriate type of memory. What memory chips would you 
find on a stick of PC3-16000? 


A. DDR-2000 
B. DDR3-2000 
C. DDR3-1600 
D. PC3-2000 
4. A client wants you to build a new PC for her, with a smaller case and lower power require- 


ments. When selecting a motherboard, which form factor should you choose for a smaller 
size and lower power consumption? 


A. ATX 

B. AT 

C. Micro ATX 
D. ITX 


5. A motherboard failed on a desktop PC with an Intel Core i7-8700K processor. When look- 
ing for a replacement motherboard, which CPU socket does it need to have? 


A. LGA 1366 
B. LGA 1150 
C. LGA 1151 
D. LGA 2066 


10. 
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You have just replaced a processor in a computer and now need to add a cooling mecha- 
nism. What should you use to attach the cooling system to the processor? 


A. Heat sink 

B. Thermal paste 

C. Fan 

D. Superglue 

A technician asks you how to get a computer’s processor to run faster than it currently 
does. What is he trying to achieve? 

A. Hyperthreading 

B. Overclocking 

C. Virtualization 

D. Multicore support 


You are assembling a new computer and are looking at new cooling systems. Which of the 
following cooling systems requires the use of a pump? 


A. Liquid 
B. Thermal paste 
C. Heat sink 


D. Heat sink plus fan 


You are replacing a motherboard in a computer that uses an AMD Ryzen 3 processor. 
Which CPU socket type do you need to ensure that the motherboard has? 


A. AM2 


B. AM3 
C. AM4 
D. LGA 1151 


You press the front power button on a computer and the system boots. Later, you press it 
briefly and the system hibernates. When you press it again, the system resumes. You press 
and hold the button and the system shuts down. What is this feature called? 


A. Programmable power 
B. Soft power 

C. Relay power 
D 


Hot power 
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11. 


12. 


13. 


14. 


15. 
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You are training new technicians to install RAM and pointing out differences between 
packages. Which of the following are the numbers of pins that can be found on DIMM 
modules used in desktop motherboards? (Choose two.) 


180 
184 
200 
204 
232 
240 


™moOO @ > 


You are installing a new computer, and the user wants to use virtualization. Which two 
hardware components need to support virtual technology for this to work properly? 
(Choose two.) 


A. RAM 

B. Motherboard 
Cc. CPU 

D. BIOS 


You find out that a disgruntled ex-employee’s computer has a boot password that must be 
entered before the operating system is ever loaded. There is also a password preventing your 
access to the BIOS utility. Which of the following motherboard components can most likely 
be used to return the computer to a state that will allow you to boot the system without 
knowing the password? 


A. Cable header 

B. Power reset connector 

C. Toggle switch 

D. Jumper 

Your Core i5 fan has a four-pin connector, but your motherboard only has a single three- 


pin header with the CPU_FAN label. Which of the following will be the easiest solution to 
get the necessary cooling for your CPU? 


A. Plug the four-pin connector into the three-pin header. 
B. Buy a four-pin to three-pin adapter. 

C. Leave the plug disconnected and use only the heat sink. 
D. Add an extra chassis fan. 


You are installing a new video card into a PCle slot. What is the combined total throughput 
of a PCle 2.0 x16 slot? 


A. 500 MBps 
B. 1GBps 

C. 16 GBps 
D. 32 GBps 


16. 


17. 


18. 


19. 


20. 
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Which of the following allows you to perform the most complete restart of the computer 
without removing power? 


A. Start > Restart 

B. Start > Hibernate 

C. Reset button 

D. Power button 

You have just found out that a new BIOS upgrade exists for your computer, and you obtain 


a copy to install it. Which of the following is most helpful when flashing the BIOS on a 
desktop computer system? 


A. DVD-ROM 

B. Uninterruptable power supply 

C. Internet connection 

D. Windows administrator password 


Intel and AMD have integrated which of the following into their Atom and APU processor 
lines that had not been integrated before? 


A. GPU 
B. Math coprocessor 
C. FSB 


D. RAM controller 


You have just purchased a motherboard that has an LGA 1156 socket for an Intel Pentium 
processor. What type of memory modules will you most likely need for this motherboard? 


A. DIP 


B. SIMM 
Cc. DIMM 
D. SODIMM 


You need to install a new video card into a desktop computer. What type of expansion slot 
is preferred today for high-performance graphics adapters? 


A. AGP 
B. PCle 
C. PCI 

D. SATA 
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Performance-Based Question 1 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answer compares to the authors’, refer 
to Appendix B. 


You have been asked to remove a dual in-line memory module and insert one with a 
larger capacity in its place. Describe the process for doing so. 


Performance-Based Question 2 


Identify the component each arrow points to in the following image of an ATX 
motherboard. 
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and Power Supplies 





THE FOLLOWING COMPTIA A+ 220-1001 EXAM 
OBJECTIVES ARE COVERED IN THIS CHAPTER: 


y 3.4 Given a scenario, select, install, and configure 
storage devices. 


= Optical drives 
a CD-ROM/CD-RW 
a DVD-ROM/DVD-RW/DVD-RW DL 
= Blu-ray 
a BD-R 
a BD-RE 
a Solid-state drives 
a M2 drives 
a NVME 
a SATA 2.5 
a Magnetic hard drives 
=a 5,400rpm 
a 7,200rpm 
a 10,000rpm 
= 15,000rpm 
= Sizes: 
= 2.5 
= 3.5 





a Hybrid drives 

= Flash 
a SD card 
a CompactFlash 
a Micro-SD card 
a Mini-SD card 
=» xD 

= Configurations 
a RAID O, 1,5, 10 


= Hot swappable 


y 3.5 Given a scenario, install and configure motherboards, 
CPUs, and add-on cards. 


a Expansion cards 
= Video cards 
= Onboard 
=» Add-on card 
a Sound cards 
a Network interface card 
a USB expansion card 


= eSATAcard 


y 3.7 Summarize power supply types and features. 


Input 115V vs. 220V 


Output 5.5V vs. 12V 


24-pin motherboard adapter 


Wattage rating 


= Number of devices/types of devices to be powered 





As a PC technician, you need to know quite a bit about hard- 
ware. Given the importance and magnitude of this knowledge, 
BEASTS the best way to approach it is in sections. The first chapter 
introduced the topic via the primary core components, and this chapter follows up where 

it left off. First, we will look at adding functionality by plugging expansion cards into the 
motherboard. Then, we will focus on storage devices that hold data persistently—that is, 
they don’t require power to maintain data like RAM does. Finally, we will end the chapter 
by looking at the simple-looking but potentially dangerous box that gives the components 
the energy they need—the power supply. 





Installing and Configuring 
Expansion Cards 


An expansion card (also known as an adapter card) is simply a circuit board that you 
install into a computer to increase the capabilities of that computer. Expansion cards come 
in varying formats for different uses, but the important thing to note is that no matter what 
function a card has, the card being installed must match the bus type of the motherboard 
into which it is being installed. For example, you can install a PCI network card into a PCI 
expansion slot only. 

For today’s integrated components (those built into the motherboard), you might not 
need an adapter to achieve the related services, but you will still need to install a driver— 
a software program that lets the operating system talk to the hardware—to make the 
integrated devices function with the operating system. Most motherboard manufacturers 
supply drivers with their motherboards, either on a disc or flash drive, that contain all 
the device drivers needed to get the built-in electronics recognized by the operating sys- 
tem. Execution of the driver’s setup program generally results in all components working 
properly. 

The following are the four most common categories of expansion cards installed today: 


a Video 
a Multimedia 
a Communications 


= Input/Output 
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Let’s take a quick look at each of these card types, their functions, and what some of 
them look like. 


Video 


A video adapter (more commonly called a graphics adapter or even more commonly, a 
video card) is the expansion card that you put into a computer to allow the computer to 
present information on some kind of display, typically a monitor or a projector. A video 
card is also responsible for converting the data sent to it by the CPU into the pixels, 
addresses, and other items required for display. Sometimes, video cards can include dedi- 
cated chips to perform some of these functions, thus accelerating the speed of display. 

You will encounter two classes of video cards: onboard cards and add-on cards. 
Onboard (or integrated) cards are built into the motherboard. As mentioned earlier, you 
need to install a device driver to get them to work properly, but those often come packaged 
with the motherboard itself. The upside to an integrated card is that it frees up an expan- 
sion slot. The manufacturer can either leave the slot open or design the motherboard and/ 
or case to be smaller. One downside is that if the video card fails, you need a new moth- 
erboard, or you can install an add-on card. A second downside is that the onboard video 
cards aren’t typically high-end. If the user wants great graphics from a powerful video card, 
then an add-on card is almost always the way to go. 

As for add-on cards, PCle is the preferred expansion slot type. You might be able to find 
the rare motherboard that still offers a legacy AGP slot, and you might see some PCI video 
cards, but they are uncommon. The technology on which PCle was designed performs bet- 
ter for video than those on which AGP and PCI are based. Figure 2.1 shows an example of 
a simple PCle-based video card. 


FIGURE 2.1 A PCle video expansion card 
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Multimedia 


The most basic and prolific multimedia adapter is the sound card. TV tuner cards and 
video capture cards also offer multimedia experiences but are less common than sound 
cards. 


Sound Card 


Just as there are devices to convert computer signals into printouts and video information, 
there are devices to convert those signals into sound. These devices are known as sound 
cards. Although sound cards started out as pluggable adapters, this functionality is one 

of the most common integrated technologies found on motherboards today. A sound card 
typically has small, round, 1/8” jacks on the back of it for connecting microphones, head- 
phones, and speakers as well as other sound equipment. Older sound cards used a DA15 
game port, which could be used either for joysticks or Musical Instrument Digital Interface 
(MIDI) controllers. Figure 2.2 shows an example of a sound card with a DA15 game port. 


FIGURE 2.2 Aclassic sound card 





TV Tuner Cards and Video Capture Cards 


The TV tuner card is a class of internal and external devices that allows you to connect a 
broadcast signal, such as home cable television, to your computer and display the output on 
the computer monitor. TV tuner cards come in analog, digital, and hybrid varieties. Most 
TV tuner cards act as video capture cards as well. A video capture card can also be a stand- 
alone device, and it is often used to save a video stream to the computer for later manipula- 
tion or sharing. Video-sharing sites on the Internet make video capture cards quite popular 
with enterprises and Internet socialites alike. TV tuner cards and video capture cards need 
and often come with software to aid in the processing of multimedia input. 
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Communications 


Communications adapters enable a computer to transmit information to other devices that 
might be too distant to cable up to directly. Network adapters and modems are the two 
most popular types of communications adapters. Network adapters are generally used 
within the administrative domain of a home or enterprise and rely on other devices to 
relay their transmissions around the world. In contrast, modems allow direct domestic or 
international communication between two devices across the Public Switched Telephone 
Network (PSTN). Although there are other devices in the PSTN, the service provider’s 
network appears as a cloud to the end stations, unlike the intermediate devices of a home 
or enterprise data network. 


Network Interface Card 


A network interface card (NIC) is an expansion card that connects a computer to a net- 
work so that it can communicate with other computers on that network. It translates the 
data from the parallel data stream used inside the computer into the serial data stream that 
makes up the frames used on the network. It has a connector for the type of expansion bus 
on the motherboard (PCIe or PCI) as well as an interface for the type of network it is con- 
necting to (such as fiber connectors, Registered Jack 45 [RJ-45] for unshielded twisted pair 
[UTP], antenna for wireless, or BNC for legacy coax). In addition to physically installing the 
NIC, you need to install drivers for the NIC in order for the computer to use the adapter to 
access the network. Figure 2.3 shows a PCle x1 Ethernet NIC with an RJ-45 port. (Network 
connectors are covered in more detail in Chapter 6, “Networking Fundamentals.”) 


FIGURE 2.3 A network interface card 





Some computers have NIC circuitry integrated into their motherboards. 
TE Therefore, a computer with an integrated NIC wouldn't need to have a NIC 
expansion card installed unless it was faster or you were using the second NIC 


for load balancing (splitting the traffic between two cards to increase speed), 
security, or fault-tolerance (having a backup in case one fails) applications. 
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Wireless NICs 


Wireless NICs have the unique characteristic of requiring that you configure their 
connecting device before configuring the NIC. Wired NICs can generally create a link and 
begin operation just by being physically connected to a hub or switch. The wireless access 
point or ad-hoc partner computer must also be configured before secure communication, at 
a minimum, can occur by using a wireless NIC. These terms are explained in greater detail 
in Chapter 8, “Installing Wireless and SOHO Networks.” Figure 2.4 shows a PCI wireless 
NIC. 


FIGURE 2.4 A wireless NIC 
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Modem 


Any computer that connects to the Internet using an analog dial-up connection needs a 
modem, or modulator/demodulator. A modem is a device that converts digital signals 
from a computer into analog signals that can be transmitted over phone lines and back 
again. These expansion card devices have one connector for the expansion bus being used 
(PCIe or PCI) and another for connection to the telephone line. Actually, as you can see 
in Figure 2.5, which shows a PCI modem, there might be two Registered Jack 11 (RJ-11) 
ports: one for connection to the telephone line and the other for connection to a telephone. 
This is primarily so that a phone can gain access to the same wall jack that the computer 
connects to without swapping their cords or using a separate splitter. Keep in mind, 
though, that you won’t be able to use the phone while the computer is connected to the 
Internet. 


82 Chapter 2 = Internal Expansion, Storage Devices, and Power Supplies 


FIGURE 2.5 An internal analog modem 





You might notice that the modem looks a lot like a network card. Modems 
á TE use smaller 4-pin RJ-11 connectors, whereas NICs use 8-pin RJ-45 connec- 
tors. And even though it's probably hard to see in Figure 2.5, modems with 


two connectors have a small telephone icon etched into the faceplate as 
well. 


Input/Output 


An input/output card is often used as a catchall phrase for any expansion card that enhances 
the system, allowing it to interface with devices that offer input to the system, output from 
the system, or both. The following are common examples of modern I/O cards: 


=» USB cards 
= Storage cards, such as eSATA 
= Thunderbolt cards 


Figure 2.6 shows a 7-port PCle x1 USB expansion card (left) next to an eSATA card 
(right). USB cards commonly come in 2-, 4-, and 7-port configurations, whereas eSATA 
cards often have one or two external ports. This eSATA card also has two internal SATA 
connectors on the top (left, in the picture) of the card. You’ll also find cards that have 
multiple port types, such as eSATA and USB. 
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FIGURE 2.6 USB and eSATA expansion cards 





These cards are to be installed in a compatible slot on the motherboard. Their con- 
figuration is minimal, and it is usually completed through the Plug and Play process. 
Nevertheless, check the BIOS settings after installation for new entries in the menu struc- 
ture. It’s the job of the BIOS to track all the hardware in the system and supply resources 
as needed. For example, a new Thunderbolt expansion card might allow you to configure 
whether attached Thunderbolt devices should be allowed to wake the system, how long of 
a delay should be observed before waking the system, and various settings for how to use 
memory and other resources. 


Adapter Configuration 


Expansion cards might require configuration. However, most can be recognized automatically 
by a Plug and Play operating system. In other words, resources are handed out automatically 
without jumper settings, or the installation of device drivers is handled or requested 
automatically. Supplying the drivers might be the only form of configuration required. 

Some adapters, however, require more specific configuration steps during installation. 
For example: 


a Two or more PCle graphics adapters that support SLI (see Chapter 1, “Motherboards, 
Processors, and Memory,”) must be bridged together with special hardware that comes 
with the adapters. 


=a Most sound cards tend to work with no specific configuration, but advanced features 
will need to be implemented through the operating system or through utilities that 
came with the adapter. 


= The functions of TV and video capture cards are sometimes not native to the operating 
system and therefore come with advanced utilities that must be learned and configured 
before the adapters will work as expected. 
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= Wireless network adapters often require the installation of a screw-on antenna, which 
should be postponed until after the card is fully inserted and physically secured in the 
system. Software configuration that allows these cards to communicate with a wireless 
access point can be challenging for the novice. 

= Wired network adapters tend to be easier to configure than wireless ones. Nevertheless, 
even wired NICs might require manual configuration of certain protocol settings, such 
as IP addressing, duplex, and speed, in order for them to be productive. 

In general, installation and configuration steps for expansion cards can be summarized 
as follows: 


1. Ensure that the computer is powered off. 
2. Install the adapter into an open slot. 
3. Connect power, if needed. 
This most often applies to video cards. 
4. After booting up the computer, install the driver. 
Again, Plug and Play may take care of this automatically for you. 


5. Ifthe card isn’t recognized or providing the expected functionality, check the BIOS for 
configuration settings. 


6. For other configuration options, use the utility provided by the manufacturer, 
if applicable. 


In any event, consult the documentation provided with your adapter or the 
manufacturer’s website for additional configuration requirements or options. The more 
specialized the adapter, the more likely it will come with specialty-configuration utilities. 


Understanding Storage Devices 


What good is a computer without a place to put everything? Storage media hold the files that 
the operating system needs to operate and the data that users need to save. The many differ- 
ent types of storage media differ in terms of their capacity (how much they can store), access 
time (how fast the computer can access the information), and the physical type of media used. 


Hard Disk Drive Systems 


Hard disk drive (HDD) systems (or hard drives for short) are used for permanent storage 
and quick access. Hard drives typically reside inside the computer, where they are semi- 
permanently mounted with no external access (although there are external and removable 
hard drives) and can hold more information than other forms of storage. Hard drives use a 
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magnetic storage medium, and they are known as conventional drives to differentiate them 
from newer solid-state storage media. 
The hard disk drive system contains the following three critical components: 


Controller This component controls the drive. The controller chip controls how the drive 
operates and how the data is encoded onto the platters. It controls how the data sends 
signals to the various motors in the drive and receives signals from the sensors inside the 
drive. Most of today’s hard disk drive technologies incorporate the controller and drive 
into one assembly. Today, the most common and well known of these technologies is 
SATA. 


Hard Disk This is the physical storage medium. Hard disk drive systems store informa- 
tion on small discs (from under 1 inch to 5 inches in diameter), also called platters, stacked 
together and placed in an enclosure. 


Host Bus Adapter The host bus adapter (HBA) is the translator, converting signals from 
the controller to signals that the computer can understand. Most motherboards today 
incorporate the host adapter into the motherboard’s circuitry, offering headers for drive- 
cable connections. Legacy host adapters and certain modern adapters house the hard drive 
controller circuitry. 

Figure 2.7 shows a hard disk drive and host adapter. The hard drive controller is inte- 
grated into the drive in this case, but it could reside on the host adapter in other hard drive 
technologies. This particular example shows a hard drive plugging into an expansion card. 
Today’s drives almost always connect straight to the motherboard, again with the HBA 
being integrated with the drive itself. 


FIGURE 2.7 A harddisk drive system 


PATA hard drive 


PATA host adapter 





Hard drives, regardless of whether they are magnetic or solid-state, most often connect 
to the motherboard’s SATA or PATA interfaces. You learned about SATA and PATA in 
Chapter 1, but Figure 2.8 provides a reminder of what the interfaces look like; SATA is on 
the top. 
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FIGURE 2.8 Four SATA and two PATA ports 





The back of the hard drive will have data and power connectors. Figure 2.9 shows the 
data and power connectors for a PATA drive and a SATA drive. 


FIGURE 2.9 PATA (top) and SATA (bottom) hard drive data and power connectors 





Today, IDE (PATA) hard drives are essentially obsolete. Most of that is due to the limita- 
tions in transfer speeds. Most PATA hard drives follow the ATA/100 standard, which has a 
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maximum transfer speed of 100 MBps. There are faster ATA standards, such as ATA/133 
and ATA/167, but drives using those standards are rare. SATA III (also known as SATA 6 
Gb/s), on the other hand, has a maximum transfer speed of 600 MBps. 


i There’s another hard drive connector type called SAS, or Serial Attached 

TE SCSI. (SCSI is pronounced “scuzzy” and stands for Small Computer Sys- 
tem Interface—aren’t acronyms within acronyms great?) SAS tends to be a 
bit faster than SATA, and is used mostly in enterprise computing applica- 


tions. You won't see many SAS ports on conventional desktop or laptop 
motherboards. SAS is not on the A+ exam objectives. 


Anatomy of a Hard Drive 


A hard drive is constructed in a cleanroom to avoid the introduction of contaminants 
into the hermetically sealed drive casing. Once the casing is sealed, most manufacturers 
seal one or more of the screws with a sticker warning that removal of or damage to the 
seal will result in voiding the drive’s warranty. Even some of the smallest contaminants 
can damage the precision components if allowed inside the hard drive’s external shell. 
The following is a list of the terms used to describe these components in the following 
paragraphs: 


= Platters 

= Read/write heads 

= Tracks 

= Sectors 

= Cylinders 

a Clusters (allocation units) 


Inside the sealed case of the hard drive lie one or more platters, where the actual data is 
stored by the read/write heads. The heads are mounted on a mechanism that moves them 
in tandem across both surfaces of all platters. Older drives used a stepper motor to posi- 
tion the heads at discrete points along the surface of the platters, which spin at thousands 
of revolutions per minute on a spindle mounted to a hub. Newer drives use voice coils for 
a more analog movement, resulting in reduced data loss because the circuitry can sense 
where the data is located through a servo scheme, even if the data shifts due to changes in 
physical disc geometry. Figure 2.10 shows the internal components of a conventional hard 
drive. 
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FIGURE 2.10 Anatomy ofa hard drive 





By Eric Gaba, Wikimedia Commons user Sting, CC BY-SA 3.0, https: //commons.wikimedia.org/w/index 
.php?curid=11278668 


Factory preparation for newer drives, or low-level formatting in the field for legacy drives, 
maps the inherent flaws of the platters so that the drive controllers know not to place data 
in these compromised locations. Additionally, this phase in drive preparation creates con- 
centric rings, or tracks, which are drawn magnetically around the surface of the platters. 
Sectors are then delineated within each of the tracks. Sectors are the magnetic domains that 
represent the smallest units of storage on the disk’s platters. This is illustrated in Figure 2.11. 
Magnetic-drive sectors commonly store only 512 bytes (1/2 KB) of data each. 


FIGURE 2.11 Cylinders, tracks, and sectors 


Cylinder 





The capacity of a hard drive is a function of the number of sectors it contains. The 
controller for the hard drive knows exactly how the sectors are laid out within the disk 
assembly. It takes direction from the BIOS when writing information to and reading 
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information from the drive. The BIOS, however, does not always understand the actual 
geometry of the drive. For example, the BIOS does not support more than 63 sectors per 
track. Nevertheless, many hard drives have tracks that contain many more than 63 sec- 
tors per track. As a result, a translation must occur from where the BIOS believes it is 
directing information to be written to where the information is actually written by the 
controller. When the BIOS detects the geometry of the drive, it is because the control- 
ler reports dimensions that the BIOS can understand. The same sort of trickery occurs 
when the BIOS reports to the operating system a linear address space for the operating 
system to use when requesting that data be written to or read from the drive through the 
BIOS. 

The basic hard drive geometry consists of the following three components: 


a The number of sectors that each track contains 
a The number of read/write heads in the disk assembly 
= The number of cylinders in the assembly 


This set of values is known as CHS (for cylinders/heads/sectors). The number of 
cylinders is the number of tracks that can be found on any single surface of any single 
platter. It is called a cylinder because the collection of all same-number tracks on all writ- 
able surfaces of the hard drive assembly looks like a geometric cylinder when connected 
together vertically. Therefore, cylinder 1, for instance, on an assembly that contains three 
platters comprises six tracks (one on each side of each platter), each labeled track 1 on its 
respective surface. 

Because the number of cylinders indicates only the number of tracks on any one writable 
surface in the assembly, the number of writable surfaces must be factored into the equation 
to produce the total number of tracks in the entire assembly. This is where the number of 
heads comes in. There is a single head dedicated to each writable surface, two per plat- 
ter. By multiplying the number of cylinders by the number of heads, you produce the total 
number of tracks throughout the disk assembly. By multiplying this product by the number 
of sectors per track, you discover the total number of sectors throughout the disk assembly. 
Dividing the result by 2 provides the number of kilobytes that the hard drive can store. This 
works because each sector holds 512 bytes, which is equivalent to 1/2 KB. Each time you 
divide the result by 1,024, you obtain a smaller number, but the unit of measure increases 
from kilobytes to megabytes, from megabytes to gigabytes, and so on. The equation in 
Figure 2.12 illustrates this computation. 


FIGURE 2.12 Computing total sectors in CHS geometry 


cylinders (tracks/susfacey 
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total sectors (sectors/drive) 
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For example, a drive labeled with the maximum allowed CHS geometry of 
16383/16/63, respectively, results in only 7.9 GB. Using the equation and multiplying 
the number of cylinders by the number of heads, you arrive at 262,128 total tracks on 
the drive. Multiplying this number by 63, the result is that there are 16,514,064 total 
sectors on the drive. Each sector holds 1/2 KB, for a total capacity of 8,257,032 KB. 
Dividing by 1,024 to convert to MB and again by 1,024 to convert to GB, the 7.9 GB 
capacity is revealed. As a result, although drives larger than 8 GB still display the 
16383/16/63 CHS capacity for devices that must adhere to the CHS geometry, the CHS 
scheme cannot be used on today’s larger drives at the risk of losing the vast majority of 
their capacity. The solution is to allow the operating system to reference logical blocks 
of 1/2 KB sectors that can be individually addressed by a 48-bit value, resulting in 
128 PB of drive capacity, far above the largest drives being manufactured today. A PB is 
1,024 TB; a TB is 1,024 GB. 

File systems laid down on the tracks and their sectors routinely group a configurable 
number of sectors into equal or larger sets called clusters or allocation units. This concept 
exists because operating system designers have to settle on a finite number of addressable 
units of storage and a fixed number of bits to address them uniquely. Because the units of 
storage can vary in size, however, the maximum amount of a drive’s storage capacity can 
vary accordingly, but not unless logical drive capacities in excess of 2 TB are implemented. 
Volumes based on the master boot record (MBR) structure are limited to 2 TB total. Such 
volumes include those created on basic disks as well as simple and mirrored volumes on 
dynamic disks. 

Be aware that today’s hard drives and volumes created with RAID can certainly exceed 
2 TB by combining multiple simple volumes into spanned or striped volumes, at which 
point maximum NTFS volume sizes—discussed at the end of this section—come into play. 
Keep in mind that larger clusters beget larger volumes, but they result in less efficient usage 
of space, a phenomenon that is discussed in the following paragraph. 

No two files are allowed to occupy the same sector, so the opportunity exists for a 
waste of space that defragmenting cannot correct. Clusters exacerbate the problem by 
having a similar foible: The operating system does not allow any two files to occupy 
the same cluster. Thus, the larger the cluster size, the larger the potential waste. So 
although you can increase the cluster size (generally to as large as 64 KB, which cor- 
responds to 128 sectors), you should keep in mind that unless you are storing a notable 
number of very large files, the waste will escalate astoundingly, perhaps negating or 
reversing your perceived storage-capacity increase. Nevertheless, if you have single files 
that are very large, say hundreds of megabytes or larger, then increased cluster sizes are 
for you. 

For instance, assuming the 2 TB maximum size for simple and mirrored dynamic vol- 
umes, a 64 KB cluster size results in a maximum spanned or striped NTFS volume size of 
64 KB less than 256 TB. 


HDD Speeds 


As the electronics within the HBA and controller get faster, they are capable of requesting 
data at higher and higher rates. If the platters are spinning at a constant rate, however, the 
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information can be accessed only as fast as a given fixed rate. To make information avail- 
able to the electronics more quickly, manufacturers increase the speed at which the platters 
spin from one generation of drives to the next, with multiple speeds coexisting in the mar- 
ketplace for an unpredictable period, at least until the demand dies down for one or more 
speeds. 

The following spin rates have been used in the industry for the platters in conventional 
magnetic hard disk drives: 


= 5,400 rpm 
= 7,200 rpm 
= 10,000 rpm 
= 12,000 rpm 
= 15,000 rpm 


While it is true that a higher revolutions per minute (rpm) rating results in the 
ability to move data more quickly, there are many applications that do not benefit from 
increased disk-access speeds. As a result, you should choose only faster drives, which are 
also usually more expensive per byte of capacity, when you have an application for this 
type of performance, such as for housing the partition where the operating system resides 
or for very disk-intensive programs. For comparison, a 7,200 rpm SATA hard drive 
can sustain data read speeds of about 100 MBps, which is about the same as a PATA 
ATA/100 7,200 rpm drive. A 10,000 rpm (also known as 10k) SATA drive can top out 
around 200 MBps. 


ia All 15,000 rpm drives are SAS drives, not SATA or PATA drives. 
TE 


Higher speeds also consume more energy and produce more heat. The lower speeds can 
be ideal in laptops, where heat production and battery usage can be issues with higher- 
speed drives. Even the fastest conventional hard drives are slower than solid-state drives are 
at transferring data. 


HDD Sizes 


Physically, the most common hard drive sizes are 3.5” and 2.5”. Desktops traditionally use 
3.5” drives, whereas the 2.5” drives are made for laptops. Converter kits are available to 
mount a 2.5” drive into a 3.5” desktop hard drive bay, however. Figure 2.13 shows the two 
drives together. As you can see, the 2.5” drive is significantly smaller in all three dimen- 
sions, but it does have the same connectors as its bigger cousin. Finally, 1.8” drives are used 
in some laptops and smaller devices. 
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FIGURE 2.13 A3.5” and 2.5” hard drive 










p svenan, 
TAA NA 


ama a 

TAMER AA LEANN UT 
Tumanwanon a 

awinan, p 


Solid-State Drives 


Unlike conventional hard drives, solid-state drives (SSDs) have no moving parts—they use 
the same solid-state memory technology found in the other forms of flash memory. You can 
think of them as big versions of the flash drives that are so common. 

SSDs take advantage of the transfer speed of the SATA 6 GB/s bus, which you will recall 
is up to 600 MBps. In fact, SSDs are so fast, the SATA bus is the bottleneck. As you might 
expect, SSDs have several advantages over their mechanical counterparts. These include the 
following: 


a Faster start-up and read times 
= Less power consumption and heat produced 
a Silent operation 
= Generally more reliable because of a lack of moving parts 
= Less susceptible to damage from physical shock and heat production 
= Higher data density per square centimeter 
The disadvantages of SSDs are as follows: 
= The technology to build an SSD is more expensive per byte. 


= All solid-state memory is limited to a finite number of write (including erase) 
operations. Lack of longevity could be an issue. As the technology matures, this is 
becoming less and less of a problem. 
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You will find that SSDs in the market generally have lower overall capacity than HDDs as 
well. For example, it’s not uncommon to find HDDs over 8 TB in size, whereas the biggest SSD 
(at the time of this writing) is 2 TB. A 1 TB SSD is in the same price range as an 8 TB HDD. 

When used as a replacement for traditional HDDs, SSDs are expected to behave in a 
similar fashion, mainly by retaining contents across a power cycle. With SSD, you can 
also expect to maintain or exceed the speed of the HDD. SSDs can be made faster still by 
including a small amount of DRAM as a cache. 

Many SSDs are what’s known as SATA 2.5, meaning they use a SATA port and are 
2.5” in size. This isn’t true for all solid-state drives, though, as you will see in the upcoming 
“Other SSDs” section. 


Hybrid Drives 


A cost-saving alternative to a standard SSD that can still provide a significant increase in 
performance over conventional HDDs is the hybrid drive. Hybrid drives can be imple- 
mented in two ways: a solid-state hybrid drive and a dual-drive storage solution. Both 
forms of hybrid drives can take advantage of solutions such as Intel’s Smart Response 
Technology (SRT), which informs the drive system of the most used and highest-value data. 
The drive can then load a copy of such data into the SSD portion of the hybrid drive for 
faster read access. 

It should be noted that systems on which data is accessed randomly do not benefit 
from hybrid drive technology. Any data that is accessed for the first time will also not be 
accessed from flash memory, and it will take as long to access it as if it were accessed from 
a traditional hard drive. Repeated use, however, will result in the monitoring software’s 
flagging of the data for caching in the SSD. 


Solid-State Hybrid Drive 


The solid-state hybrid drive (SSHD) is a conventional HDD manufactured with a sub- 
stantial amount of flash-memory-like solid-state storage aboard. The SSHD is known to 
the operating system as a single drive, and individual access to the separate components is 
unavailable to the user. 


Dual-Drive Solutions 


Dual-drive storage solutions can also benefit from technologies such as Intel’s SRT. 
However, because they are implemented as two separate drives (one conventional HDD and 
one SSD), each with its own separate file system and drive letter, the user can also manually 
choose the data to move to the SSD for faster read access. Users can choose to implement 
dual-drive systems with SSDs of the same size as the HDD, resulting in a fuller caching 
scenario. 


Other SSDs 


It’s been said that the advent of the SSD was a major advancement for the computer 
industry. Solid-state drives are basically made from the same circuitry that RAM is, 


94 Chapter 2 = Internal Expansion, Storage Devices, and Power Supplies 


and they are really, really fast. The limitation in the system is now the SATA controller 
that most hard drives are plugged into. (SATA III is limited to 600 MBps; due to over- 
head most SSDs top out at about 550 MBps during a sequential read data transfer.) So 
as enterprising computer engineers are known to do, some started looking into ways to 
overcome this barrier. The result is that over the last few years, there have been more 
seismic shifts in the storage arena. Two technologies that we’ll cover here are M.2 and 
NVMe. 


M.2 


First, M.2 (pronounced “M dot 2”) isn’t only designed for hard drives. It’s a form factor 
designed to replace the mSATA standard for ultra-small expansion components in laptops 
and smaller devices. mSATA uses the PCI Express Mini Card layout and 52-pin connector. 
M.2 is smaller and faster, using a 22-mm-wide, 66-pin card edge connector. 

Originally developed under the name Next Generation Form Factor (NGFF), M.2 was 
born from the desire to standardize small form factor SSD hard drives. M.2 supports more 
than hard drives, though; you will find M.2 cards that provide Wi-Fi, Bluetooth, Global 
Positioning System (GPS), and Near Field Communication (NFC) connectivity, as well as 
PCIe and SATA connections. 

One interesting connectivity feature of M.2 is that the slots and cards are keyed such 
that only a specific type of card can fit into a certain slot. The keys are given letter names to 
distinguish them from each other, starting with the letter A and moving up the alphabet as 
the location of the key moves across the expansion card. Table 2.1 explains the slot names, 
some interface types supported, and common uses. 


TABLE 2.1 M.2 keying characteristics 





Key Common Interfaces Uses 

A PCle x2, USB 2.0 Wi-Fi, Bluetooth, and cellular cards 
B PCle x2, SATA, USB 2.0, USB 3.0, audio SATA and PCle x2 SSDs 

E PCle x2, USB 2.0 Wi-Fi, Bluetooth, and cellular cards 
M PCle x4, SATA PCle x4 SSDs 


Let’s look at some examples. Figure 2.14 shows four different M.2 cards. From left to 
right, they are an A- and E-keyed Wi-Fi card, two B- and M-keyed SSDs, and an M-keyed 
SSD. Of the four, only the M-keyed SSD can get the fastest speeds (up to 1.8 Gbps), because 
it supports PCIe x4. SSDs on the market are keyed B, M, or B+M. A B-keyed or M-keyed 
SSD won’t fit in a B+M socket. A B+M keyed drive will fit into a B socket or an M socket, 
however. 
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FIGURE 2.14 Four M.2 cards 





Photo credit: Andrew Cunningham / Ars Technica 


Another interesting feature of the cards is that they are also named based on their size. 
For example, you will see card designations such as 1630, 2242, 2280, 22110, or 3042. 
The first two numbers refer to the width, and the rest to the length (in millimeters) of the 
card. In Figure 2.14, you see a 1630, a 2242, and two 2280 cards. 

Figure 2.15 shows a motherboard with two M.2 slots. The one on the left is E-keyed, 
and the one on the right is B-keyed. The left slot is designed for an E-keyed Wi-Fi NIC, and 
the right one for a B-keyed SSD. 


FIGURE 2.15 Two M.2 slots 





Photo credit: Andrew Cunningham / Ars Technica 


As mentioned earlier, M.2 is a form factor, not a bus standard. M.2 supports SATA, 
USB, and PCle buses. What does that mean for M.2 hard drives? It means that if you pur- 
chase an M.2 SATA hard drive, it will have the same speed limitation as SATA III, or about 
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600 MBps. That’s not terrible, but it means that the primary advantage of an M.2 SATA 
drive versus a conventional SATA SSD is size. 

An M.2 PCIe hard drive is an entirely different story. PCIe, you will recall from 
Chapter 1, is much faster than SATA. A PCIe 2.0 x1 bus supports one-way data transfers of 
500 MBps. That is close to SATA III speed, and it’s only a single lane for an older standard. 
Figure 2.16 shows an M.2 PCIe 2.0 x4 Kingston HyperX Predator. These drives come in 
capacities up to 960 GB, and support data reads of up to 2.64 GBps and maximum write 
speeds of 1.56 GBps. All your computer needs is an open PCIe slot. 


FIGURE 2.16 M.2PCle SSD 
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Non-Volatile Memory Express 


Created by a consortium of manufacturers, including Intel, Samsung, Dell, SanDisk, and 
Seagate, non-volatile memory express (NVMe) is an open standard designed to optimize 
the speed of data transfers. Like M.2, NVMe drives support SATA and PCIe buses. You 
can find NVMe SSDs in packages that fit into M.2 slots, PCIe slots, and even 2.5” NVMe 
drives with a PCI interface. Current NVMe SSDs can support data reads of up to 3.5 GBps, 
provided that the interface they are plugged into supports it as well, of course. Said differ- 
ently, remember that an NVMe SATA II SSD will still be limited to 600 MBps; PCIe does 
not have the same limitation. 

One potential issue you might see with NVMe hard drives is that in order to be a boot 
drive, the motherboard must support it. If the motherboard has a built-in M.2 slot, odds 
are that the BIOS will support booting from an NVMe drive. If you are adding it using a 
PCle port, the BIOS might not be able to boot from that drive. 


It’s almost a waste to purchase an M.2 or NVMe SATA SSD, unless the 

Pe TE small size is the primary factor for choosing it. Buying one that sup- 
ports PCle will greatly enhance the speed of the hard drive system in the 
computer. 
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Optical Storage Drives 


Most computers today have an optical storage drive, such as the latest Blu-ray Disc (BD) 
drive; a digital versatile disc (DVD), also called digital video disc drive; or the legacy com- 
pact disc (CD) drive. Each type of optical drive can also be expected to support the tech- 
nology that came before it. Such optical storage devices began earnestly replacing floppy 
diskette drives in the late 1990s. Although, like HDDs, these discs have greater data capac- 
ity and increased performance over floppies, they are not intended to replace hard disk 
drives. HDDs greatly exceed the capacity and performance of optical drives. 

The CDs, DVDs, and BDs used for data storage are virtually the same as those used for 
permanent recorded audio and video. The way that data, audio, and video information is 
written to consumer-recordable versions makes them virtually indistinguishable from such 
professionally manufactured discs. Any differences that arise are due to the format used to 
encode the digital information on the disc. Despite the differences among the professional 
and consumer formats, newer players have no issue with any type of disc used. The encod- 
ing schemes used to store data on such discs are incompatible with the schemes used to 
record audio and video to the same discs. 


CD-ROMs, DVD-ROMs, BD-ROMs, and Capacities 


The amount of data that can be stored on the three primary formats of optical disc varies 
greatly, with each generation of disc exceeding the capacity of all previous generations. The 
following sections detail the science behind the capacities of all three formats. 


CD-ROM 


The CD-ROM (read-only memory) was designed for long-term storage of data. CD-ROMs 
are read-only, meaning that information written at the factory can’t be erased or changed. 
CD-ROMs became very popular because they made a great software distribution medium. 
Programs are always getting larger and increasingly require more room to install, version 
after version. Instead of installing the program of the day using 100 floppy disks, you could 
use a single CD-ROM, which can hold approximately 650 MB in its original, least-capable 
format. Although CDs capable of storing 700 MB eventually became and continue to be 
the most common, discs with 800 MB and 900 MB capacities have been standardized as 
well. See Table 2.2 later in this chapter for a list of optical discs and their capacities. 


DVD-ROM 


For even more storage capacity, many computers feature some form of DVD or BD drive, 
such as the original DVD-ROM drive. The basic DVD-ROM disc is a single-sided disc that 
has a single layer of encoded information. These discs have a capacity of 4.7 GB, many 
times the highest CD-ROM capacity. Simple multiplication can sometimes be used to arrive 
at the capacities of other DVD-ROM varieties. For example, when another media surface is 
added on the side of the disc where the label is often applied, a double-sided disc is created. 
Such double-sided discs have a capacity of 9.4 GB, exactly twice that of a single-sided disc. 
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Practically speaking, the expected 9.4 GB capacity from two independent layers isn’t 
realized when those layers are placed on the same side of a DVD, resulting in only 8.5 
GB of usable space. (BDs do not have this issue; they make use of the full capacity of 
each layer.) The loss of capacity is due to the space between tracks on both layers being 
10 percent wider than normal to facilitate burning one layer without affecting the other. 
This results in about 90 percent remaining capacity per layer. This technology is known 
as DVD DL (DL for dual-layer), attained by placing two media surfaces on the same side 
of the disc, one on top of the other, and using a more sophisticated mechanism that burns 
the inner layer without altering the semitransparent outer layer and vice versa, all from the 
same side of the disc. Add the DL technology to a double-sided disc, and you have a disc 
capable of holding 17.1 GB of information—again, twice the capacity of the single-sided 
version. Figure 2.17 shows an example of a DVD-ROM drive, which also accepts CD-ROM 
discs. Modern 514” optical drives are indistinguishable from older ones, aside from obvious 
markings concerning their capabilities. 


FIGURE 2.17 ADVD-ROM drive 





Blu-ray Disc ROM 


The next generation of optical storage technology was designed for modern high-definition 
video sources. The equipment used to read the resulting discs employs a violet laser, in con- 
trast to the red laser used with standard DVD and CD technologies. Taking a bit of creative 
license with the color of the laser, the Blu-ray Disc Association named itself and the tech- 
nology Blu-ray Disc (BD), after this visibly different characteristic. Blu-ray technology fur- 
ther increases the storage capacity of optical media without changing the form factor. On 

a 12-cm disc, similar to those used for CD-ROMs and DVD-ROMs, BD derives a 25 GB 
storage capacity from the basic disc. When you add a second layer to the same or opposite 
side of the disc, you attain 50 GB of storage. The Blu-ray laser is of a shorter wavelength 
(405 nm) than that of DVD (650 nm) and CD (780 nm) technologies. As a result, and 
through the use of refined optics, the laser can be focused on a much smaller area of the 
disc. This leads to a higher density of information being stored in the same area. 
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An interesting point to note is that designers of the Blu-ray technology do not have to 
stop with the common double-layer solution to increase capacity. Blu-ray Discs with more 
than four layers on a side have been demonstrated, largely owing to the extremely accurate 
focus attainable with the Blu-ray laser. 

In the interest of completeness, it should be mentioned that a high-definition technology 
directly related to DVD, called HD DVD, was once a competitor to Blu-ray. In February 
2008, Toshiba, HD DVD’s primary champion, gave up the fight, conceding to Blu-ray Disc 
as the winner in the high-definition optical-disc race. HD DVD featured red- and blue-laser 
compatibility and 15 GB data storage capacity. 

Table 2.2 draws together the most popular optical-disc formats and lists their respective 
capacities. Some of these formats have already been introduced; others are presented in the 
upcoming section “Recordable Discs and Burners.” Boldfaced capacities in the table are the 
commonly accepted values for their respective formats. 


TABLE 2.2 Optical discs and their capacities 





Disc Format Capacity 

CD SS (includes recordable versions) 650 MB, 700 MB, 800 MB, 900 MB 
DVD-R/RW SS, SL 4.71 GB (4.7 GB) 
DVD+R/RW SS, SL 4.70 GB (4.7 GB) 
DVD-R, DVD+R DS, SL 9.4 GB 

DVD-R SS, DL 8.54 GB (8.5 GB) 
DVD+R SS, DL 8.55 GB (8.5 GB) 
DVD+R DS, DL 17.1 GB 
BD-R/RE SS, SL 25 GB 

BD-R/RE SS, DL 50 GB 

BD-R/RE DS, DL 100 GB 


SS = single-sided; DS = double-sided; SL = single-layer; DL = dual-layer 


Optical Drive Data Rates 


CD-ROM drives are rated in terms of their data transfer speed. The first CD-ROM drives 
transferred data at the same speed as home audio CD players, 150 KBps, referred to as 1X. 
Soon after, CD drives rated as 2X drives that would transfer data at 300 KBps appeared. 
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They increased the spin speed in order to increase the data transfer rate. This system of rat- 
ings continued up until the 8X speed was reached. At that point, the CDs were spinning so 
fast that there was a danger of them flying apart inside the drive. So, although future CD 
drives used the same rating (as in 16X, 32X, and so on), their rating was expressed in terms 
of theoretical maximum transfer rate; 52X is widely regarded as the highest multiplier for 
data CDs. Therefore, the drive isn’t necessarily spinning faster, but through electronics and 
buffering advances, the transfer rates continued to increase. 

The standard DVD-ROM 1X transfer rate is 1.4 MBps, already nine times that of the 
comparably labeled CD-ROM. As a result, to surpass the transfer rate of a 52X CD-ROM 
drive, a DVD-ROM drive need only be rated 6X. DVD transfer rates of 24X at the upper 
end of the scale are common. 

The 1X transfer rate for Blu-ray is 4.5 MBps, roughly 314 times that of the comparable 
DVD multiplier and close to 30 times that of the 1X CD transfer rate. It takes 2X speeds to 
play commercial Blu-ray videos properly, and 6X drives are common today. 


Recordable Discs and Burners 


Years after the original factory-made CD-ROM discs and the drives that could read them 
were developed, the industry, strongly persuaded by consumer demand, developed discs 
that, through the use of associated drives, could be written to once and then used in the 
same fashion as the original CD-ROM discs. The firmware with which the drives were 
equipped could vary the power of the laser to achieve the desired result. At standard power, 
the laser allowed discs inserted in these drives to be read. Increasing the power of the laser 
allowed the crystalline media surface to be melted and changed in such a way that light 
would reflect or refract from the surface in microscopic increments. This characteristic 
enabled mimicking the way in which the original CD-ROM discs stored data. 

Eventually, discs that could be written to, erased, and rewritten were developed. Drives 
that contained the firmware to recognize these discs and control the laser varied the laser’s 
power in three levels. The original two levels closely matched those of the writable discs 
and drives. The third level, somewhere in between, could neutralize the crystalline mate- 
rial without writing new information to the disc. This medium level of power left the disc 
surface in a state similar to its original, unwritten state. Subsequent high-power laser usage 
could write new information to the neutralized locations. 

The best algorithms for such drives, which are still available today, allow two types of 
disc erasure. The entire disc can be erased before new data is written (erased or formatted, 
in various application interfaces), or the data can be erased on-the-fly by one laser, just frac- 
tions of a second before new data is written to the same location by a second laser. If not 
properly implemented in a slow, determined fashion, the latter method can result in write 
errors because the crystalline material does not adequately return to its neutral state before 
the write operation. The downside to slowing down the process is obvious, and methods 
exist to allow a small level of encoding error without data loss. This need to move more 
slowly adds a third speed rating—the rewrite speed—to the existing read and write speed 
ratings of a drive. The following section delves more deeply into this concept. Updates to 
the drive’s firmware can often increase or equalize these speeds. 
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Recordable CD Formats 


CD-recordable (CD-R) and CD-rewritable (CD-RW) drives (also known as CD burners) 
are essentially CD-ROM drives that allow users to create (or burn) their own CD-ROMs. 
They look very similar to CD-ROM drives, but they feature a logo on the front panel 
that represents the drive’s CD-R or CD-RW capability. Figure 2.18 shows the CD-R and 
CD-RW logos that you are likely to see on such drives. 


FIGURE 2.18 CD-R and CD-RW logos 
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The difference between these two types of drives is that CD-R drives can write to a 
CD-R disc only once. A CD-RW drive can erase information from a CD-RW disc and 
rewrite to it multiple times. Also, CD-RW drives are rated according to their write, rewrite, 
and read times. Thus, instead of a single rating like 52X, as in the case of CD-ROM drives, 


CD-RW drives have a compound rating, such as 52 X-32X-52X, which means that it writes 
at 52X, rewrites at 32X, and reads at 52X. 


Recordable DVD Formats 


A DVD burner is similar to a CD-R or CD-RW drive in how it operates: It can store large 
amounts of data on a special, writable DVD. Single-sided, dual-layer (DL) discs can be 
used to write 8.5 GB of information to one single-sided disc. Common names for the 
variations of DVD burning technologies include DVD+R, DVD+RW, DVD-R, DVD-RW, 
DVD-RAM, DVD-R DL, and DVD+R DL. The “plus” standards come from the DVD+RW 
Alliance, while the “dash” counterparts are specifications of the DVD Forum. The number 
of sectors per disc varies between the “plus” and “dash” variants, so older drives might not 
support both types. The firmware in today’s drives knows to check for all possible varia- 
tions in encoding and capability. The “plus” variants have a better chance of interoperabil- 
ity, even without the disc being finalized. 

A DVD-ROM, or recordable drive, looks very similar to a CD-ROM drive. The main 
difference is the presence of one of the various DVD logos on the front of the drive. 
CD-ROM and recordable CDs can usually be read and, if applicable, burned in DVD burn- 
ers. Figure 2.19 and Figure 2.20 show the most popular data-oriented logos that you are 
likely to see when dealing with DVD drives suited for computers. Figure 2.19 shows the 
“dash” logos, while Figure 2.20 shows the “plus” logos. 
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FIGURE 2.19 DVD Forum logos 
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FIGURE 2.20 DVD+RW Alliance logos 
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DVD + ReWritable DVD+R 


Table 2.3 lists the main DVD formats used for storing and accessing data in computer 
systems, as well as their characteristics. 


TABLE 2.3 DVD formats and characteristics 





Format Characteristics 

DVD-ROM Purchased with data encoded; unable to be changed 

DVD-R, DVD+R Purchased blank; able to be written to once and then treated like a 
DVD-ROM 


DVD-RW, DVD+RW Purchased blank; able to be written to and erased multiple times; 
session usually must be closed for subsequent access to stored data 
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Recordable BD Formats 


The Blu-ray Disc Association duplicated the use of the R suffix to denote a disc capable of 
being recorded only once by the consumer. Instead of the familiar RW, however, the asso- 
ciation settled on RE, short for re-recordable. As a result, watch for discs labeled BD-R and 
BD-RE. Dual-layer versions of these discs can be found as well. 

The Blu-ray Disc Association decided against creating separate logos for each BD type, 
resolving instead to use only the logo shown in Figure 2.21. Discs are labeled most often in 
a sans-serif font with the actual type of the disc as well as this generic BD logo. 


FIGURE 2.21 The Blu-ray Disc logo 
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RAID 


Multiple hard drives can work together as one system, often providing increased perfor- 
mance (faster disk reads and writes) or fault tolerance (protection against one disk failing). 
Such systems are called Redundant Array of Independent (or Inexpensive) Disks (RAID). 
RAID can be implemented in software, such as through the operating system, or in hard- 
ware, such as through the BIOS of a RAID hardware enclosure. Hardware RAID is more 
efficient and offers higher performance but at an increased cost. 

There are several types of RAID. The following are the most commonly used RAID 
levels: 


RAIDO RAID O is also known as disk striping, where a striped set of equal space from at 
least two drives creates a larger volume. This is in contrast to unequal space on multiple disks 
being used to create a simple volume set, which is not RAID 0. RAID 0 doesn’t provide the 
fault tolerance implied by the redundant component of the name. Data is written across mul- 
tiple drives, so one drive can be reading or writing while another drive’s read-write head is 
moving. This makes for faster data access. If any one of the drives fails, however, all content 
is lost. Some form of redundancy or fault tolerance should be used in concert with RAID 0. 


RAID 1 Also known as disk mirroring, RAID 1 is a method of producing fault toler- 
ance by writing all data simultaneously to two separate drives. If one drive fails, the other 
contains all of the data, and it will become the primary drive. Disk mirroring doesn’t 
help access speed, however, and the cost is double that of a single drive. If a separate host 
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adapter is used for the second drive, the term duplexing is attributed to RAID 1. Only two 
drives can be used in a RAID 1 array. 


RAID 5 RAID 5 combines the benefits of both RAID 0 and RAID 1, creating a redun- 
dant striped volume set. Sometimes you will hear it called a stripe set with parity. Unlike 
RAID 1, however, RAID 5 does not employ mirroring for redundancy. Each stripe places 
data on n-1 disks, and parity computed from the data is placed on the remaining disk. The 
parity is interleaved across all the drives in the array so that neighboring stripes have parity 
on different disks. If one drive fails, the parity information for the stripes that lost data can 
be used with the remaining data from the working drives to derive what was on the failed 
drive and to rebuild the set once the drive is replaced. 


The same process is used to continue to serve client requests until the drive can be replaced. 
This process can result in a noticeable performance decrease, one that is predictable because 
all drives contain the same amount of data and parity. Furthermore, the loss of an additional 
drive results in a catastrophic loss of all data in the array. Note that while live requests are 
served before the array is rebuilt, nothing needs to be computed for stripes that lost their 
parity. Recomputing parity for these stripes is required only when rebuilding the array. 

A minimum of three drives is required for RAID 5. The equivalent of one drive is lost for 
redundancy. The more drives in the array, the less of a percentage this single disk represents. 


Figure 2.22 illustrates RAID 1 and RAID 5. 


FIGURE 2.22 RAID1andRAID5 
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RAID 10 Also known as RAID 1+0, RAID 10 adds fault tolerance to RAID 0 through 
the RAID 1 mirroring of each disk in the RAID 0 striped set. Its inverse, known as 

RAID 0+1, mirrors a complete striped set to another striped set just like it. Both of these 
implementations require a minimum of four drives and, because of the RAID 1 component, 
use half of your purchased storage space for mirroring. 


There are other implementations of RAID that are not included in the CompTIA A+ 
exam objectives. Examples include RAID 3 and RAID 4, which place all parity on a single 
drive, resulting in varying performance changes upon drive loss. RAID 6 is essentially RAID 
5 with the ability to lose two disks and still function. RAID 6 uses the equivalent of two 
parity disks as it stripes its data and distributed parity blocks across all disks in a fashion 
similar to that of RAID 5. A minimum of four disks is required to make a RAID 6 array. 
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Removable Storage and Media 


Thus far we’ve focused on storage media that is internal to a PC, but external and remov- 
able storage options exist as well. Among the other types of storage available are tape 
backup devices, solid-state memory, external hard drives, and optical drives. 

Removable storage once meant something vastly different from what it means today. 
It used to mean big, bulky tape cartridges or, if you go back far enough, punch cards. 
Sequential tape backup is one of the only remnants of the old forms of removable storage 
that can be seen in the market today. The more modern solution is random-access, solid- 
state removable storage. The following sections present details of tape backup and the 
newer removable storage solutions. 


Tape Backup Devices 


An older form of removable storage is the tape backup. Tape backup devices can be 
installed internally or externally and use either a digital or analog magnetic tape medium 
instead of disks for storage. They hold much more data than any other medium, but they 
are also much slower. They are primarily used for batch archival storage, not interactive 
storage. 

With hard disks, it’s not a matter of “if they fail”— it’s “when they fail.” So you must 
back up the information onto some other storage medium. Tape backup devices were once 
the most common choice in larger enterprises and networks because they were able to hold 
the most data and were the most reliable over the long term. Today, however, tape backup 
systems are fading in popularity due to writable and rewritable optical discs as well as 
cloud storage. Nevertheless, when an enterprise needs to back up large amounts of data on 
a regular basis, many still turn to some form of tape media. 

Backing up to tape can be faster than backing up to the cloud over an Internet connec- 
tion. Table 2.4 lists the best-known tape formats in order of market release dates, oldest 
first, and their capacities. Note that capacities are not associated with the format names but 
instead with models of tape within each format family. You probably won’t be tested on 
these, but they could be something you run across in the wild. 


TABLE 2.4 Sequential tape formats 





Format Name Representative Capacity 
Quarter-inch Cartridge (QIC) 200 KB to several gigabytes 
Digital Linear Tape (DLT) Up to 800 GB 

Eight Millimeter (Data8, Exabyte) Up to 60 GB 


Digital Audio Tape (DAT)/Digital Data Storage (DDS) Up to 300 GB, native 


Linear Tape-Open (LTO) Up to 12 TB (up to 192 TB planned) 
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Many of the standards shown in Table 2.4 are technologically obsolete but will still be 
in use because a company has the equipment. LTO is still evolving, though. The most recent 
version is LTO-8, which was released in 2017. Further enhancements through LTO-12 are 
planned, with the goals of increasing data capacity as well as backup speed. 


Flash Memory 


Once used only for primary memory, the same components that sit on your motherboard 
as RAM can be found in various physical sizes and quantities among today’s solid-state 
storage solutions. These include older removable and non-removable flash memory mecha- 
nisms, Secure Digital (SD) and other memory cards, and USB flash drives. Each of these 
technologies has the potential to store reliably a staggering amount of information in 

a minute form factor. Manufacturers are using innovative packaging for some of these 
products to provide convenient transport options (such as keychain attachments) to users. 
Additionally, recall the SSD alternatives to magnetic hard drives mentioned earlier in this 
chapter. 

For many years, modules and PC Card devices known as flash memory have offered 
low- to mid-capacity storage for devices. The name comes from the concept of easily being 
able to use electricity to alter the contents of the memory instantly. The original flash mem- 
ory is still used in devices that require a nonvolatile means of storing critical data and code 
often used in booting the device, such as routers and switches. 

For example, Cisco Systems uses flash memory in various forms to store its 
Internetwork Operating System (IOS), which is accessed from flash during bootup and, 
in certain cases, throughout operation uptime and therefore during an administrator’s 
configuration sessions. Lesser models store the IOS in compressed form in the flash 
memory device and then decompress the IOS into RAM, where it is used during con- 
figuration and operation. In this case, the flash memory is not accessed again after the 
boot-up process is complete, unless its contents are being changed, as in an IOS upgrade. 
Certain devices use externally removable PC Card technology as flash memory for 
similar purposes. 

The following sections explain a bit more about today’s most popular forms of flash 
memory, memory cards, and USB flash drives. 


SD and Other Memory Cards 


Today’s smaller devices require some form of removable solid-state memory that can be 
used for temporary and permanent storage of digital information. Gone are the days of 
using microfloppies in your digital camera. Even the most popular video-camera media, 
such as mini-DVD and HDD, are giving way to solid-state multi-gigabyte models. These 
more modern electronics, as well as most contemporary digital still cameras, already use 
some form of removable memory card to store still images permanently or until they can 
be copied off or printed out. Of these, the Secure Digital (SD) format has emerged as the 
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preeminent leader of the pack, which includes the older MultiMediaCard (MMC) for- 
mat on which SD is based. Both of these cards measure 32 mm x 24 mm, and slots that 
receive them are often marked for both. The SD card is slightly thicker than the MMC 
and has a write-protect notch (and often a switch to open and close the notch), unlike 
MMC. 

Even smaller devices, such as mobile phones, have an SD solution for them. One of these 
products, known as miniSD, is slightly thinner than SD and measures 21.5 mm x 20 mm. 
The other, microSD, is thinner yet and only 15 mm x 11 mm. Both of these reduced for- 
mats have adapters that allow them to be used in standard SD slots. Figure 2.23 shows an 
SD card and a microSD card next to a ruler based on inches. 


FIGURE 2.23 Typical SD cards 
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Table 2.5 lists additional memory card formats, the slots for some of which can be seen 
in the images that follow the table. 


TABLE 2.5 Additional memory card formats 


Format Dimensions Details Year Introduced 





CompactFlash (CF) 36 mm x 43mm Type I and Type Il variants; Type 1994 
Il used by IBM for Microdrive 


xD-Picture Card 20mmx25mm Used primarily in digital cameras 2002 
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Figure 2.24 shows the memory-card slots of an HP PhotoSmart printer, which is capable 
of reading these devices and printing from them directly or creating a drive letter for access 
to the contents over its USB connection to the computer. Clockwise from the upper left, 
these slots accommodate CF/Microdrive, SmartMedia, Memory Stick (bottom right), and 
MMC/SD. The industry provides almost any adapter or converter to allow the various 
formats to work together. 


FIGURE 2.24 Card slots ina printer 





Most of today’s laptops have built-in memory card slots, such as the one shown in 
Figure 2.25. Many desktops will have readers built into the front or top panel of the case as 
well. 


FIGURE 2.25 Memory card slot ina laptop 








If a computer doesn’t have memory card slots built in to the case, it’s easy to add 
external card readers. Most are connected via USB, such as the one shown in Figure 2.26 
(front first, then back), and are widely available in many different configurations. 
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FIGURE 2.26 A USB-attached card reader 





USB Flash Drives 

USB flash drives are incredibly versatile and convenient devices that enable you to store 
large quantities of information in a very small form factor. Many such devices are merely 
extensions of the host’s USB connector, extending out from the interface but adding little to 
its width, making them easy to transport, whether in a pocket or laptop bag. Figure 2.27 
illustrates an example of one of these components and its relative size. 


FIGURE 2.27 A USB flash drive 
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USB flash drives capitalize on the versatility of the USB interface, taking advantage of 
the Plug and Play feature and the physical connector strength. Upon insertion, these devices 
announce themselves to Windows File Explorer as removable drives, and they show up in 
the Explorer window with a drive letter. This software interface allows for drag-and-drop 
copying and most of the other Explorer functions performed on standard drives. Note that 
you might have to use the Disk Management utility (discussed in Chapter 15, “Operating 
System Basics”) to assign a drive letter manually to a USB flash drive if it fails to acquire 
one itself. This can happen in certain cases, such as when the previous letter assigned to the 
drive has been taken by another device in the USB flash drive’s absence. 


Hot-Swappable Devices 


Many of the removable storage devices mentioned are hot swappable. This means that you 
can insert and remove the device with the system powered on. Most USB-attached devices 
without a file system fall into this category. Non-hot-swappable devices, in contrast, either 
cannot have the system’s power applied when they are inserted or removed or have some 
sort of additional conditions for their insertion or removal. One subset is occasionally 
referred to as cold swappable, the other as warm swappable. The system power must be off 
before you can insert or remove cold-swappable devices. An example of a cold-swappable 
device is anything connected to a SATA connector on the motherboard. 

Warm-swappable devices include USB flash drives and external drives that have a file 
system. Windows and other operating systems tend to leave files open while accessing them 
and write cached changes to them at a later time, based on the algorithm in use by the soft- 
ware. Removing such a device without using the Safely Remove Hardware utility can result 
in data loss. However, after stopping the device with the utility, you can remove it without 
powering down the system—hence, the warm component of the category’s name. These are 
officially hot-swappable devices. 

Hardware-based RAID systems benefit from devices and bays with a single connector 
that contains both power and data connections instead of two separate connectors. This 
is known as Single Connector Attachment (SCA). SCA interfaces have ground leads that 
are longer than the power leads so that they make contact first and lose contact last. SATA 
power connectors are designed in a similar fashion for the same purpose. This arrange- 
ment ensures that no power leads make contact without their singular ground leads, which 
would often result in damage to the drive. Drives based on SCA are hot swappable. RAID 
systems that have to be taken offline before drives are changed out, but the system power 
can remain on, are examples of warm-swappable systems. 


Installing, Removing, and Configuring Storage Devices 


The removal and installation of storage devices, such as hard drives, CD/DVD drives, and 
tape drives, is pretty straightforward. There really isn’t any deviation in the process of 
installing or exchanging the hardware. Fortunately, with today’s operating systems, little 
to no configuration is required for such devices. The Plug and Play BIOS and operating 
system work together to recognize the devices. However, you still have to partition and 
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format out-of-the-box hard drives before they will allow the installation of the operating 
system. Nevertheless, today’s operating systems allow for a pain-free partition/format/setup 
experience by handling the entire process, if you let them. 


Removing Storage Devices 


Removing any component is frequently easier than installing the same part. Consider the 
fact that most people could destroy a house, perhaps not safely enough to ensure their well 
being, but they don’t have to know the intricacies of construction to start smashing away. 
On the other hand, very few people are capable of building a house. Similarly, many could 
figure out how to remove a storage device, as long as they can get into the case to begin 
with, but only a few could start from scratch and successfully install one without tutelage. 


This section details the removal of internal storage devices, and the sec- 
A OTE tion “Installing Storage Devices” details their installation. Be aware that 
external storage devices exist, but today’s external storage devices are 
eSATA-, USB-, and FireWire-attached devices, making them completely 
Plug and Play. Only the software preparation of external hard drives is a 
consideration, but the same procedure for the software preparation of 
internal devices works for external devices as well. For this reason, these 
technologies have been removed from later versions of the A+ objectives. 


In Exercise 2.1, you’ll remove an internal storage device. 


Removing an Internal Storage Device 


1. With the power source removed from the system, ground yourself and the computer 
to the same source of ground. 


2. Remove the cover from the system, exposing the internal components. 


3. Unplug all connections from the storage device you wish to remove. These include 
data and power connections as well as any others, such as audio connections to the 
sound card or motherboard. The beveled Molex power connectors fit very tightly, so 
don’t worry about how hard removing them seems to be. There is no clip to release. 
However, be sure to grip the connector, not the wires. 


4. Gather the appropriate antistatic packaging for all static-sensitive components that 
will be reused in the future, including any adapter cards that the storage device 
plugs into. 


5. Remove any obstructions that might hinder device removal, such as component 
cables attached to adapter cards or the adapter cards themselves, storing them in 
antistatic packaging so that they can be reused. 
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EXERCISE 2.1 (continued) 


6. Remove related adapter cards from the motherboard, storing them in antistatic pack- 
aging so that they can be reused. 


7. Remove the machine screws holding the storage device to the chassis. These could 
be on the side of the device or on the bottom. 


8. Some devices, especially hard drives because they have no front access from the 
case, pull out of the chassis toward the rear of the case, whereas others, such as 
optical drives, generally pull out from the front. A gentle nudge from the rear of the 
device starts it on its way out the front. Go ahead and remove the device from the 
case. If you discover other components that obstruct the storage device’s removal, 
repeat step 5. 


Installing Storage Devices 


An obvious difference among storage devices is their form factor. This is the term used to 
describe the physical dimensions of a storage device. Form factors commonly have the fol- 
lowing characteristics: 


= 3%” wide vs. 514” wide 
= Half height vs. full height vs. 1” high and more 
=a Any of the laptop specialty form factors 


You will need to determine whether you have an open bay in the chassis to accommodate 
the form factor of the storage device that you want to install. Adapters exist that allow a 
device of small size to fit into a larger bay. For obvious reasons, the converse is not also true. 

In Exercise 2.2, you'll install an internal storage device. 


Installing an Internal Storage Device 


1. With the power source removed from the system, ground yourself and the computer 
to the same source of ground. 


2. Remove the cover from the system, exposing the internal components. 


3. Locate an available bay for your component, paying attention to your device's need for 
front access. If you do not see one, look around; some cases provide fastening points 
near the power supply or other open areas of the case. If you still do not see one, inves- 
tigate the possibility of sacrificing a rarely or never used device to make room. 


4. Remove any obstructions that might hinder device installation, such as component 
cables attached to adapter cards or the adapter cards themselves, storing them in 
antistatic packaging to be reused. 


10. 


11. 
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Find the proper screws for the storage device, and set any jumpers on the drive while 
itis in hand. Then insert the device into the bay. Keep in mind that some insert from 
the rear of the bay and some from the front. 


Line up the screw holes in the device with the holes in the bay. Note that many 
devices rarely insert as far as they can before lining up with the chassis’ holes, so 
don’t be surprised when pushing the device all the way into the bay results in mis- 
alignment. Other devices that require front access stop themselves flush with the 
front of the case, and still others require you to secure them while holding them 
flush. 


Use at least two screws on one side of the device. This keeps the device from 
sliding in the bay as well as from rotating, which happens when you use only 
one screw or one screw on each side. If the opposite side is accessible, go ahead 
and put at least one screw in the other side. Most devices allow for as many as 
four screws per side, but eight screws are not necessary in the vast majority of 
situations. 


Connect the data cable from the device to the adapter card or motherboard header. 
ATA devices, such as those designated as PATA drives (compatible hard drives and 
CD/DVD drives, for example), use a 40-pin connector. 


Attach a power connector from the power supply to the device, bearing in 
mind that there are two connector styles that are not very close in appearance. 
You should have no trouble telling them apart. Be sure to insert the connector 
completely. 


Once the drive is attached, unground yourself, and turn the computer on to verify 
that the drive is functional. 


If the drive is working properly, replace the computer cover. 


Understanding Power Supplies 


The computer’s components would not be able to operate without power. The device in the 
computer that provides this power is the power supply (see Figure 2.28). A power supply 
converts 110V or 220V AC current into the DC voltages that a computer needs to oper- 
ate. These are +3.3VDC, +5 VDC, —S VDC (on older systems), +12VDC, and -12VDC. 
The jacket on the leads carrying each type of voltage has a different industry-standard 
color-coding for faster recognition. Black ground leads offer the reference that gives the 
voltage leads their respective magnitudes. The +3.3VDC voltage was first offered on ATX 
motherboards. 
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FIGURE 2.28 A desktop power supply 





Throughout this section, you will see us use the terms watts, volts, and amps. If you’re 
working with electricity a lot, you might also see the term ohms. To help understand 
what these terms mean, let’s use an analogy of water flowing through a pipe. Amps would 
be the amount of water flowing through the pipe; voltage would be the water pressure; 
and watts would be the power that the water could provide. (Watts mathematically 
are volts x amps.) If there were a filter or other barrier in the pipe, that would provide 
resistance, which is measured in ohms. In non-analogous terms, amps are the unit of 
current flow; volts are the unit of force; watts are the unit for power (watts = volts x 
amps); and ohms are resistance. 


The abbreviation VDC stands for volts DC. DC is short for direct current. 

A TE Unlike alternating current (AC), DC does not alter the direction in which the 
electrons flow. AC for standard power distribution does so 50 or 60 times 
per second (50 or 60 Hz, respectively). Sometimes you will see people 
abbreviate a current such as positive 5 volts as +5V, and other times as 
+5VDC. It’s really a matter of preference. 


P Be aware that DC voltage is not safer than AC voltage, despite its common 

‘i use in batteries and lower-power components. Direct current is more likely 
to cause a prolonged clamping of the muscles than AC, which is more 
likely to fibrillate the heart, which results in a deadly loss of coordination 
of the various cardiac muscles. Furthermore, power supplies contain 
transformers and capacitors that can discharge lethal amounts of current 
even when disconnected from the wall outlet for long periods. They 
are not meant to be serviced, especially by untrained personnel. Do not 
attempt to open them or do any work on them. Simply replace and recycle 
them when they go bad. 
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Dual-Rail Architecture 


Power supplies all provide the same voltages to a system, such as +3.3VDC, +5 VDC, and 
+12VDC. Each of these can be referred to as a rail, because each one comes from a specific 
tap (or rail) within the power supply. Some modern power supplies provide multiple 12V 
rails in an effort to supply more power overall to components that require 12VDC. For 
instance, in dual-rail power supplies, one rail might be dedicated to the CPU, while the 
other is used to supply power to all of the other components that need 12V. 

The problem that can arise in high-powered systems is that although the collective 
power supplied by all rails is greater than that supplied by power supplies with a single rail, 
each rail provides less power on its own. As a result, it is easier to overdraw one of the mul- 
tiple rails in such a system, causing a protective shutdown of the power supply. Care must 
be taken to balance the load on each of the rails if a total amperage greater than any one 
rail is to be supplied to attached components. Otherwise, if the total power required is less 
than any single rail can provide, there is no danger in overloading any one rail. 


Power and Voltage Ratings 


Power supplies are rated in watts. A watt is a unit of power. The higher the number, the 
more power your computer can draw from the power supply. Think of this rating as 

the “capacity” of the device to supply power. Most computers require power supplies in 
the 250- to 500-watt range. Higher wattage power supplies might be required for more 
advanced systems that employ power-hungry graphics technologies or multiple disk 
drives, for instance. It is important to consider the draw that the various components and 
subcomponents of your computer place on the power supply before choosing one or its 
replacement. 

Of the connectors present in the classic power supplies, only the standard peripheral 
power connectors remain. In addition to these connectors, newer systems have a variety of 
replacement and additional connectors, such as dedicated power connectors for SATA and 
PCle, more advanced power connectors for the motherboard, and even modular connec- 
tions for these leads back to the power supply rather than a permanent wiring harness. 

Some power supplies have a recessed, two-position slider switch, often a red one, on 
the rear that is exposed through the case. You can see the one for the power supply shown 
in Figure 2.28. Dual voltage options on such power supplies read 110 and 220, 115 and 
230, or 120 and 240. This selector switch is used to adjust for the voltage level used in the 
country where the computer is in service. For example, in the United States, the power grid 
supplies anywhere from 110VAC to 120VAC. However, in Europe, for instance, the voltage 
supplied is double, ranging from 220VAC to 240VAC. 

Although the voltage is the same as what is used in the United States to power high- 
voltage appliances such as electric ranges and clothes driers, the amperage is much lower. 
The point is, the switch is not there to allow multiple types of outlet to be used in the same 
country. If the wrong voltage is chosen in the United States, the power supply will expect 
more voltage than it receives and might not power up at all. If the wrong voltage is selected 
in Europe, however, the power supply will receive more voltage than it is set for. The result 
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could be disastrous for the entire computer and could result in sparking or starting a fire. 
Always check the switch before powering up a new or recently relocated computer. In the 
United States and other countries that use the same voltage, check the setting of this switch 
if the computer fails to power up. 


Power Connectors 


The connectors coming from the power supply are quite varied these days, but there are 
also some connectors that are considered legacy connectors that you might not see on mod- 
ern power supplies. The following sections detail and illustrate the most common power 
connectors. 


Classic Power Connectors 


The classic connectors comprise outdated connectors as well as connectors still in use today 
despite being found in the original IBM PC. 


AT System Connector 


The original power connectors attached to the early PC motherboards were known collec- 
tively as the AT system connector. There are two six-wire connectors, labeled P8 and P9, as 
shown in Figure 2.29. They connect to an AT-style motherboard and deliver the power that 
feeds the electronic components on it. These connectors have small tabs on them that inter- 
lock with tabs on the motherboard’s receptacle. 


FIGURE 2.29 AT power supply system board connectors 





The P8 and P9 connectors must be installed correctly or you will damage the mother- 
board and possibly other components. To do this (on standard systems), place the connec- 
tors side by side with their black wires together, and then push the connectors together 
or separately onto the 12-pin receptacle on the motherboard. Although there is keying on 
these connectors, they both use the exact same keying structure. In other words, they can 
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still be swapped with one another and inserted. When the black ground leads are placed 
together when the connectors are side by side, it is not possible to flip the pair 180 degrees 
and still insert the two connectors without physically defeating the keying. Most techni- 
cians would give up and figure out their mistake before any damage occurs if they always 
place the grounds together in the middle. 


P Although it’s easy to remove this type of connector from the motherboard, 
A: the tabs on the connector make it difficult to reinstall it. Here's a hint: Place 
the connector at an almost right angle to the motherboard’s connector, 
interlocking the tabs in their correct positions. Then tilt the connector to 
the vertical position. The connector will slide into place more easily. 


It is important to note that only legacy computers with AT and baby AT motherboards 
use this type of power connector. 


P Most computers today use some form of ATX power connector to provide 
OTE power to the motherboard. Those connectors are described in later 
sections of this chapter. 


Standard Peripheral Power Connector 


The standard peripheral power connector is generally used to power different types of 
internal disk drives. This type of connector is also called a Molex connector. Figure 2.30 
shows an example of a standard peripheral power connector. This power connector was 
used for hard drives, optical drives, and other internal peripherals. 


FIGURE 2.30 A classic peripheral power connector 
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Modern Power Connectors 


Modern components have exceeded the capabilities of some of the original power supply 
connectors. The Molex peripheral connector remains, but the P8/P9 motherboard connec- 
tors have been consolidated and augmented, and additional connectors have sprung up. 


ATX, ATX12V, and EPS12V Connectors 


With ATX motherboards came a new, single connector from the power supply. PCI Express 
has power requirements that even this connector could not satisfy, leading to different 
connectors with different versions of the more advanced ATX12V specifications, which 
have gone through four 1.x versions and already five 2.x versions. Throughout the ver- 
sions of ATX12V, additional 4-, 6-, and 8-pin connectors supply power to components of 
the motherboard and its peripherals—such as network interfaces, PCle cards, specialty 
server components, and the CPU itself—that require a +12V supply in addition to the +12V 
of the standard ATX connector. These additional connectors follow the ATX12V and 
EPS12V standards. The ATX connector was further expanded by an additional four pins in 
ATX12V 2.0. 

The original ATX system connector (also known as the ATX motherboard power con- 
nector) feeds an ATX motherboard. It provides the six voltages required, plus it delivers 
them all through one connector: a single 20-pin connector. This connector is much easier to 
work with than the dual connectors of the AT power supply. Figure 2.31 shows an example 
of an ATX system connector. 


FIGURE 2.31 = 20-pin ATX power connector 





When the Pentium 4 processor was introduced, it required much more power than 
previous CPU models. Power measured in watts is a multiplicative function of voltage 
and current. To keep the voltage low meant that amperage would have to increase, but it 
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wasn’t feasible to supply such current from the power supply itself. Instead, it was decided 
to deliver 12V at lower amperage to a voltage regulator module (VRM) near the CPU. The 
higher current at a lower voltage was possible at that shorter distance from the CPU. 

As a result of this shift, motherboard and power supply manufacturers needed to get this 
more varied power to the system board. The solution was the ATX12V 1.0 standard, which 
added two supplemental connectors. One was a single 6-pin auxiliary connector similar to 
the P8/P9 AT connectors that supplied additional +3.3V and +5V leads and their grounds. 
The other was a 4-pin square mini-version of the ATX connector, referred to as a P4 (for 
the processor that first required them) connector, which supplied two +12V leads and their 
grounds. EPS12V uses an 8-pin version, called the processor power connector, which 
doubles the P4’s function with four +12V leads and four grounds. Figure 2.32 illustrates the 
P4 connector. The 8-pin processor power connector is similar but has two rows of 4 and, 
despite its uncanny resemblance, is keyed differently from the 8-pin PCle power connector 
to be discussed shortly. 


FIGURE 2.32 ATX12V P4 power connector 





For servers and more advanced ATX motherboards that included PCle slots, the 
20-pin system connector proved inadequate. This led to the ATX12V 2.0 standard and 
the even higher-end EPS12V standard for servers. These specifications call for a 24-pin 
connector that adds further positive voltage leads directly to the system connector. The 
24-pin connector looks like a larger version of the 20-pin connector. The corresponding 
pins of the 24-pin motherboard header are actually keyed to accept the 20-pin connector. 
Adapters are available if you find yourself with the wrong combination of motherboard 
and power supply. Some power supplies feature a 20-pin connector that snaps together 
with a separate 4-pin portion for flexibility, called a 20+4 connector, which can be seen 
in Figure 2.33. Otherwise, it will just have a 24-pin connector. The 6-pin auxiliary con- 
nector disappeared with the ATX12V 2.0 specification and was never part of the EPS12V 
standard. 
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FIGURE 2.33 A 24-pin ATX12V 2.x connector, in two parts 





ATX12V 2.1 introduced a different 6-pin connector, which was shaped more like 
the P4 connector than the P8/P9-style auxiliary connector from the 1.x standards (see 
Figure 2.34). This 6-pin connector was specifically designed to give additional dedicated 
power to the PCIe adapters that required it. It provided a 75 W power source to such 
devices. 


FIGURE 2.34 A6-pin ATX12V 2.1 PCle connector 





ATX12V 2.2 replaced the 75W 6-pin connector with a 150W 8-pin connector, as 
shown in Figure 2.35. The plastic bridge between the top two pins on the left side in the 
photo keeps installers from inserting the connector into the EPS12V processor power 
header but clears the notched connector of a PCIe adapter. The individual pin keying 
should avoid this issue, but a heavy-handed installer could defeat that. The bridge also 
keeps the connector from inserting into a 6-pin PCIe header, which has identically keyed 
corresponding pins. 
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FIGURE 2.35 An8-pin ATX12V 2.2 PCle connector 





Proprietary Power Connectors 


Although the internal peripheral devices have standard power connectors, manufactur- 

ers of computer systems sometimes take liberties with the power interface between the 
motherboard and power supply of their systems. In some cases, the same voltages required 
by a standard ATX power connector are supplied using one or more proprietary connec- 
tors. This makes it virtually impossible to replace power supplies and motherboards with 
other units “off the shelf.” Manufacturers might do this to solve a design issue or simply to 
ensure repeat business. 


SATA Power Connectors 


SATA drives arrived on the market with their own power requirements in addition to their 
new data interfaces. (Refer back to Figure 2.9 to see the SATA data and power connectors.) 
You get the 15-pin SATA power connector, a variant of which is shown in Figure 2.36. 
The fully pinned connector is made up of three +3.3V, three +5V, and three +12V leads 
interleaved with two sets of three ground leads. Each of the five sets of three common pins 
is supplied by one of five single conductors coming from the power supply. The same colors 
are generally used for the conductors as with the Molex and Berg connectors. (Berg con- 
nectors were used on old floppy disk drives.) When the optional 3.3V lead is supplied, it is 
standard to see it delivered on an orange conductor. 
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FIGURE 2.36 SATA power connector 





Note that in Figure 2.36, the first three pins are missing. These correspond to the 3.3V 
pins, which are not supplied by this connector. This configuration works fine and alludes to 
the SATA drives’ ability to accept Molex connectors or adapters attached to Molex connec- 
tors, thus working without the optional 3.3V lead. 


Replacing Power Supplies 


Sometimes power supplies fail. Sometimes you grow out of your power supply and require 
more wattage than it can provide. Often, it is just as cost effective to buy a whole new case 
with the power supply included rather than dealing with the power supply alone. However, 
when you consider the fact that you must move everything from the old case to the new 
one, replacing the power supply becomes an attractive proposition. Doing so is not a dif- 
ficult task. 

Regardless of which path you choose, you must make sure the power connection of the 
power supply matches that of the motherboard to be used. Additionally, the physical size of 
the power supply should factor into your purchasing decision. If you buy a standard ATX- 
compatible power supply, it might not fit in the petite case you matched up to your micro 
ATX motherboard. In that scenario, you should be on the lookout for a smaller form factor 
power supply to fit the smaller case. Odds are that the offerings you find will tend to be a 
little lighter in the wattage department as well. 

Exercise 2.3 details the process to remove an existing power supply. Use the reverse 
of this process to install the new power supply. Just keep in mind that you might need to 
procure the appropriate adapter if a power supply that matches your motherboard can no 
longer be found. There is no post-installation configuration for the power supply, so there 
is nothing to cover along those lines. Many power supply manufacturers have utilities on 
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their websites that allow you to perform a presale configuration so that you are assured of 
obtaining the most appropriate power supply for your power requirements. 


Removing a Power Supply 


1. With the power source removed from the system, ground yourself and the computer 
to the same source of ground. 


2. Remove the cover from the system, exposing the internal components. 


3. After locating the power supply, which can come in a variety of formats and appear 
on the left or right side of the case, follow all wiring harnesses from the power supply 
to their termini, disconnecting each one. 


4. Remove any obstructions that appear as if they might hinder the removal of the 
power supply. 


5. Using the dimensions of the power supply, detectable from the inside of the case, 
note which machine screws on the outside of the case correspond to the power sup- 
ply. There are often four such screws in a non-square pattern. If your case has two 
side panels, and you removed only one, there will likely be one or more screws hold- 
ing the other panel on that appear to be for the power supply. These do not need to 
be removed. If all case screws have been removed, pay attention to their location and 
do not use these holes when securing the new power supply. 


6. Remove the screws that you identified as those that hold the power supply in place. 
Be aware that the power supply is not lightweight, so you should support it as you 
remove the final couple of screws. 


7. Maneuver the power supply past any obstructions that did not have to be removed, 
and pull the power supply out of the case. 


AC Adapters as Power Supplies 


Just as the power supply in a desktop computer converts AC voltages to DC for the internal 
components to run on, the AC adapter of a laptop computer converts AC voltages to DC for 
the laptop’s internal components. And AC adapters are rated in watts and selected for use 
with a specific voltage just as power supplies are rated. One difference is that AC adapters 
are also rated in terms of DC volts out to the laptop or other device, such as certain brands 
and models of printer. 

Because both power supplies and AC adapters go bad on occasion, you should replace 
them both and not attempt to repair them yourself. When replacing an AC adapter, be 
sure to match the size, shape, and polarity of the tip with the adapter you are replacing. 
However, because the output DC voltage is specified for the AC adapter, be sure to replace 
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it with one of equal output voltage, an issue not seen when replacing AT or ATX power 
supplies, which have standard outputs. Additionally, and as with power supplies, you can 
replace an AC adapter with a model that supplies more watts to the component because the 
component uses only what it needs. 

You can read more on this subject later in Chapter 10, “Understanding Laptops.” 


Summary 


In this chapter, you learned about three classes of personal computer components that fin- 
ish our tour of the inside of the case—expansion cards, storage devices, and power supplies. 

Expansion cards add helpful capabilities, such as video, audio, network connections, 
and additional ports for devices and peripherals. Storage devices provide long-term data 
capacity. Examples include hard drives (both conventional magnetic drives and SSDs), opti- 
cal drives, and flash drives. Hard drives can be configured into RAID arrays, and storage 
devices may be hot swappable, depending on their type and configuration. 

Finally, we discussed power supply safety as well as the various connectors, and we com- 
pared and contrasted power supplies and AC adapters. You also learned how to remove, 
install, and configure storage devices and how to replace power supplies. 


Exam Essentials 


Know how to install and configure expansion cards to provide needed functionality. 
Understand the functionality that video cards, sound cards, network cards, and expan- 
sion cards (such as USB and eSATA) provide. Know where to install them and broadly 
how to configure them. 


Be familiar with the components of a conventional hard drive system and the anatomy of 
ahard drive. Most of today’s hard drive systems consist of an integrated controller and 
disc assembly that communicates to the rest of the system through an external host adapter. 
The hard disk drives consist of many components that work together, some in a physical 
sense and others in a magnetic sense, to store data on the disc surfaces for later retrieval. Be 
familiar with magnetic hard drive speeds, including 5,400, 7,200, 10,000, and 15,000 rpm. 


Understand the advantages that solid-state drives have over conventional drives. SSDs are 
much faster than magnetic hard drives, produce less heat, and can be made much smaller 
physically. They are also less susceptible to shock from drops. Know the various SSD drive 
types, including M.2, NVMe, and SATA 2.5. 


Understand the details surrounding optical storage. From capacities to speeds, you should 
know what the varieties of optical storage offer as well as the specifics of the technologies 
this storage category comprises. 
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Understand the different flash drive options available. Know the differences between SD 
cards, CompactFlash, microSD, miniSD, and xD. Be able to identify which cards can fit 
into specific types of slots natively or with an adapter. 


Understand characteristics of four types of RAID configurations. You need to know 
RAID 0, RAID 1, RAID 5, and RAID 10. RAID 0 is disk striping, which can improve 
speed but does not provide fault tolerance. RAID 1 is disk mirroring, which gives fault tol- 
erance but no performance increase. RAID 5 is striping with parity, which can give some 
performance boost along with fault tolerance. RAID 10, also known as RAID 1+0, adds 
mirroring to a striped set. Understand what hot-swappable means. 


Know about power supplies and their connectors. Power supplies are made in AT, 

ATX, and proprietary form factors. Regardless of their type, power supplies must offer 
connectors for motherboards and internal devices. Know the differences among the 
connectors and how power supplies are rated. Also understand why AC adapters are related 
to power supplies. 


Know how to remove, install, and configure storage devices. Know the difference 
between the data and power connectors used on storage devices. Know what it means to 
partition and format a hard drive. Be aware of the physical differences in storage device 
form factors. 


Know how to remove, install, and configure power supplies. Know the difference 
between the modern motherboard power headers, and know when an adapter might be 
required. Know the two most common device connectors coming from the power supply. 
Be familiar with how to fasten power supplies to the chassis as well as how to unfasten 
them. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. You are installing a new graphics adapter in a Windows 10 system. Which of the following 
expansion slots is designed for high-speed, 3D graphics adapters? 


A. USB 

B. FireWire 
Cc. PCI 

D. PCIe 


2. You need to install a new hard drive into a desktop computer, Which of the following is not 
one of the three major components of a hard disk drive system? 


A. Drive interface 
B. Disk controller 
C. Hard disk 
D. Host adapter 
3. You install a new NIC for a user, and he asks what it does. Which of the following best 
characterizes the functions of this device? 
A. Multimedia 
B. Communications 
C. Input/Output 
D. Storage 
4. You are installing a new hard drive and want to know if the operating system will be able 


to support it. What is the largest NTFS volume size supported, assuming a 64 KB cluster 
size as maximum? 


A. 1TB 
B. 2TB 
C. 128TB 
D. 256 TB 


5. A client is looking for a desktop drive technology that saves money over SSDs but offers 
performance increases over HDDs and can be used to house the operating system. Which of 
the following is the best to recommend? 


A. Dual-drive technology 


B. SSHD 
C. NVMe 
D. Magnetic-only drive 


10. 
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You are choosing an optical drive format for a client. Which optical disc format supports a 
data capacity of 25 GB? 


A. 
B. 
C. 
D. 


Double-sided, double-layer DVD+R 
Single-sided, single-layer Blu-ray Disc 
Double-sided, single-layer DVD-R 
Double-sided, single-layer DVD+R 


Which of the following best describes the concept of hot-swappable devices? 


A. 
B. 


C. 
D. 


Power does not need to be turned off before the device is inserted or removed. 


The device can be removed with power applied after it is properly stopped in the 
operating system. 


Care must be taken when swapping the device because it can be hot to the touch. 


The device can be swapped while still hot, immediately after powering down the system. 


Of the following voltage pairings, which one accurately represents the input and output, 
respectively, of power supplies and AC adapters? 


A. 
B. 
C. 
D. 


AC in, AC out 
DC in, DC out 
AC in, DC out 
DC in, AC out 


What are the output voltages that have been commonly produced by PC power supplies 
over the years? (Choose five.) 


A 
B 
C. 
D. 
E 
F. 
G 
H 


+3.3VDC 
-3.3VDC 
+5VDC 
-SVDC 
+12VDC 
-12VDC 
+110VDC 
-110VDC 


You are installing a new power supply in a desktop computer. Which of the following 
statements about power supplies is true? 


A. 


B. 


You must make sure that the voltage selector switch on the back of the power supply is 
switched to the lower setting if the computer is going to be used in Europe. 


SATA hard drives most often use the same type of power connector that PATA hard 
drives use. 


Power supplies supply power to ATX-based motherboards with connectors known 
commonly as P8 and P9. 


Power supplies convert AC input to DC output. 
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11. 


12. 


13. 


14. 


15. 
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You have been asked to install a new hard drive for a client. Which of the following is not a 
consideration when installing an internal storage device? 


A. 


You should match the form factor of the drive or adapt it to an available drive bay or 
slot. 


You should secure the drive with at least two screws on one side and preferably two on 
each side. 

Due to the high revolutions at which modern hard drives spin, you must secure an 
external power source because the internal power supplies do not have the capacity. 


You need to be sure that the routing of the drive’s data cable, if applicable, does not 
obstruct the engineered flow of air across internal components. 


Due to government regulations, a client wants to preserve data for a long period of time. 
What kind of media is most commonly used when large amounts of data need to be 
archived on a regular basis? 


A. 
B. 
C. 
D. 


Tape 
Optical disc 
External hard drive 


Network share 


When installing multiple add-on cards of the same type, which type of cards might you 
need to bridge together to function as a single unit? 


A. 
B. 
C. 
D. 


Video 
Sound 
USB 
eSATA 


You are purchasing a new video card in a desktop computer. For the best performance, 
which type of video card should you purchase? 


A 
B. 
C. 
D 
E 


PCI x16 
PCI x128 
AGP 

PCle x128 
PCle x16 


Which of the following is not a consideration when upgrading power supplies? 


A. 


B. 
Cc. 


You might find that you do not have a matching motherboard connector on your new 
power supply. 


You might find that your case has a nonremovable power supply. 
You might find that your power rating is not adequate on the new power supply. 


You might find that you do not have enough of the appropriate connectors coming 
from the power supply for the devices that you have installed. 


16. 


17. 


18. 


19. 


20. 
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You are choosing a flash standard for a client. They want the smallest flash cards possible. 
Which standard should you recommend? 


A 
B. 
C. 
D 
E 


SD 
CompactFlash 
microSD 
miniSD 


xD 


Your goal is to build the fastest computer possible. Which of the following hard drive 
technologies should you choose for the fastest read performance? 


A. 
B. 
C. 
D. 


M.2 PCle 
M.2 SATA 
NVMe PCIe 
NVMe SATA 


You have been asked to configure a RAID 5 system for a client. Which of the following 
statements about RAID 5S is true? 


A. 
B. 
C. 


D. 


It provides fault tolerance but no performance improvement. 
It provides performance improvement but no fault tolerance. 


If multiple drives in the array fail, the data can be saved provided that one drive is still 
operational. 


It requires at least three drives to implement. 


You have a motherboard with integrated video, and the video fails. You install a video add- 
on card. Which of the following statements are the most accurate? (Choose two.) 


A. 
B. 
C. 
D 


E. 


The add-on card will not function properly because of the integrated video. 
The add-on card will function if it is bridged to the integrated video chipset. 
The add-on card will be detected automatically and function properly if it’s PCIe. 


For the card to work properly, you might need to disable the integrated video in the 
BIOS. 


The add-on card will work properly by using the integrated card’s video driver. 


When replacing a power supply, which of the following tends to vary among power supplies 
and must be chosen properly to support all connected devices? 


A. 


B. 
C. 
D. 


Wattage 
Voltage 
Amperage 


Resistance 
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Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answer compares to the authors’, refer 
to Appendix B. 


Detail the process for removing a power supply from a computer chassis. 
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THE FOLLOWING COMPTIA A+ 220-1001 
OBJECTIVES ARE COVERED IN THIS CHAPTER: 





v 3.1 Explain basic cable types, features, and their purposes. 


a Video cables 





a VGA 
= HDMI 
a Mini-HDMI 
= DisplayPort 
a DVI 
= DVI (DVI-D/DVI-l) 
= Multipurpose cables 
= Lightning 
a Thunderbolt 
= USB 
a USB-C 
= USB 2.0 
= USB 3.0 
a Peripheral cables 
a Serial 
a Hard drive cables 
a SATA 
= IDE 
a SCSI 
a Adapters 
a DVI to HDMI 
a USB to Ethernet 
a DVI to VGA 





vy 3.2 Identify common connector types. 


a RS-232 

=» USB 

a Micro-USB 
a Mini-USB 
a USB-C 

= DB-9 

= Lightning 
a SCSI 

a eSATA 

a Molex 


Y 3.6 Explain the purposes and uses of various peripheral 
types. 


= Printer 
a ADF/flatbed scanner 
= Barcode scanner/OR scanner 
a Monitors 
= VR headset 
a Optical 
=» DVD drive 
a Mouse 
= Keyboard 
= Touchpad 
= Signature pad 
a Game controllers 
a Camera/webcam 
a Microphone 
=» Speakers 
= Headset 
= Projector 
a Lumens/brightness 
=» External storage devices 
a KVM 
a Magnetic reader/chip reader 
=» NFC/tap pay device 


= Smart card reader 





Thus far, our discussion of computer components has focused 
primarily on those inside the case. With knowledge of the key 
eee internal components under your belt, it is time to turn our 
attention to peripherals that reside outside of the computer. There are dozens of external 
devices available. We’ll cover a variety of them that add video, audio, input, output, and 
storage capabilities. 

Of course, to connect external peripherals, we need some sort of cable and connector. 
Not everything is wireless yet! Consequently, we will also discuss the interfaces and cables 
associated with common peripherals. With that, it’s now time to think outside the box. 
We’ll start with cables and connectors. 





Understanding Cables and Connectors 


The devices used with a computer need to attach to the motherboard somehow. They do 
so through the use of ports and cables. A port is a generic name for any connector on 

a computer or peripheral into which a cable can be plugged. A cable is simply a way of 
connecting a peripheral or other device to a computer using multiple copper or fiber-optic 
conductors inside a common wrapping or sheath. Typically, cables connect two ports: one 
on the computer and one on some other device. 

The A+ exam objectives break cables and connectors into two different groups, but 
really they need to be discussed together. After all, a cable without a connector doesn’t do 
much good, and neither does a connector without a cable. In the following sections, we’ll 
look at four different classifications of cables and the connectors that go with them: video, 
hard drive, multipurpose, and peripheral. 


For the A+ exam, you will also need to be familiar with network cables 
OTE and connectors. We will cover those in depth in Chapter 6, “Networking 
Fundamentals.” 


Video Cables and Connectors 


Computer displays are ubiquitous—they’re easily the most widely used peripheral. Different 
standards exist to connect displays to the computer, and you need to be familiar with five 
of them for the exam: VGA, DVI (and variants), HDMI, mini-HDMI, and DisplayPort. We 
will start with the older technologies and work toward the present. 
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Video Graphics Array Connector 


The Video Graphics Array (VGA) connector was the de facto video standard for computers 
for years and is still in use today. First introduced in 1987 by IBM, it was quickly adopted 
by other PC manufacturers. The term VGA is often used interchangeably to refer to generic 
analog video, the 15-pin video connector, or a 640 x 480 screen resolution (even though the 
VGA standard can support much higher resolutions). Figure 3.1 shows a VGA port, as well 
as the male connector that plugs into the port. Nearly all VGA connectors are blue. 


FIGURE 3.1 VGA connector and port 











Understanding D-Sub Ports and Connectors 


The VGA connector is an example of a D-subminiature connector, also known as a D-sub 
connector. For a number of years, D-sub was the most common style of connector found 
on computers. Their names are typically designated with DX-n, where the letter X is 
replaced by a letter from A to E, which refers to the size of the connector, and the letter n 
is replaced by the number of pins or sockets in the connector. 


D-sub connectors are usually shaped like a trapezoid and have at least two rows of pins 
with no other keying structure or landmark, as you can see in Figure 3.2. At the bottom 
center in Figure 3.2 is a DE-15F 15-pin display-connector port, which may also be referred 
to as an HD-15 or DB-15 port. The top one is a classic DB-25 parallel port, and the bottom 
left is a DB-9 serial port. The IEEE 1394 (FireWire) and two dusty USB ports are shown for 
a size comparison. 
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FIGURE 3.2 D-sub ports 





The “D” shape ensures that only one orientation is possible. If you try to connect them 
upside down or try to connect a male connector to another male connector, they just 
won't go together and the connection can’t be made. By the way, male interfaces have 
pins, while female interfaces have sockets. Be on the lookout for the casual use of DB to 
represent any D-sub connector. This is very common and is accepted as an unwritten de 
facto standard, even if some are technically DE- or DA- connectors. Also note that you will 
see them written without the hyphen or with a space, such as DB15 or DB 15. 





VGA technology is the only one on the objectives list that is analog. It has been super- 
seded by newer digital standards, such as DVI and HDMI, and it was supposed to be 
phased out starting in 2013. A technology this widely used will be around for quite a while, 
though, and you’ll still see a lot of these in the wild (or still in use). 


ia All the video connector types introduced from here on are digital standards. 
TE 


Digital Visual Interface 


In an effort to leave analog VGA standards and return to digital video, which can typically 
be transmitted farther and at higher quality than analog, a series of connectors known 
collectively as Digital Visual Interface (DVI) was developed for the technology of the same 
name. DVI was released in 1999. 

At first glance, the DVI connector might look like a standard D-sub connector. On 
closer inspection, however, it begins to look somewhat different. For one thing, it has quite 
a few pins, and for another, the pins it has are asymmetrical in their placement on the con- 
nector. The DVI connector is usually white and about an inch long. Figure 3.3 shows what 
the connector looks like coming from the monitor. 
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FIGURE 3.3 DVI connector 





There are three main categories of DVI connectors: 


DVI-A DVI-A is an analog-only connector. The source must produce analog output, and 
the monitor must understand analog input. 


DVI-D DVI-D isa digital-only connector. The source must produce digital output, and 
the monitor must understand digital input. 


DVI-I DVI-I is a combination analog/digital connector. The source and monitor must 
both support the same technology, but this cable works with either a digital or an analog 
signal. 


The DVI-D and DVI-I connectors come in two varieties: single-link and dual-link. The 
dual-link options have more conductors—taking into account the six center conductors— 
than their single-link counterparts; therefore, the dual-link connectors accommodate higher 
speed and signal quality. The additional link can be used to increase screen resolution for 
devices that support it. Figure 3.4 illustrates the five types of connectors that the DVI stan- 
dard specifies. 


FIGURE 3.4 Types of DVI connectors 
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DVI-A and DVI-I analog quality is superior to that of VGA, but it’s still analog, 
meaning that it is more susceptible to noise. However, the DVI analog signal will travel far- 
ther than the VGA signal before degrading beyond usability. Nevertheless, the DVI-A and 
VGA interfaces are pin-compatible, meaning that a simple passive DVI to VGA adapter, as 
shown in Figure 3.5, is all that is necessary to convert between the two. As you can see, the 
analog portion of the connector, if it exists, comprises the four separate color and sync pins 
and the horizontal blade that they surround, which happens to be the analog ground lead 
that acts as a ground and physical support mechanism even for DVI-D connectors. 


FIGURE 3.5 DVI to VGA adapter 





It’s important to note that DVI-I cables and interfaces are designed to interconnect 
two analog or two digital devices; they cannot convert between analog and digital. DVI 
cables must support a signal of at least 4.5 meters, but better cable assemblies, stronger 
transmitters, and active boosters result in signals extending over longer distances. 

One thing to note about analog vs. digital display technologies is that all graphics 
adapters and all monitors deal with digital information. It is only the connectors and 
cabling that can be made to support analog transmission. Before DVI and HDMI encoding 
technologies were developed, consumer digital video display connectors could not afford 
the space to accommodate the number of pins that would have been required to transmit 16 
or more bits of color information per pixel. For this reason, the relatively few conductors of 
the inferior analog signaling in VGA were appealing. 


High-Definition Multimedia Interface 


High-Definition Multimedia Interface (HDMI) is an all-digital technology that advances 
the work of DVI to include the same dual-link resolutions using a standard HDMI cable 
but with higher motion-picture frame rates and digital audio right on the same connector. 
HDMI was introduced in 2002, which makes it seem kind of old in technology years, but 
it’s a great, fast, reliable connector that will probably be around for several years to come. 
HDMI cabling also supports an optional Consumer Electronics Control (CEC) feature 
that allows transmission of signals from a remote-control unit to control multiple devices 
without separate cabling to carry infrared signals. 

HDMI cables, known as Standard and High Speed, exist today in the consumer space. 
Standard cables are rated for 720p resolution as well as 1080i, but not 1080p. High 
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Speed cables are capable of supporting not only 1080p, but also the newer 4K and 3D 
technologies. Figure 3.6 shows an HDMI cable and port. 


FIGURE 3.6 HDMI cable and port 





In June 2006, revision 1.3 of the HDMI specification was released to support the bit 
rates necessary for HD DVD and Blu-ray disc. This version also introduced support for 
“deep color,” or color depths of at least one billion colors, including 30-, 36-, and 48-bit 
color. However, not until version 1.4, which was released in May 2009, was the High Speed 
HDMI cable initially required. 

With version 1.4 came HDMI capability for the controlling system—the television, for 
instance—to relay Ethernet frames between its connected components and the Internet, 
alleviating the need for each and every component to find its own access to the LAN for 
Internet access. Both Standard and High Speed cables are available with this Ethernet chan- 
nel. Each device connected by such a cable must also support the HDMI Ethernet Channel 
specification, however. 

Additional advances that were first seen in version 1.4 were 3D support, 4K resolution (but 
only at a 30 Hz refresh rate), an increased 120 Hz refresh rate for the 1080 resolutions, and an 
Audio Return Channel (ARC) for televisions with built-in tuners to send audio back to an A/V 
receiver without using a separate output cable. Version 1.4 also introduced the anti-vibration 


Understanding Cables and Connectors 139 


Type-E locking connector for the automotive-video industry and cables that can also 
withstand vibration as well as the hot/cold extremes that are common in the automotive world. 

Version 2.0 of HDMI (2013) introduced no new cable requirements. In other words, 
the existing High Speed HDMI cable is fully capable of supporting all new version 2 
enhancements. These enhancements include increasing the 4K refresh rate to 60 Hz, a 21:9 
theatrical widescreen aspect ratio, and 32-channel audio. Note that 7.1 surround sound 
comprises only eight channels, supporting the more lifelike Rec. 2020 color space and 
multiple video and audio streams to the same output device for multiple users. Version 
2.0a, released in 2015, primarily added high dynamic range (HDR) video, but it does not 
require any new cables or connectors. 

The most recent version (as of this writing) is HDMI 2.1, released in November 2017. 
Version 2.1 specifies a new cable type called 48G, which provides for 48 Gbps bandwidth. 
48G cables are backward compatible with older HDMI versions. You can also use older 
cables with 48G-capable devices, but you just won’t get the full 48 Gbps bandwidth. 
HDMI 2.1 also provides for 120 Hz refresh rates for 4K, 8K, and 10K video, and supports 
enhanced Audio Return Channel (eARC), which is needed for object-based audio formats, 
such as DTS:X and Dolby Atmos. 

Even though the HDMI connector is not the same as the one used for DVI, the two 
technologies are electrically compatible. HDMI is compatible with DVI-D and DVI-I 
interfaces through proper adapters, but HDMI’s audio and remote-control pass-through 
features are lost. Additionally, 3D video sources work only with HDMI. Figure 3.7 
shows a DVI to HDMI adapter between DVI-D and the Type-A 19-pin HDMI inter- 
face. Compare the DVI-D interface to the DVI-I interface of Figure 3.5, and note that 
the ground blade on the DVI-D connector is narrower than that of the DVI-A and DVI-I 
connectors. The DVI-D receptacle does not accept the other two plugs for this reason, 
as well as because the four analog pins around the blade have no sockets in the DVI-D 
receptacle. 


FIGURE 3.7 DVI to HDMI adapter 





Unlike DVI-D and, by extension DVI-I, DVI-A and VGA devices cannot be driven 
passively by HDMI ports directly. An HDMI to VGA adapter must be active in nature, 
powered either externally or through the HDMI interface itself. 

HDMI cables should meet the signal requirements of the latest specification. As a result, 
and as with DVI, the maximum cable length is somewhat variable. For HDMI, cable length 
depends heavily on the materials used to construct the cable. Passive cables tend to extend 
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no farther than 15 meters, while adding electronics within the cable to create an active 
version results in lengths as long as 30 meters. 


Mini-HDMI 


There are multiple versions of HDMI connectors in the marketplace. The standard 
connector that you’re probably used to seeing, and the one shown in Figure 3.6 and 
Figure 3.7, is the 19-pin Type-A connector. The Type-A connector and the 29-pin Type-B 
connector were specified in HDMI version 1.0 and haven’t changed much since then. Type-B 
connectors were intended for higher-resolution products but are not used in the market today. 
HDMI version 1.3 specified a smaller 19-pin Type-C connector for portable devices. 
The Type-C connector, also referred to as a mini-HDMI connector, is compatible with the 
Type-A connector, but it still requires an adapter due to its smaller size. HDMI version 1.4 
specified two more interfaces: Type-D and Type-E. If Type-C is a mini- HDMI interface, 
then you might refer to the Type-D connector as micro-HDMI. Figure 3.8 shows all five 
HDMI connectors. Also compatible with Type-A interfaces because they have the same 19 
pins, Type-D interfaces require just a simple adapter for conversion. 


FIGURE 3.8 HDMI connector types 
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By COnanPayne - Based on File: HDMI Connector.jpg, CCO, https: //commons.wikimedia.org/w/index 
. php? curid=58368257 


The mini-HDMI and micro-HDMI connectors are most often used on smaller portable 
devices, such as tablets, smartphones, and digital cameras. As mentioned previously, the 
Type-E connector has a locking mechanism and is intended for use in automobiles or other 
environments that are susceptible to vibration, which could cause a connector and cable to 
become disconnected. 


DisplayPort 


DisplayPort is a royalty-free digital display interface from the Video Electronics Standards 
Association (VESA) that uses less power than other digital interfaces and VGA. Introduced 
in 2008, it’s designed to replace VGA and DVI. To help ease the transition, it’s backward 
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compatible with both standards, using an adapter. In addition, an adapter allows HDMI 
and DVI voltages to be lowered to those required by DisplayPort because it is functionally 
similar to HDMI and DVI. DisplayPort cables can extend 3 meters, unless an active cable 
powers the run, in which case the cable can extend to 33 meters. DisplayPort is intended 
primarily for video, but, like HDMI, it can transmit audio and video simultaneously. 

Figure 3.9 shows a DisplayPort port on a laptop as well as a connector. The DisplayPort 
connector latches itself to the receptacle with two tiny hooks. A push-button mechanism 
serves to release the hooks for removal of the connector from the receptacle. Note the 
beveled keying at the bottom-left corner of the port. 


FIGURE 3.9 A DisplayPort port and cable 





The DisplayPort standard also specifies a smaller connector, known as the Mini 
DisplayPort (MDP) connector. The MDP is electrically equivalent to the full-size DP con- 
nector and features a beveled keying structure, but it lacks the latching mechanism present 
in the DP connector. The MDP connector looks identical to a Thunderbolt connector, which 
we will cover in the “Multipurpose Cables and Connectors” section later in this chapter. 


Hard Drive Cables and Connectors 


At the beginning of this chapter, we said that we were going to move outside the box and 
talk about external peripherals, cables, and connectors. For the most part that’s true, but 
here we need to take a small digression to talk about connecting hard drives, most of which 
are internal. Some of this you already learned in Chapter 2, “Internal Expansion, Storage 
Devices, and Power Supplies,” so this could feel like a review. Of course, there are SATA 
and PATA connectors, but we’ll also throw in two new ones—SCSI and eSATA. 


PP Optical drives use the same connectors as hard drives. 
oe" 


Remember that all drives need some form of connection to the motherboard so that the 
computer can “talk” to the disk drive. Regardless of whether the connection is built into 
the motherboard (onboard) or on an adapter card (off-board), internal or external, the 
standard for the attachment is based on the drive’s requirements. These connections are 
known as drive interfaces. The interfaces consist of circuitry and a port, or header. 
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Serial Advanced Technology Attachment 

The most common hard drive connector used today is Serial Advanced Technology 
Attachment (SATA). Figure 3.10 shows SATA headers, which you have seen before, and 
a SATA cable. Note that the SATA cable is flat, and the connector is keyed to fit into the 
motherboard header in only one way. SATA data cables have a 7-pin connector. SATA 
power cables have 15 pins and are wider than the data connector. 


FIGURE 3.10 SATA connectors and cable 





The SATA we’ve discussed so far is internal, but there’s an external version as well, 
appropriately named external SATA (eSATA). It uses the same technology, only in an external 
connection. The port at the bottom center of Figure 3.11 is eSATA. It entered the market in 
2003, is mostly intended for hard drive use, and can support up to 15 devices on a single bus. 


FIGURE 3.11 eSATA 
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Table 3.1 shows some of the eSATA specifications. 


TABLE 3.1 eSATA specifications 





Version Year Speed Names 

Revision 1.0 2003 1.5 Gbps SATA I, SATA 1.5Gb/s 
Revision 2.0 2005 3.0 Gbps SATA II, SATA 3Gb/s 
Revision 3.0 2009 6.0 Gbps SATA III, SATA 6Gb/s 


You will commonly see the third generation of eSATA (and SATA) referred to as SATA 6 
or SATA 6Gb/s. This is because if they called it SATA 3, there would be confusion with the 
second generation, which had transfer speeds of 3.0 Gbps. 

An interesting fact about eSATA is that the interface does not provide power, which is 
a big negative compared to its contemporary high-speed serial counterparts. To overcome 
this limitation, there is another eSATA port that you might see, called Power over eSATA, 
eSATA+, eSATAp, or eSATA/USB. It’s essentially a combination eSATA and USB port. 
Since the port is a combination of two others, neither sanctioning body officially recognizes 
it (which is probably why there are so many names—other companies call it what they 
want to). Figure 3.12 shows this port. 


FIGURE 3.12 USB over eSATA 





You can see that this port is slightly different from the one in Figure 3.11, and it’s also 
marked with a USB icon next to the eSATA one. On the market, you can purchase cables 
that go from this port to an eSATA device and provide it with power via the esATAp 
port. 


eSATA will likely start becoming obsolete thanks to USB 3.0, which we will 
TE talk about in the “Multipurpose Cables and Connectors” section later in 


this chapter. 
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Parallel Advanced Technology Attachment 


Prior to SATA, the most popular hard drive connector was Integrated Drive Electronics 
(IDE), which has now been renamed to Parallel Advanced Technology Attachment 
(PATA). There is no difference between PATA and IDE, other than the name. Figure 3.13 
shows PATA connectors on a motherboard next to a PATA cable. Refer back to Chapter 2, 
Figure 2.9 to see a direct comparison of SATA and PATA connectors on a hard drive. 


FIGURE 3.13 PATA connectors and cable 





PATA drives use a 40-pin flat data cable, and there are a few things to note about it. 
First, there is an off-colored stripe (often red, pink, or blue) along one edge of the cable 
to designate where pin 1 is. On a PATA drive, pin 1 is always on the edge nearest the 
power connector. The second thing to note is that there are three connectors—one for the 
motherboard and two for drives. PATA technology specifies that there can be two drives 
per cable, in a primary and secondary (or master and slave) configuration. The primary 
drive will be attached to the other end of the cable, and the secondary, if connected, will 
use the middle connector. In addition, the drive itself may need to be configured for master 
or slave by using the jumper block on the drive. Most PATA drives will auto-configure their 
status based on their position on the cable, but if there is a conflict, they can be manually 
configured. 

Power is supplied by a 4-pin power connector known as a Molex connector. (Refer to 
Chapter 2, Figure 2.30.) If you have a PATA drive and a SATA-supporting power supply (or 
vice versa), you can buy an adapter to convert the power to what you need. The same holds 
true for data connectors as well. 


Small Computer System Interface 


A third type of hard drive connector is called Small Computer System Interface (SCSI). 
The acronym is pronounced “scuzzy,” even though the original designer intended for it to 
be called “sexy.” The most common usage is for storage devices, but the SCSI standard 
can be used for other peripherals as well. You won’t see many SCSI interfaces in home 
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computers—it’s more often found in servers, dedicated storage solutions, and high-end 
workstations. 

Early versions of SCSI used a parallel bus interface called SCSI Parallel Interface (SPI). 
Starting in 2005, SPI was replaced by Serial Attached SCSI (SAS), which, as you may guess, 
is a serial bus. If you compare SCSI to other popular drive interfaces at the time, SCSI was 
generally faster but more expensive than its counterparts, such as IDE. 


SCSI Parallel Interface 


Although it’s essentially obsolete now, you might find some details of SPI interesting. 
The first standard, ratified in 1986, was an 8-bit bus that provided for data transfers 

of 5 Mbps. Because it was an 8-bit bus, it could support up to seven devices. (The 
motherboard or expansion card header was the eighth.) Each device needed a unique ID 
from 0 to 7, and devices were attached in a daisy chain fashion. A terminator (essentially 
a big resistor) needed to be attached to the end of the chain; otherwise, the devices 
wouldn’t function. 

In 1994, the 8-bit version was replaced by a 16-bit version that supported up to 15 
devices and had a transfer speed of 320 Mbps. Compared to the 100 Mbps supported by 
IDE at the time, you can see why people wanted SCSI! 

SPI had different connectors, depending on the standard. 50-pin, 68-pin, and 80-pin 
connectors were commonly used. Figure 3.14 shows two 50-pin Centronics connectors, 
which were common for many years. Figure 3.15 shows a terminator, with the top cover 
removed so that you can see the electronics. 


FIGURE 3.14 Two 50-pin SCSI connectors 








By Smial at German Wikipedia - Own work, CC BY-SA 2.0 de, https: //commons.wikimedia.org/w/index 
-php?curid=1009512 
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FIGURE 3.15 A SCSI terminator 


THAIN Nh! 





By Adamantios - Own work, CC BY-SA 3.0, https: //commons.wikimedia.org/w/index. php?curid=6116837 


Serial Attached SCSI 


Of the newer SCSI implementations, the one you will most likely encounter is SAS. For 
example, as we mentioned in Chapter 2, most 15,000 rpm hard drives are SAS drives. From 
an architectural standpoint, SAS differs greatly from SPI, starting with the fact that it’s 
serial, not parallel. What they do share is the use of the SCSI command architecture, which 
is a group of commands that can be sent from the controller to the device to make it do 
something, such as write or retrieve data. 

A SAS system of hard drives works much like the SATA and PATA systems you’ve 
already learned about. There’s the controller, the drive, and the cable that connects it. SAS 
uses its own terminology, though, and adds a component called an expander. Here are the 
four components of a SAS system: 


Initiator Think of this as the controller. It sends commands to target devices and receives 
data back from them. These can be integrated or an add-on card. Each initiator can have a 
direct connection to 128 devices. 


Target This is the device, typically a hard drive. It can also be multiple hard drives 
functioning in a RAID array. 


Service Delivery Subsystem The service delivery subsystem transmits information between 
an initiator and a target. Often this is a cable, but it can also be a server backplane (where 
multiple devices connect). 


Expander An expander is a device that allows for multiple initiators to be combined into 
one service delivery subsystem. Through the use of expanders, one initiator can support up 
to 16,256 devices. 


Figure 3.16 shows a SAS cable and connector. It’s slightly wider than a SATA power and 
data connector together. The other end of a cable such as this might have an identical SAS 
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connector or a mini-SAS connector, or it might pigtail into four SATA or mini-SAS connectors. 


FIGURE 3.16 ASASconnector 





By Adamantios - Own work, CC BY-SA 3.0, https: //commons.wikimedia. org/w/index.php?curid=6117374 


Table 3.2 lists SAS standards and maximum throughput. 


TABLE 3.2 SAS standards and speeds 





Standard Year Throughput 
SAS-1 2005 3 Gbps 
SAS-2 2009 6 Gbps 
SAS-3 2013 12 Gbps 
SAS-4 2017 22.5 Gbps 


SAS offers the following advantages over SPI: 


= No terminator is required. 


Up to 16,256 devices can be connected to a single system. 


Each SAS device has its own link to the controller, so there are no issues with contention 
(when multiple devices try to use the same link at the same time, causing interference). 
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= SAS provides faster data transfer speeds than SPI. 


= SAS devices are compatible with SATA 2.0 and higher—SATA drives can be connected 
to SAS controllers. 


With the invention of super-fast M.2 and NVMe hard drives, which you learned about 
in Chapter 2, it’s hard to say what the future of SAS is. Most likely, SAS will continue to 
have a place in corporate environments with large-scale storage solutions, while the others 
will provide leading-edge speed for the workstation environment, particularly among lap- 
tops and smaller devices. 


Multipurpose Cables and Connectors 


Some of the cables we’ve discussed so far can serve multiple purposes. For example, HDMI 
can transmit audio as well as video, and SCSI supports more than just hard drives. For the 
most part, though, we associate HDMI with video and SCSI with storage devices. 

Unlike HDMI and SCSI, the cables and connectors in this section are specifically 
designed to connect a variety of devices. For example, someone may have a USB hub with 
a wireless mouse, network card, Lightning cable (to charge an iPhone), and flash drive all 
attached at the same time. Those four devices serve very different purposes, but they all 
share the USB connection in common. We’ll start with the highly popular USB and then 
discuss Lightning and Thunderbolt connectors. 


Universal Serial Bus 


Universal Serial Bus (USB) cables are used to connect a wide variety of peripherals to 
computers, including keyboards, mice, digital cameras, printers, scanners, hard drives, and 
network cards. USB was designed by several companies, including Intel, Microsoft, and 
IBM, and is currently maintained by the USB Implementers Forum. 

USB technology is fairly straightforward. Essentially, it is designed to be Plug and Play— 
just plug in the peripheral and it should work, provided that the software is installed to 
support it. Many standard devices have drivers that are built into the common operating 
systems or automatically downloaded during installation. More complex devices come with 
drivers to be installed before the component is connected. 

USB host controllers can support up to 127 devices, which is accomplished through the 
use of a 7-bit identifier. The 128th identifier, the highest address, is used for broadcasting to 
all endpoints. Realistically speaking, you’ll probably never get close to this maximum. Even 
if you wanted to try, you won’t find any computers with 127 ports. Instead, you would plug 
in a device known as a USB hub (shown in Figure 3.17) into one of your computer’s USB 
ports, which will give you several more USB ports from one original port. Understand that 
a hub counts as a device for addressing purposes. Hubs can be connected to each other, 
but interconnection of host controllers is not allowed; each one and its connected devices 
are isolated from other host controllers and their devices. As a result, USB ports are not 
considered networkable ports. Consult your system’s documentation to find out if your USB 
ports operate on the same host controller. 
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FIGURE 3.17 A 4-port USB hub 





Another nice feature of USB is that devices can draw their power from the USB cable, so 
you may not need to plug in a separate power cord. This isn’t universally true, though, as 
some peripherals still require external power. 


USB Standards 


Even though USB was released in 1996, the first widely used standard was USB 1.1, which 
was released in 1998. It was pretty slow—only 12 Mbps at full speed and 1.5 Mbps at 
low speed—so it was really only used for keyboards, mice, and printers. When USB 2.0 
came out in 2000 with a faster transfer rate of 480 Mbps (called Hi-Speed), video devices 
were possible. The newer USB 3.0, 3.1, and 3.2 standards have increased throughput even 
further. Table 3.3 lays out the specifications and speeds for you. 


TABLE 3.3 USB specifications 


Specification 
USB 1.1 
USB 2.0 
USB 3.0 
USB 3.1 


USB 3.2 


Release Year 


1998 


2000 


2008 


2013 


2017 


Maximum Speed 


12 Mbps 
480 Mbps 
5 Gbps 
10 Gbps 


20 Gbps 


Trade Name 
Full-Speed 
Hi-Speed 
SuperSpeed 
SuperSpeed+ 


SuperSpeed+ 


Color 


White 


Black 


Blue 


Teal 


n/a 
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The USB 1.x and 2.x specifications didn’t recommend a specific color for the ports, 
but when USB 3.0 was released, the USB Implementers Forum suggested that the ports 
and cable connectors be colored blue, to signify that they were capable of handling higher 
speeds. Device manufacturers are not required to follow the color-coding scheme, so you 
may see some inconsistency. A red or yellow USB port means it’s capable of charging a 
connected device, even if the PC is sleeping or shut down. As of the time of this writing, 
there was no color specified for USB 3.2. Most USB 3.2 devices are expected to use a USB 
Type-C connector anyway. 


USB Cables and Connectors 


In order to achieve the full speed of the specification that a device supports, the USB cable 
needs to meet that specification as well. In other words, USB 1.x cables cannot provide 
USB 2.0 and 3.x performance, and USB 2.0 cables cannot provide USB 3.x performance. 
Otherwise, the connected device will have to fall back to the maximum version supported 
by the cable. This is usually not an issue, except for the lost performance, but some high- 
performance devices will refuse to operate at reduced levels. Note that all specifications are 
capable of Low Speed, which is a 1.5 Mbps performance standard that has existed since the 
beginning of USB time. 

Throughout most of its history, USB has relied upon a small suite of standard connec- 
tors. The two broad classifications of connectors are designated Type-A and Type-B con- 
nectors, and there are micro and mini versions of each. A standard USB cable has some 
form of Type-A connector on the end that plugs into the computer or hub, and some form 
of Type-B or proprietary connector on the device end. Figure 3.18 shows five USB 1.x/2.0 
cable connectors. From left to right, they are as follows: 


=»  Micro-USB 
=»  Mini-USB 
=  Type-B 


= Type-A female 
= Type-A male 


FIGURE 3.18 Standard USB connectors 





5 cm 


By Techtonic (edited fromUSB types.jpg) [Public domain], via Wikimedia Commons 
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Small form factor devices, including many smartphones and smaller digital cameras, 
use a micro-USB or mini-USB connector, unless the manufacturer has developed its own 
proprietary connector. Micro-USB connectors (and modified ones) are popular with many 
Android phone manufacturers. 

In 2014, a new connector named USB Type-C (or simply USB-C) was developed. USB-C 
is designed to replace Type-A and Type-B, and, unlike its predecessors, it’s reversible. That 
means no more flipping the connector over several times to figure out which way it con- 
nects. Type-C cables will also be able to provide more power to devices than classic cables 
were. Figure 3.19 shows a Type-C connector and a Type-A connector. 


FIGURE 3.19 USB Type-C (top) and Type-A (bottom) 





P One point of confusion for many is dissociating the connector type from 
‘GQ the standard. Because USB 3.1 and USB-C were both released around the 
same time, people often think that they are one in the same—but they're 
not. USB 3.1 can be implemented using classic A and B connectors, and 
USB 2.0 can work over a Type-C connector. 


USB was designed to be a short-distance technology. As such, USB cables are limited in 
length. USB 1.x and 2.0 can use cables up to 5 meters long, whereas USB 3.x can use cables 
up to 3 meters long. In addition, if you use hubs, you should never use more than five hubs 
between the system and any component. 

Despite the seemingly locked-up logic of USB connectivity, it is occasionally necessary 
to alter the interface type at one end of a USB cable. For that reason, there are a variety of 
simple, passive converters on the market with a USB interface on one side and a USB or dif- 
ferent interface on the other. Along with adapters that convert USB Type-A to USB Type-B, 
there are adapters that will convert a male connector to a female one. In addition, you can 
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convert USB to a lot of other connector types, such as USB to Ethernet (shown in Figure 3.20), 
USB to SATA, USB to eSATA, USB to PS2, USB to serial, and a variety of others. 


FIGURE 3.20 Kensington USB to Ethernet adapter 





USB Power 


As mentioned previously, USB ports provide power to devices plugged into them. Typical 
power for attached USB devices is 5V. The maximum current (amps) and wattage will 
depend on the connected device and USB standard being used. 

All USB ports are also capable of functioning as charging ports for devices such as 
tablets, smartphones, and smart watches. The charging standard, called USB Battery 
Charging, was released in 2007. USB Power Delivery (PD) was developed in 2012. 
Technically, they are different standards, but in practice, USB ports are capable of 
supporting both standards at the same time. Table 3.4 outlines some of the versions and 
the maximum power that they provide. 


TABLE 3.4 USB power standards 





Standard Year Maximum Power 
USB Battery Charging 1.0 2007 5V, 1.5A (7.5W) 
USB Battery Charging 1.2 2010 5V, 5A (20W) 
USB Power Delivery 1.0 2012 20V, 5A (100W) 
USB Power Delivery 2.0 (specified use of Type-C 2014 5V, 3A (15W) 


connectors but only up to 15W) 


USB Power Delivery 3.0 2015 20V, 5A (100W) 


A smartphone or tablet typically needs a minimum of about 7.5 watts to charge prop- 
erly. The Battery Charging 1.0 standard was good enough, but not for larger devices. 
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For example, about 20 watts is required to power a small laptop computer, and standard 
15-inch laptops can require 60 watts or more. With USB PD, one USB port can now pro- 
vide enough power for a laptop as well as a small printer. 

Because of the capabilities of USB PD, it’s possible that in the next few years you will see 
devices up to laptop size lose their standard AC power ports and adapters—they may just 
have a USB-C port instead. To get the full capabilities of USB PD, you need to use a USB-C 
port and cable. 


| For more information on USB, check out www.usb. org. 
TE 
Lightning 


Introduced in 2012 with the iPhone 5, the Lightning connector is Apple’s proprietary con- 
nector for iPhones and iPads. It’s an 8-pin connector that replaced Apple’s previous 30-pin 
dock connector. A standard Lightning cable has a USB Type-A connector on one end and 
the Lightning connector on the other, as shown in Figure 3.21. It’s not keyed, meaning that 
you can put it in with either edge up. 


FIGURE 3.21 Lightning cable 





Lightning cables support USB 2.0. You will find cables that are USB-C to Lightning, 
as well as various Lightning adapters, such as those to HDMI, DisplayPort, audio, and 
Lightning to female USB Type-A (so you can plug a USB device into an iPad or iPhone). 

There are rumors that Apple may do away with the Lightning connector in its 2019 
iPhone release and instead use USB-C. The same rumors have persisted since the iPhone 
8 was released in 2017, and it seems that Apple has little reason to move away from its 
proprietary connector. 
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Thunderbolt 


Where there’s lightning, there’s thunder, right? Bad joke attempts aside, in computer circles 
Lightning connectors don’t have much to do with Thunder(bolt). Thunderbolt, created in 
collaboration between Intel and Apple and released in 2011, combines PCI Express 2.0 x4 with 
the DisplayPort 1.x technology. While it’s primarily used for video (to replace DisplayPort), the 
connection itself can support multiple types of peripherals, much like USB does. 


Thunderbolt Standards 


Because Thunderbolt includes a separate I/O function from the DP video technology, it is 
rated for power and transfer rates in the same way as technologies such as USB and eSATA. 
Both of the initial versions of Thunderbolt, v1 and v2, operate at 20 Gbps of aggregate 
bandwidth. The v2 offering does so with more flexibility by combining the two 10 Gbps 
channels instead of allowing each one to perform as either only transmit or only receive. 
Each Thunderbolt port provides a total of 18V and 9.9W of power to the one or more 
attached peripherals. 

Thunderbolt 3 was released in 2015 and doubles the bandwidth to 40 Gbps. It supports 
PCIe 3.0 and DisplayPort 1.2, meaning that it can support dual 4K displays at 60 Hz or a 
single 4K display at 120 Hz. 


Thunderbolt Cables and Connectors 


The most common Thunderbolt cable is a copper, powered active cable extending as far as 3 
meters, which was designed to be less expensive than an active version of a DisplayPort cable 
of the same length. There are also optical cables in the specification that can reach as far as 
60 meters. Copper cables can provide power to attached devices, but optical cables can’t. 

Additionally, and as is the case with USB, Thunderbolt devices can be daisy-chained and 
connected via hubs. Daisy chains can extend six levels deep for each controller interface, 
and each interface can optionally drive a separate monitor, which should be placed alone on 
the controller’s interface or at the end of a chain of components attached to the interface. 

Figure 3.22 shows two Thunderbolt 2 interfaces next to a USB port on an Apple 
MacBook Pro. Note the standard lightning-bolt insignia by the port. Despite its diminutive 
size, the Thunderbolt port has 20 pins around its connector bar, like its larger DisplayPort 
cousin. Of course, the functions of all the pins do not directly correspond between the two 
interface types, because Thunderbolt adds PCle functionality. 


FIGURE 3.22 Two Thunderbolt 2 interfaces 
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Thunderbolt 3 uses standard USB-C connectors, as shown in Figure 3.23. 


FIGURE 3.23 Two Thunderbolt 3 interfaces 





By Amin - Own work, CC BY-SA 4.0, https: //commons.wikimedia.org/w/ index. php?curid=67330543 


Converters are available that connect Thunderbolt connectors to VGA, HDMI, and DVI 
monitors. Active converters that contain chips to perform the conversion are necessary in 
situations such as when the technology is not directly pin-compatible with Thunderbolt— 
as with VGA and DVI-A analog monitor inputs, for example. Active converters are only 
slightly more expensive than their passive counterparts but still only a fraction of the cost 


of Thunderbolt hubs. One other advantage of active connectors is that they can support 
resolutions of 4K (3840 x 2160) and higher. 








E Real World Scenario 


Choosing the Right Connection Technology 


After reading about multipurpose connectors, you can see that you have several viable 
choices if you need to choose a technology. So, which one do you choose? 


A few factors to consider are compatibility, price, and future needs. First, think about 
compatibility. There are two vectors of this. The first one is compatibility with devices. 
What do you need to hook up? If it’s basic devices such as a keyboard and a printer, then 
USB is the right way to go. It’s plenty fast and cheap. If you need a considerable amount 
of external storage at lightning-fast speeds, then Thunderbolt is probably a better choice, 
although USB 3.1/3.2 and eSATA can also meet your needs. (Then it might come down to 
cost.) The second compatibility vector is with your existing hardware. If you are looking to 
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connect devices to your existing computer, what types of connectors do you have? That 
could make the decision for you, unless you're in the market for a new system as well. 


Price can also be a consideration. USB is generally the cheapest, although since USB 3.1 
and 3.2 are relatively new, those devices will be more expensive than older ones. 


Lastly, think about future expansion needs. Is this for your home office and you aren't plan- 
ning on adding extra devices for another five years or so? Then this isn’t a big deal. But if 
you're working in a small business environment that is growing rapidly, you will want to 
think about future hardware needs and the speeds at which those devices need to run. 


Many people are asking which one will win, Thunderbolt or USB? It’s too early to tell, and 
really, maybe there shouldn't be one winner. Both technologies are great, and there’s 
probably a place for both moving forward. 





Other Peripheral Cables and Connectors 


The vast majority of peripherals that you will encounter use one of the connector types 
we’ve already discussed in this chapter. However, there’s the off chance that you will run 
into some others, and that’s what this section is for. Think of this as the random grab bag 
of things you might see. If nothing else, it’s knowledge that you can impress your friends 
and family with at your next social event. 


Serial Ports 


Of all the connectors and cable types in this section, this is the one that’s a CompTIA A+ 
exam objective. We’ve talked a bit about serial ports and serial transmissions already, but 
here we’ll look at ports and connectors. 

Remember that before USB came along around 20 years ago, serial ports were 
considered slow and inferior to parallel ports. Still, serial enjoyed use among peripherals 
that didn’t need to transfer information at high speeds, such as mice, modems, network 
management devices, and even printers. Figure 3.24 shows a 9-pin serial port. It’s the one 
marked “Serial,” and it’s also the only male connector on the back of the PC. 


FIGURE 3.24 Several peripheral ports 
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As you might expect, a serial cable attaches to the serial port. Figure 3.25 shows a 
female DB-9 serial connector. To make things more confusing, sometimes you will hear 
people refer to the image in Figure 3.25 as an RS-232 cable or connector. Even though the 
terms are often used interchangeably, there is a technical difference. 


FIGURE 3.25 DB-9 serial connector 





If you’ll recall from earlier in the chapter, DB-9 refers to a specific type of D-sub con- 
nector that has 9 pins. RS-232, on the other hand, is a communications standard for serial 
transmission. In other words, systems may communicate with each other using RS-232 over 
a DB-9 connection. But RS-232 can also be used on other types of serial cables as well, 
such as DB-15 or DB-25. Generally speaking, if someone asks for an RS-232 serial cable, 
they mean a DB-9 cable with female connectors. But it’s always best to confirm. 

RS-232 did have a few advantages over USB—namely, longer cable length (15 meters vs. 3-5 
meters) and a better resistance to electromagnetic interference (EMI). Still, USB has made old- 
school serial ports nearly obsolete. About the only time they are used today is for management 
devices that connect to servers or network routers with no keyboard and monitor installed. 


FireWire 


When FireWire (IEEE 1394) was standardized in 1995, it was going to be “the next big 
thing” in computing. It was very fast for the time (400 Mbps) and easy to use. Like USB, 
FireWire could provide power to attached devices. Up to 63 FireWire devices could be man- 
aged by one controller. Before its demise, FireWire supported speeds of 3.2 Gbps and was 
used for video as well as high-speed connections to external hard drives. Ultimately, though, 
it lost out to USB and video standards such as DVI and has basically been obsolete since 
around 2007. In Figure 3.24, the FireWire port is above two USB ports and is marked 1394. 


Audio/Video Ports 


Audio ports are pretty standard on PCs and laptops, and they haven’t changed much in a 
few decades. There are also several video connectors around that pre-date the ones cur- 
rently in use today such as DVI and HDMI. 


Analog Sound 


Small, 1/8” (3.5 mm) analog sound jacks have been around for a few decades, and they 
still look and work the same today as they did back then. The plugs provide left- and 
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right-channel stereo audio by making contact with their tip, rings (if they have any), and 
sleeve. 

While an older system might have had only one jack, newer PCs and sound cards may 
have a six-jack setup capable of 8-channel audio, also known as 7.1 surround sound. 
Figure 3.26 shows an example of a six-jack connector. Other soundcards may have three 
connectors: a green one for stereo audio output, a blue one for line-in (used for cheaper 
musical devices), and a pink one for a microphone. Most laptops and smaller devices will 
just have a single jack, which allows for the connection of a pair of speakers or headphones. 


FIGURE 3.26 Soundcard jacks 





RCA 

The RCA jack (shown in Figure 3.27) was developed by the RCA Victor Company in the 
late 1940s for use with its phonographs—the original record players. Today, you may use 
RCA jacks and connectors to transmit both audio and video information, although this 
technology has been supplanted by HDMI. 
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FIGURE 3.27 An RCA jack (female) and RCA plug (male) 





RCA jacks are considered coaxial because the outer circular conductor and the center 
pin that collectively make up the unbalanced single transmit/receive pair have the same axis 
of rotation—that is, co-axial. An RCA jack and cable carry either audio or video, not both 
simultaneously. Therefore, you usually see them implemented in sets of threes: left audio 
(white), right audio (red), and video (yellow). 


Component Video 


When analog technologies outside the VGA realm are used for broadcast video, you are 
generally able to get better-quality video by splitting the red, green, and blue components in 
the signal into different streams right at the source. The technology, known as component 
video, performs a signal-splitting function similar to RGB separation. However, unlike 
RGB separation, which requires full-bandwidth red, green, and blue signals as well as a 
fourth pathway for synchronization, the most popular implementation of component video 
uses one uncompressed signal and two compressed signals, reducing the overall bandwidth 
needed. These signals are delivered over coax, either as red, green, and blue color-coded 
RCA plugs or similarly coded BNC connectors, the latter being seen mostly in broadcast- 
quality applications. 

The uncompressed signal is called luma (Y), which is essentially the colorless version of 
the original signal that represents the “brightness” of the source feed as a grayscale image. 
The component-video source also creates two compressed color-difference signals, known 
as Pb and Pr. These two chrominance (chroma, for short) signals are also known as B — Y 
and R — Y, respectively, because they are created by subtracting out the luma from the blue 
and red source signals. It might make sense, then, that the analog technology presented 
here is most often referred to and labeled as YPbPr. A digital version of this technology, 
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usually found on high-end devices, replaces analog’s Pb and Pr with Cb and Cr, respec- 
tively, and is most often labeled YCbCr. Figure 3.28 shows the three RCA connectors of a 
component-video cable. 


FIGURE 3.28 Acomponent-video cable 





By Evan-Amos - Own work, public domain, https: //commons.wikimedia. org/w/index.php?curid=11339108 


As a slightly technical aside, luma is a gamma-correcting, nonlinear dis- 

‘gr play concept related to but not equivalent to luminance, which is a linear, 
non-gamma-corrected measure of light intensity. Display devices perform 
nonlinear gamma decompression, which means a complementary nonlin- 
ear gamma compression (correction) must have been performed by the 
transmitter for the resulting image to be displayed properly. Thus luma, 
not luminance, is the appropriate term when discussing component video. 
Furthermore, although Yis commonly used to represent luma, it actually 
stands for luminance. As a result, if you ever see a reference to Y’PbPr or 
Y’CbCr, the Y-prime refers correctly to luma. The more common, yet less 
correct, Yis used here to refer to luma. 


Note that the foregoing discussion did not mention a green component-video signal. In 
fact, the often green-colored lead in the component-video cable carries the luma. There is 
no need for a separate green color-difference signal. Essentially, the luma signal is used as a 
colorless map for the detail of the image. The receiving display device adds the luma signal 
from the Y lead back to the blue and red color-difference signals that were received on the 
Pb and Pr leads, re-creating compressed versions of the full blue and red source signals. 
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Whatever details in the luma version of the image have weak representation in the blue and 
red versions of the image are inferred to be green. 

Therefore, you can conclude that by providing one full signal (Y) and two compressed 
signals (Pb and Pr) that are related to the full signal (Pb = B- Y and Pr = R - Y), you can 
transmit roughly the same information as three full signals (R, G, and B) but with less 
bandwidth. Incidentally, component video is capable of transmitting HD video at full 1080p 
(1920 x 1080, progressive-scan) resolution. However, the output device is at the mercy of the 
video source, which often is not manufactured to push 1080p over component outputs. 


Composite Video 


When the preceding component-video technologies are not feasible, the last related stan- 
dard, composite video, combines all luma and chroma leads into one. Composite video 
is truly the bottom of the analog-video barrel. However, the National Television System 
Committee (NTSC) signal received by over-the-air antennas or by cable-TV feeds is com- 
posite video, making it a very common video signal. Unfortunately, once the four signals 
are combined into one, the display equipment has no way of faithfully splitting them back 
out, leading to less than optimal quality but great cost efficiency. 

Composite video is implemented as a single yellow RCA jack, which is the one shown in 
Figure 3.27. While still fairly decent in video quality, composite video is more susceptible to 
undesirable video phenomena and artifacts, such as aliasing, cross coloration, and dot crawl. 


PS/2 (Keyboard and Mouse) 


At one time, the most popular connectors for keyboards and mice were round connectors 
called Personal System/2 (PS/2) connectors. The PS/2 connector (there are two on the left 
in Figure 3.24) is a smaller 6-pin mini-DIN connector. Many PCs included a PS/2 keyboard 
connector as well as a PS/2 mouse connector right above it on the motherboard. The key- 
board connector was colored purple, and the mouse one green. The ends of the keyboard 
and mouse cables would be purple and green as well. Today, the PS/2-style connector has 
been replaced by the USB port. 


If you do run into a keyboard or mouse with a PS/2 connector, or a mother- 
TE board with a PS/2 port, you can buy a PS/2-to-USB adapter to make them 


work with more current hardware. 


Understanding Uses of Peripheral 
Devices 


Peripheral devices add much-needed functionality to computers, beyond the core compo- 
nents. Having a fast processor and terabytes of hard drive space is great, but it doesn’t com- 
plete the picture. Users need the ability to input data and easily see and use the output that 
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the processor generates. Of course, the types of devices that can input or receive output are 
quite varied. In the following sections, we are going to break peripheral devices into four 
categories: 


= Video 

=a Audio 

= Input and output 
= Storage 


We realize that video and audio are indeed input or output devices, but because they are 
more specialized, we will cover them separately. After this section, you will have a good 
understanding of purposes of and uses for several common peripheral devices, as well as 
how they connect to a PC. 


Video Devices 


The primary method of getting information out of a computer is to use a computer video 
display. Display systems convert computer signals into text and pictures and display them 
ona TV-like screen. As a matter of fact, early personal computers used television screens 
because it was simpler to use an existing display technology than to develop a new one. 

The most common video device used is a monitor, and we’ll discuss them in depth. 

We will also cover projectors, cameras and webcams, virtual reality headsets, and optical 
devices. 


Monitors 


Most display systems work the same way. First, the computer sends a signal to a device called 
the video adapter—an expansion board installed in an expansion bus slot or the equivalent 
circuitry integrated into the motherboard—telling it to display a particular graphic or char- 
acter. The adapter then renders the character for the display; that is, it converts the single 
instruction into several instructions that tell the display device how to draw the graphic and 
sends the instructions to the display device based on the connection technology between the 
two. The primary differences after that are in the type of video adapter you are using (digital 
or analog) and the type of display (LCD, plasma, OLED, and so forth). 


P Many monitors sold today are touch screens. Touch screen technology 

‘i converts stimuli of some sort, which are generated by actually touching 
the screen, to electrical impulses that travel over serial connections to the 
computer system. These input signals allow for the replacement of the 
mouse, both in terms of movement and in clicking. With onscreen key- 
boards, the external keyboard can be retired as well. This technology is 
used extensively with smartphones, tablets, and Internet of Things (loT) 
devices, such as automobile information systems, security systems, and 
smart thermostats. Many laptops today have touch screens as well. The 
technology has invaded the PC market, too, but has yet to totally dominate 
it. It’s probably just a matter of time, though. 
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Types of Monitors 


The first monitors built for PCs used the same technology as televisions of the time, which 
were based on the cathode ray tube (CRT). The details behind how a CRT worked are 
beyond the scope of this book, but what you should know is that CRTs were very bulky 
and heavy to move. Unlike monitors and TVs of today, which have relatively flat profiles, 
CRTs could be a foot or more deep. They also mostly used VGA connectors, with newer 
models having a DVI-A connector. It’s rare to see a CRT monitor in use today. Current 
monitors are based on LCD, plasma, or OLED technology. 


Liquid Crystal Display First used with portable computers and then adapted to desktop 
monitors, liquid crystal displays (LCDs) are based on the concept that when an electrical 
current is passed through a semi-crystalline liquid, the crystals align themselves with 

the current. When transistors are combined with these liquid crystals, patterns can be 
formed. Patterns can then be combined to represent numbers or letters. LCDs are relatively 
lightweight and consume far less power than the CRTs they replaced. LCDs can use VGA, 
DVI, or HDMI connections, depending on the monitor. 


Liquid crystals produce no light, so LCD monitors need a lighting source to display an 
image. Traditional LCDs use a fluorescent bulb backlight to produce light. Most LCDs 
today use a panel of light-emitting diodes (LEDs) instead, which consume less energy, run 
cooler, and live longer than fluorescent bulbs. Therefore, when you see a monitor advertised 
as an LED monitor, it’s really an LCD monitor with LED backlighting. 


Plasma The word plasma refers to a cloud of ionized (charged) particles—atoms and 
molecules with electrons in an unstable state. This electrical imbalance is used to create 
light from the changes in energy levels as they achieve balance. Plasma display panels (PDPs) 
create just such a cloud from an inert gas, such as neon, by placing electrodes in front of and 
behind sealed chambers full of the gas and vaporized mercury. This technology of running a 
current through an inert gas to ionize it is shared with neon signs and fluorescent bulbs. 


Because of the emission of light that this process produces, plasma displays have more in 
common with legacy CRTs than they do with LCDs. In fact, as with CRTs, phosphors are 
responsible for the creation of light in the shade of the three primary colors—red, green, 
and blue (RGB). In this case, the pixels produce their own light (no backlight is required 
with plasma displays), also a feature shared with CRTs. 


PDPs were superior to LCDs for many years for two reasons. One, they produced smoother- 
flowing images, due to a refresh rate about 10 times higher than LCDs. Two, they had a 
deeper black color. In an LCD, the backlight cannot be completely blocked by the liquid 
crystal, which produces dark hues that are more gray than black. LCDs backlit with LEDs, 
however, are able to dim selective areas or the entire image completely. Because of the 
relative cost-effectiveness to produce PDPs of the same size as a given LCD panel, plasma 
displays historically enjoyed more popularity in the larger-monitor market. That advantage 
is all but gone today, resulting in more LCDs being sold today than plasma displays. 


Organic Light-Emitting Diode Organic light-emitting diode (OLED) displays, unlike 
LED displays, are really the image-producing parts of the display, not just the light source. 
In much the same way as a plasma cell places an excitable material between two electrodes, 
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OLEDs are self-contained cells that use the same principle to create light. An organic light- 
emitting compound forms the heart of the OLED, and it is placed between an anode and 

a cathode, which produce a current that runs through the electroluminescent compound, 
causing it to emit light. An OLED, then, is the combination of the compound and the elec- 
trodes on each side of it. The electrode in the back of the OLED cell is usually opaque, 
allowing a rich black display when the OLED cell is not lit. The front electrode should be 
transparent to allow the emission of light from the OLED. 


If thin-film electrodes and a flexible compound are used to produce the OLEDs, an OLED 
display can be made flexible, allowing it to function in novel applications where other dis- 
play technologies could never work. Because of the thin, lightweight nature of the panels, 
OLED displays can both replace existing heavy full-color LED signs, like the ones you 
might see in Las Vegas or even at your local car dealer’s lot, and carve out new markets, 
such as integration into clothing and multimedia advertisements on the sides of buses to 
replace and improve upon the static ads that are commonly seen. 


Because OLEDs create the image in an OLED display and supply the light source, there 

is no need for a backlight with its additional power and space requirements, unlike in the 
case of LCD panels. Additionally, the contrast ratio of OLED displays exceeds that of LCD 
panels, regardless of backlight source. This means that in darker surroundings, OLED dis- 
plays produce better images than do LCD panels. The power to drive an OLED display is, 
on average, less than that required for LCDs. Generally speaking, OLED monitors are the 
highest-quality monitors you will find on the market today. 


Adjusting Display Settings 

Although most monitors are automatically detected by the operating system and configured 
for the best quality that they and the graphics adapter support, sometimes manually chang- 
ing display settings, such as for a new monitor or when adding a new adapter, becomes nec- 
essary. Let’s start by defining a few important terms: 


= Refresh rate 
a Resolution 
a Multiple displays 


Each of these terms relates to settings available through the operating system by way of 
display-option settings. 


Refresh Rate The refresh rate—technically, the vertical scan frequency—specifies how 
many times in one second the image on the screen can be completely redrawn, if necessary. 
Measured in screen draws per second, or hertz (Hz), the refresh rate indicates how much 
effort is being put into checking for updates to the displayed image. 


For LCD screens, the refresh rate is generally fixed and not an adjustment to be made. LCD 
televisions that support 120 Hz refresh rates are common, but it’s easy to find those rated 
for 60 Hz, 240 Hz, and 480 Hz as well. For computer monitors, you might be able to select 
among multiple refresh rates because you’re in control of the circuitry driving the refresh 
rate, the graphics adapter. 


Higher refresh rates translate to more fluid video motion. Think of the refresh rate as 
how often a check is made to see if each pixel has been altered by the source. If a pixel 
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should change before the next refresh, the monitor is unable to display the change in 
that pixel. Therefore, for gaming and home-theater systems, higher refresh rates are an 
advantage. 


The refresh rate is selected for the monitor. Nevertheless, the refresh rate you select must be 
supported by both your graphics adapter and your monitor because the adapter drives the 
monitor. If a monitor supports only one refresh rate, it does not matter how many different 
rates your adapter supports—without overriding the defaults, you will be able to choose 
only the one common refresh rate. It is important to note that as the resolution you select 
increases, the higher supported refresh rates begin to disappear from the selection menu. If 
you want a higher refresh rate, you might have to compromise by choosing a lower resolu- 
tion. Exercise 3.1 shows you where to change the refresh rate in Windows 10. 


Changing the Refresh Rate in Windows 10 
1. Right-click a blank portion of the Desktop. 
2. Click Display Settings, as shown in Figure 3.29. 


FIGURE 3.29 Display Settings 
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EXERCISE 3.1 (continued) 


3. Click the Advanced Display Settings link, as shown in Figure 3.30. 


You will see the resolution, refresh rate, and other display information. 


FIGURE 3.30 Advanced Display Settings 





Display information 


CI HP 2159 Series Wide 


Display 1: Cone o 





Desktop resolution 

Active signal resolution 
Refresh rate (Hz) 

Bit depth 

Color format 

Color space 

Display adapter properties 





@ Advanced display settings 


LCD Monitor 
NVIDIA GeForce GTX 950 





1920 x 1080 

1920 x 1080 

60 Hz 

8-bit 

RGB 

Standard dynamic range (SDR) 


for Display 1 


Have a question? 


Get help 


Make Windows better 
Give us feedback 








4. Click the Display Adapter Properties for Display 1. 


A window will appear, similar to the one shown in Figure 3.31. 


FIGURE 3.31 
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5. Click the Monitor tab, as shown in Figure 3.32. 
Any available refresh rates will be shown in the Screen Refresh Rate drop-down box. 


6. Select the desired screen refresh rate from the drop-down menu. 


FIGURE 3.32 Monitor tab 
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7. Click OK to accept the changes. 


i There are two things to note: 
TE : soa 
a Your monitor may only support one refresh rate. This is pretty 


common for LCD monitors. 


a Just because a refresh rate appears in the properties dialog box, it 
does not mean that the associated monitor will be able to handle 
that rate. 


Consider keeping the Hide Modes That This Monitor Cannot Display check 
box selected, to avoid choosing a refresh rate not supported by your 
hardware. 
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Resolution Resolution is defined by how many software picture elements (pixels) are used 
to draw the screen. An advantage of higher resolutions is that more information can be 
displayed in the same screen area. A disadvantage is that the same objects and text displayed 
at a higher resolution appear smaller and might be harder to see. Up to a point, the added 
crispness of higher resolutions displayed on high-quality monitors compensates for the 
negative aspects. 


The resolution is described in terms of the visible image’s dimensions, which indicate 
how many rows and columns of pixels are used to draw the screen. For example, a 
resolution of 1920 x 1080 means 1920 pixels across (columns) and 1080 pixels down 
(rows) were used to draw the pixel matrix. The video technology in this example would 
use 1920 x 1080 = 2,073,600 pixels to draw the screen. Resolution is a software setting 
that is common among CRTs, LCDs, and projection systems, as well as other display 
devices. 


Setting the resolution for your monitor is fairly straightforward. If you are using an 
LCD, for best results you should use the monitor’s native resolution, which comes from 
the placement of the transistors in the hardware display matrix of the monitor. For a 
native resolution of 1680 x 1050, for example, there are 1,764,000 transistors (LCDs) 
or cells (PDPs and OLED displays) arranged in a grid of 1680 columns and 1050 rows. 
Trying to display a resolution other than 1680 x 1050 through the operating system 
tends to result in the monitor interpolating the resolution to fit the differing number of 
software pixels to the 1,764,000 transistors, often resulting in a distortion of the image 
on the screen. 


Some systems will scale the image to avoid distortion, but others will try to fill the screen 
with the image, resulting in distortion. On occasion, you might find that increasing the 
resolution beyond the native resolution results in the need to scroll the Desktop in order 

to view other portions of it. In such instances, you cannot see the entire Desktop all at the 
same time. The monitor has the last word in how the signal it receives from the adapter is 
displayed. Adjusting your display settings to those that are recommended for your monitor 
can alleviate this scrolling effect. 


To change the resolution in Windows 10, right-click the Desktop and choose Display 
Settings (like in Exercise 3.1). There is a pull-down menu for resolution. Click it and choose 
the resolution you want, as shown in Figure 3.33. 
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FIGURE 3.33 Adjusting the resolution in Windows 10 
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Some adapters come with their own utilities for changing settings such as the refresh 
rate and resolution. For example, Figure 3.34 shows a screen from the NVIDIA Control 
Panel. On it, you can change both the resolution and the refresh rate. Other settings are 
available using the menu on the left. 
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FIGURE 3.34 The NVIDIA Control Panel 
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Understanding Aspect Ratios 


The term aspect ratio refers to the relationship between the horizontal and vertical 
pixel counts that a monitor can display. For example, old square-ish CRTs were shaped 
to support a display that conformed to 4:3 ratios, such as 800 x 600 or 1024 x 768. If 
you divide the first number by 4 and multiply the result by 3, the product is equal to the 
second number. Additionally, if you divide the first number by the second number, the 
result is approximately 1.3, the same as 4 + 3. Displays with a 16:10 aspect ratio have 
measurements that result in a dividend of 16 + 10 = 1.6. 


When LCD monitors first became popular, they had wider screens and most supported 

a 16:10 ratio. Because the ATSC (Advanced Television Systems Committee) standard for 
widescreen television aspect ratios is 16:9 (1.778), computer monitors are trending more 
toward this same aspect ratio. As a result, the once-popular 1920 x 1200, 16:10 resolution 
is now less common than the 1920 x 1080, 16:9 resolution. If you have a monitor that 
supports one and you try to set it to the other, the image may look squished or stretched, 
or the monitor may not display at all. 
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Multiple Displays Whether regularly or just on occasion, you may find yourself in a position 
where you need to use two monitors on the same computer simultaneously. For example, you 
may need to work in multiple spreadsheets at the same time, and having two monitors makes 

it much easier. Or, if you are giving a presentation and would like to have a presenter’s view on 
your laptop’s LCD but need to project a slide show onto a screen, you might need to connect an 
external projector to the laptop. Simply connecting an external display device does not guar- 
antee that it will be recognized and work automatically. You might need to change the settings 
to recognize the external device, or adjust options such as the resolution or the device’s virtual 
orientation with respect to the built-in display. Exercise 3.2 guides you through this process. 


When you have dual displays, you have the option to extend your Desktop onto a second 
monitor or to clone your Desktop on the second monitor. To change the settings for mul- 
tiple monitors in Windows 10, follow the steps in Exercise 3.2, after ensuring that you have 
a second monitor attached. 


Changing the Settings for Multiple Monitors 
1. Right-click a blank portion of the Desktop. 
2. Click Display Settings to open the Display Settings window. 


If asecond monitor has been detected, you will see a screen similar to the one shown 
in Figure 3.35. Otherwise, you will need to scroll down and click the Detect button in 
the Multiple Displays section. 


FIGURE 3.35 Multiple displays detected 
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EXERCISE 3.2 (continued) 


Notice that the second monitor is highlighted. If you were to change settings such as 
scale, resolution, or orientation, it would affect the monitor that’s highlighted. 


Scroll down in Display Settings. 


Under the Multiple Display settings, you will have options to show an image on only 
one of the monitors, duplicate the displays, or extend the displays. 


Choose Extend These Displays, as shown in Figure 3.36. 


FIGURE 3.36 Extending the displays 
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Scroll back up to the area where you see the two monitors. Click and hold the second 
monitor, and drag it around. 


Notice that you can place it above, below, left, or right of the first monitor. This will 
affect some display features, including where you need to move the mouse cursor to 
get it to appear on the second monitor. 


Move the second monitor to be above the first monitor, and close Display Settings. 
Move your mouse until you get the cursor to appear on the second screen. 


(Optional) Open Display Settings and configure the second monitor to be in the 
position you want it to be relative to the first monitor. 
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Projection Systems 


Another major category of display device is the video projection system, or projector. A 
portable projector can be thought of as a condensed video display with a lighting system 
that projects the image onto a screen or other flat surface for group viewing. Interactive 
white boards have become popular over the past decade to allow presenters to project an 
image onto the board as they use virtual markers to draw electronically on the displayed 
image. Remote participants can see the slide on their system as well as the markups made 
by the presenter. The presenter can see the same markups because the board transmits them 
to the computer to which the projector is attached, causing them to be displayed by the 
projector in real time. 

To accommodate using portable units at variable distances from the projection surface, 
a focusing mechanism is included on the lens. Other adjustments, such as keystone, trap- 
ezoid, and pincushion, are provided through a menu system on many models as well as a 
way to rotate the image 180 degrees for ceiling-mount applications. 


Brightness 


Projection systems are required to produce a lighted image and display it many feet away 
from the system. The inherent challenge to this paradigm is that ambient light tends to 
interfere with the image’s projection. One solution to this problem is to increase the bright- 
ness of the image being projected. This brightness is measured in lumens. A lumen (Im) is 

a unit of measure for the total amount of visible light that the projector gives off, based 
solely on what the human eye can perceive and not on invisible wavelengths. When the 
rated brightness of the projector in lumens is focused on a larger area, the lux—a derivative 
of lumens measuring how much the projector lights up the surface on which it is focused— 
decreases; as you train the projector on a larger surface (farther away), the same lumens 
produce fewer lux. 

The foregoing discussion notwithstanding, projection systems are rated and chosen for 
purchase based on lumens of brightness, usually once a maximum supported resolution has 
been chosen. Sometimes the brightness is even more of a selling point than the maximum 
resolution that the system supports because of the chosen environment in which it oper- 
ates. Therefore, this is the rating that must be used to compare the capabilities of projection 
systems. 

Some loose guidelines can help you choose the right projector for your application. Keep 
in mind that video versus static image projection requires more lumens, and 3D output 
requires roughly double the lumens of 2D projection. Additionally, use of a full-screen (4:3 
aspect ratio) projector system in a business environment versus a widescreen (16:9) home 
theater projector requires approximately double the lumens of output at the low end and 
only 1.3 times at the high end. 

For example, if you are able to completely control the lighting in the room where the 
projection system is used, producing little to no ambient light, a projector producing as 
little as 1,300 lumens is adequate in a home theater environment, while you would need 
one producing around 2,500 lumens in the office. However, if you can only get rid of 
most of the ambient light, such as by closing blinds and dimming overhead lights, the 


174 Chapter 3 = Peripherals and Connectors 


system should be able to produce 1,500 to 3,500 lumens in the home theater and 3,000 
to 4,500 lumens in the office. If you have no control over a very well lit area, you’ll need 
4,000 to 4,500 lumens in the home theater and 5,000 to 6,000 lumens in the business 
setting. These measurements assume a screen size of around 120”, regardless of aspect 
ratio. 

By way of comparison, a 60W standard light bulb produces about 800 lumens. Output 
is not linear, however, because a 100W light bulb produces over double, at 1,700 Im. 
Nevertheless, you couldn’t get away with using a standard 100W incandescent bulb in a 
projector. The color production is not pure enough and constantly changes throughout 
its operation due to deposits of soot from the burning of its tungsten filament during the 
production of light. High-intensity discharge (HID) lamps, like the ones found in projec- 
tion systems, do more with less by using a smaller electrical discharge to produce far more 
visible light. A strong quartz chamber holds the filament in a projector lamp and can be 
seen inside the outer bulb. It contains a metal halide (where the word halogen comes from) 
gas that glows bright white when the tungsten filament lights up. Depositing the soot on 
the inside of the projector bulb is avoided by using a chemical process that attracts the soot 
created back to the filament where it once again becomes part of the filament, extending its 
life and reducing changes in light output. 

Expect to pay considerably more for projector bulbs than for standard bulbs of a compa- 
rable wattage. The metal halide gases used in projector bulbs are more expensive than the 
noble gases used in standard bulbs. Add to that the fact that the bulb itself might have to be 
handmade and you can understand the need for higher cost. 


Cooling Down 


Although it doesn’t take long for the fan to stop running on its own, this is a phase that 
should never be skipped to save time. With projector bulbs being one of the priciest con- 
sumables in the world of technology, doing so may cost you more than a change in your 
travel arrangements. See the sidebar titled “Burning Up” for some perspective. 








H Real World Scenario 
Burning Up 


A fellow instructor carried his own portable projector with him on the road. At the end of 
a week’s class, he would power down the projector and get his laptop and other goodies 
packed away. Just before running out of the door, he would unplug the projector and pack 
it up. As with many instructors, this gentleman’s presentations increased in density and 
length as he became more and more comfortable with the material. 


Over time, his presentation had been running later and later each Friday afternoon, edg- 
ing him ever closer to his airline departure time. He admitted that he had gotten into the 
habit of yanking the power plug for his projector from the wall and quickly stuffing the 
unit into the carrying case before darting out the door. It’s no wonder then that a few 
months after he started this behavior, his projector failed catastrophically. Replacing the 
bulb was not the solution. 
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One caveat with projectors is that you must never pull the electrical plug from the 
outlet until you hear the internal fan cut off. There is enough residual heat generated 
by the projector bulb that damage to the electronics or the bulb itself (discoloration 

or outright failure) can occur if the fan is not allowed to remove enough heat before 

it stops running. Without a connection to an electrical outlet, the fan stops immedi- 
ately. The electronics have the appropriate level of heat shielding that the fan removes 
enough heat during normal operation to avoid damage to the shielded components. 





Webcams 


Years ago, owing to the continued growth in the Internet’s popularity, video camera—only 
devices known as webcams started their climb in popularity. Today, anyone who does a fair 
amount of instant messaging, whether professional or personal, has likely used or at least 
been introduced to webcams, often used in conjunction with messaging user interfaces. 

Webcams make great security devices as well. Users can keep an eye on loved ones or 
property from anywhere that Internet access is available. Care must be taken, however, 
because the security that the webcam is intended to provide can backfire on the user if the 
webcam is not set up properly. Anyone who happens upon the web interface for the device 
can control its actions if there is no authentication enabled. Some webcams provide a light 
that illuminates when someone activates the camera. Nevertheless, it is possible to decouple 
the camera’s operation and that of its light. 

Nearly every laptop produced today has a webcam built into its bezel. An example is 
shown in Figure 3.37—this one has a light and two microphones built in next to it. If a 
system doesn’t have a built-in camera, a webcam connects directly to the computer through 
an I/O interface, typically USB. Webcams that have built-in wired and wireless NIC 
interfaces for direct network attachment are prevalent as well. A webcam does not have any 
self-contained recording mechanism. Its sole purpose is to transfer its captured video directly 
to the host computer, usually for further transfer over the Internet—hence, the term web. 


FIGURE 3.37 An integrated webcam 
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VR Headset 


Virtual reality (VR) is being touted as the next frontier in electronic gaming. To experience 
VR, a user dons a pair of VR goggles or a VR headset, which displays images close to their 
eyes and blocks out all other light. The images create a 3D world that the user can navigate. 
VR headsets got their start in 2012, when the newly formed Oculus company started a 
Kickstarter project to develop the Oculus VR. Early prototypes showed great promise, and in 
2014 Facebook purchased Oculus. The Oculus Rift (shown in Figure 3.38) hit the markets in 
2016 and was popular enough that Oculus had product shortages. Today, several companies 
make VR headsets to compete with Oculus, including Sony, Samsung, Google, and HTC. 


FIGURE 3.38 Oculus Rift 





By Evan-Amos - Own work, public domain, https: //commons.wikimedia. org/w/index.php?curid=62084228 


There are two common types of VR headsets—those that connect to a computer or gam- 
ing system and those that use a smartphone as the screen. Computer-based headsets have 
a fairly high hardware requirement, mostly due to the intensive video processing that takes 
place. For example, the Rift recommends a minimum of an Intel Core i3-6100 or AMD 
Ryzen 3, FX4350 CPU, 8 GB+ RAM, a GeForce GTX 960, HDMI 1.3, one USB 3.0 port, 
two USB 2.0 ports, and Windows 10. The Oculus itself has two OLED displays providing 
1080 x 1200 resolution per eye at a 90 Hz refresh rate and integrated headphones for 3D 
audio. It also has embedded sensors that allow for positional and rotational tracking, which 
can detect the position of a wearer’s head within a millimeter. Nearly all systems also come 
with a handheld game controller, either a proprietary one or something such as an Xbox 
One game controller, to allow users to interact with the game. 

Smartphone-based VR headsets are essentially a head strap with a phone carrier and 
blinders on the sides to block out light. Users snap their phone into the carrier, which they 
place on their head. It provides similar effects to an Oculus, but the quality is generally 
regarded as inferior to PC-based systems. 
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Business applications are being developed for VR as well. For example, store employees 
could use VR to navigate through shelves to learn the layout of a new store, or engineers 
could inspect their designs in three dimensions. Other applications, such as medical and 
other types of hands-on training, are easily within reach. 


Optical Glasses and Headsets 


It’s hard to think of any computer product that has generated more controversy in recent 
years than Google Glass. Some see the glasses-mounted computer as an amazing techno- 
logical step forward, while others view it as a highly intrusive technology that should be 
permanently banned. 

The idea that Google pushed was relatively benign. The company wanted to produce 
a wearable computer that enhanced the user experience without the user having to think 
about the device or become distracted by it. Thus, it created a device that basically has the 
functionality of a smartphone (without the ability to make cellular calls itself) but that 
was small enough to be worn on an eyeglasses frame. Users see an augmented reality (AR) 
projected display a few inches from their face that was equivalent to looking at a 25” screen 
from about 8 feet away. There’s a touch pad on the side of the device that lets users scroll 
through menus and make selections. Other inputs can be made by voice command through 
a microphone or other built-in sensors, such as the accelerometer, gyroscope, magnetom- 
eter, proximity sensor, and ambient light sensor. Oh, and it has a camera mounted on it. 
Yes, it’s the camera that caused the controversy. Figure 3.39 shows Google Glass being 
worn. Google also produced a version that fits onto prescription glasses frames. 


FIGURE 3.39 Google Glass 


(QJ 





“Google Glass detail” by Antonio Zugaldia. Licensed under CC BY 3.0 via Wikimedia Commons— 
https: //commons.wikimedia.org/wiki/File:Google_Glass_detail.jpg 
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Table 3.5 outlines some of the technical specifications of the original Google Glass. 


TABLE 3.5 Original Google Glass specs 





Feature Specification 
Release date To “Glass Explorers” in April 2013 
Weight 1.51 oz 


Operating system Glass OS 


CPU OMAP 4430 Dual Core 

RAM 2 GB 

Storage 16 GB, 12 GB usable 

Display Prism projector at 640 x 360 pixels, which appears the same as a 25” 


screen viewed from 8 feet 
Camera 5MP, 720p HD video 


Connectivity 802.11b/g, Bluetooth, micro-USB 


Many complained that the device, with its mounted camera, is an invasion of privacy. In 
theory, the wearer could take pictures or record video without other people knowing about 
it. (By default, turning on video recording lights up features on Glass, making it pretty 
obvious that the wearer is recording. But non-users don’t necessarily know this, and in the- 
ory an app could be created to disable the lights.) Indeed, an app was created that allowed 
wearers to take pictures by just winking. Several establishments in the United States posted 
signs prohibiting Google Glass from being worn inside, such as restaurants, movie the- 
atres, and casinos. In some countries, the device can be considered illegal spy equipment. 
Apps could be created to identify faces (imagine walking down the street and seeing a total 
stranger, but then seeing their name pop up attached to their Facebook profile) or track fin- 
ger movements to steal passwords or ATM PINs. 

In addition to privacy concerns, there are safety concerns. For example, wearing Google 
Glass while driving an automobile could be considered a safety hazard, much like using 
a smartphone while driving. Another safety concern could be for users, who on occasion 
have reportedly been accosted for wearing the device. With all of the potential ramifica- 
tions, many experts in the tech industry wonder if a product like Glass will ever receive 
mainstream acceptance. 

On the positive side, Glass and similar products may be more accepted for commercial 
applications. For example, surgeons have used it on a limited basis during operations. Glass 
has also been used to help children with autism learn to understand emotions and facial 
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expressions. Finally, commercial delivery drivers, law enforcement personnel, military per- 
sonnel, manufacturing supervisors, and journalists can use it to enhance their effectiveness. 

Google Glass Enterprise Edition 2.0 was released in 2017, intended mostly for business 
applications. While it upgrades the Wi-Fi to support 802.11a/b/g/n/ac and doubles the stor- 
age space to 32 GB, most of the other specifications remain the same as the original. Other 
companies have created similar wearable smart glasses as well, such as EyeTap, Golden-i, 
Microsoft HoloLens, Vuzix, and the Epson Moverio. 


Audio Devices 


Audio devices, true to their name, produce sound by plugging into a sound card. Many 
sound cards today are integrated into a device’s motherboard, but some computers still 
have separate audio expansion cards. Audio devices can provide output, such as through 
speakers or headphones, or input with a microphone. 

Speakers and headphones generally connect with a 1/8” (3.5 mm) audio connector, as 
shown in Figure 3.40. Audio jacks were shown in Figure 3.26. Most audio connectors will 
have two thin black bands engraved on them, which separates the connector into three 
parts: the tip, ring, and sleeve. Because of this, sometimes you will see these connectors 
referred to as TRS connectors. The tip provides left audio; the first band above the black 
groove (the ring) provides right audio; and the sleeve is the ground. You’ll notice that the 
connector in Figure 3.40 has three black bands, providing four connections and making it a 
TRRS connector. The fourth one is for the microphone. 


FIGURE 3.40 1/8” audio connector 





Headsets that provide audio and a microphone are popular for audio conferencing calls 
and video gaming. A sample headset is shown in Figure 3.41. This model connects via 
USB, as do most headsets. Volume controls and a microphone mute are located on the 
right earpiece. 
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FIGURE 3.41 A USB headset 





Although discussed throughout this chapter, the microphone has yet to be formally 
defined, a definition that is at once technical and simple. Microphones convert sound waves 
into varying electrical signals. The result can be recorded, transmitted, or altered in a 
variety of ways, including amplification. 

When installing a microphone, you must match its connector with an available one on 
the computer. Modern choices include the classic analog pink TRS connector and USB. 
Wireless versions also exist, but their receiver might still be connected to a standard I/O 
port. Alternatively, the microphone could be paired with a built-in Bluetooth transceiver, 
headphones, or headset. 

Configuring a microphone on a PC is most often performed through the Recording 
tab of the Sound applet in Control Panel. Options include setting the levels and choosing 
enhancements, such as noise suppression and echo cancellation. Specialized applications 
may also have internal configuration for the microphone, passing most details of the 
configuration back to the operating system. 
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Input and Output Devices 


An input device is one that transfers information from outside the computer system to an 
internal storage location, such as system RAM, video RAM, flash memory, or disk storage. 
Without input devices, computers would be unable to change from their default boot-up 
state. An output device does the opposite of an input device. That is, it takes information 
that’s stored in RAM or another location and spits it back out somewhere for the user to 

do something with it. We’ve already covered monitors, which are the most common output 
device. The other major type of output device is a printer. Further, some devices are capable 
of managing both input and output. 


P Frequently, when discussed together, input and output are abbreviated as I/O. 
‘BQ: 


The following sections detail different classes of input and output devices, including 
a hub of sorts that is used for switching between the most common of these devices. We 
will also demonstrate the similarities shared by these devices as well as their differences. 
Installation considerations will be presented where appropriate. The following devices are 
covered in the subsequent sections: 


= Keyboard 
= Mouse 
= Touch pad 


=a Signature pad 

= Game controller 

= Barcode or QR scanner 
= Magnetic or chip reader 
a NFC/tap pay device 

= Printer 

= Scanner 

a KVM switch 


Keyboard 


The keyboard is easily the most popular input device, so much so that it’s more of a 
necessity. Very few users would even think of beginning a computing session without a 
working keyboard. Fewer still would even know how. The U.S. English keyboard places 
keys in the same orientation as the QWERTY typewriter keyboards, which were developed 
in the 1860s. Wired keyboards are almost always attached via USB. Wireless keyboards 
will often have a USB dongle that is attached to the computer but can also use Bluetooth. 
In addition to the standard QWERTY layout, modern computer keyboards often have 
separate cursor-movement and numerical keypads. The numerical keys in a row above 
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the alphabet keys send scan codes to the computer that are different from those sent by 

the numerical keypad. At the discretion of the programmer, any given application might 
require the use of only one of the two sets of numeric keys or allow the use of either. The 
IBM PC/AT keyboard had only 84 keys, lacking separate cursor-movement keys. These 
functions were superimposed on the numeric keypad only. The Num Lock key had to be 
toggled to switch between cursor movement and the numeric keypad. The 101-key key- 
board did include these separate keys but still kept the Num Lock arrangement as well, and 
the popular 104-key Windows keyboard added Windows-specific keys to those 101 keys. 

Keyboards have also added function keys (not to be confused with the common laptop 
key labeled Fn), which are often placed in a row across the top of the keyboard above the 
numerical row. Key functionality can be modified by using one or more combinations of 
the Ctrl, Alt, Shift, and laptop Fn keys along with the normal QWERTY keys. 

Technically speaking, the keys on a keyboard complete individual circuits when each 
one is pressed. The completion of each circuit leads to a unique scan code that is sent to the 
keyboard connector on the computer system. The computer uses a keyboard controller chip 
or function to interpret the code as the corresponding key sequence. The computer then 
decides what action to take based on the key sequence and what it means to the computer 
and the active application, including simply displaying the character printed on the key. 

In addition to the layout for a standard keyboard, other keyboard layouts exist—some 
not nearly as popular, however. For example, without changing the order of the keys, 
an ergonomic keyboard is designed to feel more comfortable to users as they type. The 
typical human’s hands do not rest with the fingers straight down. Ergonomic keyboards, 
therefore, should not place keys flat and along the same plane. To accomplish that goal, 
manufacturers split the keyboard down the middle, angling keys on each side downward 
from the center. Doing so fits the keys to the fingers of the hands when they are in a relaxed 
state. Figure 3.42 shows an example of an ergonomic keyboard. 


FIGURE 3.42 An ergonomic keyboard 
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The Dvorak Simplified Keyboard, patented in 1936, was designed to reduce fatigue 
in the hands of typists by placing characters that are more commonly used in the home 
row, among other physiologic enhancements. The standard QWERTY layout was 
designed to keep the hammers of a typewriter from becoming entangled, but typewriters 
are essentially obsolete. Although the Dvorak keyboard makes logical sense, especially 
in light of the historic decline in manufacturing and sales of the classic typewriter, the 
QWERTY keyboard remains dominant. One reason why the Dvorak keyboard has failed 
to take over might be the loss of productivity to a touch-typist as they retrain on the 
new format. 


Mouse 


Although the computer mouse was born in the 1970s at Xerox’s Palo Alto Research 
Center (PARC), it was in 1984 that Apple made the mouse an integral part of the personal 
computer with the introduction of the Macintosh. In its most basic form, the mouse is a 
hand-fitting device that uses some form of motion-detection mechanism to translate its 
own physical two-dimensional movement into onscreen cursor motion. Many variations of 
the mouse exist, including trackballs, tablets, touch pads, and pointing sticks. Figure 3.43 
illustrates the most recognizable form of the mouse. 


FIGURE 3.43 Acomputer mouse 
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The motion-detection mechanism of the original Apple mouse was a simple ball that 
protruded from the bottom of the device so that when the bottom was placed against a flat 
surface that offered a slight amount of friction, the mouse would glide over the surface but 
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the ball would roll, actuating two rollers that mapped the linear movement to a Cartesian 
plane and transmitted the results to the software interface. This method of motion detec- 
tion remains available today, although it’s fairly unpopular. 

Later technologies used optical receptors to catch LED light reflected from specially 
made surfaces purchased with the devices and used like a mouse pad. A mouse pad is a 
special surface that improves mechanical mouse traction while offering very little resis- 
tance to the mouse itself. As optical science advanced for the mouse, lasers were used to 
allow a sharper image to be captured by the mouse, providing more sensitivity in motion 
detection. Certain surfaces don’t lend themselves well to standard laser-mouse func- 
tionality, but a higher resolution version exists that can even track across the surface of 
glass. The mouse today can be wired to the computer system or connected wirelessly. 
A wired mouse typically uses a USB port, which also provides power. Wireless ver- 
sions will have a USB dongle or connect via Bluetooth. They are powered with batter- 
ies, and the optical varieties deplete these batteries more quickly than their mechanical 
counterparts. 

The final topic is one that is relevant for any mouse: buttons. The number of buttons 
that you need your mouse to have is dependent on the software interfaces you use. For the 
Macintosh, one button has always been sufficient, but for a Windows-based computer, at 
least two are recommended—hence, the term right-click. Today, the mouse is commonly 
found to have a wheel on top to aid in scrolling and other specialty movement. The wheel 
has even developed a click in many models, sort of an additional button underneath the 
wheel. Buttons on the side of the mouse that can be programmed for whatever the user 
desires are more common today as well and can alarm the unsuspecting user the first time 
they grab such a mouse the wrong way. 

There are several variants on pointer devices, such as trackballs. A trackball is like an 
inverted mouse. Both devices place the buttons on the top, which is where your fingers 
will be. A mouse places its tracking mechanism on the bottom, requiring that you move 
the entire assembly as an analogue for how you want the cursor on the screen to move. In 
contrast, a trackball places the tracking mechanism, usually a ball that is about one inch 
in diameter, on the top with the buttons. You then have a device that need not be moved 
around on the desktop and can work in tight spaces and on surfaces that would be incom- 
patible with the use of a mouse. The better trackballs place the ball and buttons in such a 
configuration that your hand rests ergonomically on the device, allowing effortless control 
of the onscreen cursor. 


Touch Pad 


Most modern laptops have a built-in pointing device that can take the place of a mouse. 
Touch pads are flat panels, which are most often positioned in the same plane as the key- 
board—between the spacebar and the user—often with buttons that supply the left- and 
right-clicks of the mouse. The user controls the onscreen pointer by tracing its path on the 
surface of the touch pad, some of which include a tactile click feature that takes the place 
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of the left-button click. Some touch pads also dedicate an edge to the right-click function. 
Figure 3.44 shows a laptop touch pad with three buttons. 


FIGURE 3.44 A laptop touch pad 





Touch pads can be purchased as separate external devices for use with any computer 
that has an available port, often USB. These work with laptops and desktops alike. 
Regardless of the details surrounding the touch pad, Windows offers one or more 
tabs dedicated to the touch pad in the Mouse applet in Control Panel for use in 
configuring the various settings for it. Tabs added by the manufacturer of the hardware 
often include advanced configuration options, including those related to multitouch 
and motions. We will explore touch pad configuration options in Chapter 10, 
“Understanding Laptops.” 


Signature Pad 


At many medical offices, grocery stores, and other places of business, customers will be 
asked to sign receipts or documents. While some will have people sign a real piece of paper, 
many businesses are moving to the use of electronic signature pads. 

A signature pad uses very similar technology to a touch pad, in that contact on a flat 
surface is translated into electrical signals, which are sent to the processor. Signature pads 
often make use of a stylus, which is a pen-like device. Others can simply track the pattern 
of a signer’s finger. Generally speaking, the stylus-based models produce a more accurate 
representation of a person’s signature. If you’ve ever tried signing a signature pad with your 
index finger, it probably looked nothing like your normal signature. An example of a stylus- 
based signature pad is shown in Figure 3.45. 
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FIGURE 3.45 A Topaz Systems signature pad 





Picture courtesy of TopazSystems.com 


Signature pads often attach via USB or through an Ethernet cable, although some 
serial port models exist. Wireless models may support Bluetooth or Wi-Fi network 
connections. 


Game Controller 


As long as there have been gaming applications for the personal computer, there have 
been standard and specialty controllers for some of those games. For the rest, the key- 
board and mouse could be or had to be used for controlling the game. Two popular types 
of controllers have been the generic joystick, a controller with one or more buttons and 

a stick of varying length and girth, and the often-proprietary game controller. If you’ve 
played with a gaming console such as an Xbox, PlayStation, or Wii, you are familiar with 
the latter. They usually have function and directional buttons specific to the gaming con- 
sole in use, and more recently contain motion sensors. Through the years, standardized 
PC connections have included the DA15 game port, also known as the joystick port, the 
RS-232 port, and the USB port. Figure 3.46 shows a wired joystick (called a Nunchuk, in 
Wii parlance) connected through the wireless controller for the Nintendo Wii video game 
console. 
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FIGURE 3.46 A proprietary (Nintendo Wii) gamepad 
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Barcode or OR Scanner 


A barcode scanner (or barcode reader) is a specialized input device commonly used in retail 
and other industrial sectors that manage inventory. The systems to which the reader con- 
nects can be so specialized that they have no other input device. Barcode readers can use 
LEDs or lasers as light sources and can scan one- or two-dimensional barcodes. Barcodes 
encode simple information—strings of numbers or letters—based on line widths. 








Using a Barcode Reader in the VoIP Industry 


The VoIP industry relies on barcode readers to quickly scan in the MAC addresses of 
hundreds or thousands of desk sets from labels on their neatly stacked boxes before their 
deployment. Depending on the brand of equipment, the MAC addresses might be read 

in to populate a spreadsheet that is later used as input to the call management system 
during the identification of which directory numbers will be assigned to which physical 
devices. The same job done by hand could have untold issues caused by user error. 
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Barcode readers can connect to the host system in a number of ways, but serial 
connections, such as USB, are fairly common. If the system uses proprietary software 
to receive the reader’s input, the connection between the two might be proprietary as 
well. Classic software interfaces called for the reader to be plugged into the keyboard’s 
PS/2 connector using a splitter, or “wedge,” which allows the keyboard to remain 
connected. The scanner converts all output to keyboard scans so that the system 
treats the input as though it came from a keyboard. For certain readers, wireless 
communication with the host is also possible, using infrared, radio frequency (RF), 
Bluetooth, or Wi-Fi. 

With today’s smartphone technology being what it is, the built-in cameras can act 
as scanners, and the scanning app can interpret what the camera sees. In this way, 
Universal Product Code (UPC) barcodes, Quick Response (QR) codes, and other 2D 
matrix barcodes can be input and processed. The smartphone can then use its Internet 
access to launch the application associated with the text, such as a web browser or an 
email client. A QR code is an encoded image that allows the scanning application to 
decode large amounts of text. It can be used to represent simple text or popular strings, 
such as a website’s URL, a phone number, a GEO location, an email address, or an SMS 
message. Figure 3.47 is a simple QR code that will direct a QR-code reader app to the 
www.wiley.com website. 


FIGURE 3.47 AOR code 
flu. 


Magnetic or Chip Reader 


Magnetic stripes on plastic cards such as credit cards have been around for decades. More 
recently, credit card producers have been including an integrated circuit chip (ICC) in the 
cards as well, both as a security precaution and a convenience mechanism. These chips 
contain a combination of RAM, ROM, PROM, and a 16-bit CPU. 

Most retailers will have a magnetic reader or chip reader to make it easy for their 
shoppers to complete credit- or debit-based transactions. A card with an ICC is shown in 
Figure 3.48. If you’ve ever paid for anything with a credit or debit card, then you will be 
familiar with a magnetic reader or a chip reader. The only confusing part is knowing if you 
need to slide or insert the card, based on what the retailer requires. Readers are also made 
for smartphones and tablets, allowing commerce to happen anywhere a cellular connection 
can be made. 
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FIGURE 3.48 Aplastic card with an ICC 





Plastic cards with embedded chips can store more than financial information. They 
can store things such as an employee ID, which a computer system can link back to 
security permissions, or other employee information. Often you will hear these cards 
referred to as smart cards. As more and more organizations discover the value in mul- 
tifactor authentication for access to their computing assets, smart card readers have 
become indispensable as an instrument of the “something you have” principle. For quite 
some time, the United States government and its military forces have relied on common 
access cards (CACs), which serve as visual identification cards as well as chip-based 
smart cards. 

Businesses may validate employees by using a smart card reader, which is essentially the 
same machine that you will see in a retail environment. It attaches to the system internally 
or externally by USB or sometimes through a dedicated adapter. The reader provides power 
for the chip that is embedded in the smart card. 
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The chip on a smart card may contain one or more public key infrastructure (PKI) cer- 
tificates. Smart card readers used by the United States Department of Defense are able to 
access the CAC’s ICC in order to use an identification certificate in the chip to verify the 
identity of the bearer. A PIN, however, may still be required to establish two-factor authen- 
tication. In other uses, card readers access digital-signature and encryption certificates 
to establish nonrepudiation and confidentiality for a user during electronic exchanges of 
information. 


NFC/Tap Pay Device 


At some point, someone decided that having to swipe or insert a credit card to buy some- 
thing was way too much work. Why couldn’t people just wave their payment method in the 
general vicinity of the retailer to complete the transaction? This is where NFC and tap pay 
devices come into play. They are natural extensions of the smart cards discussed in the pre- 
vious section. 

A tap pay device works on the concept of near field communication (NFC). The embed- 
ded chip in the card is activated by a radio frequency signal when it comes within a certain 
distance of the reader—the maximum range is usually about 3”. Depending on the imple- 
mentation, the user may need to actually tap their card to the reader, or they may be able to 
just get it within range. The activated chip transmits the credit card number to the reader, 
which is connected to the retailer’s point of sale terminal to complete the transaction. 

This makes completing transactions faster than swiping or inserting a card. To improve 
security, some transactions require the user to enter a preset PIN. Also note that some 
countries limit the amount that can be spent using a tap pay or NFC device. 

The other thing that this technology enables is the payment with smartphones. No 
longer do shoppers have to carry around a credit card! Apple Pay and Google Pay both 
allow users to enter credit card information into their phones, and then use the phone to 
pay at an NFC or tap pay terminal. Most of the time, authorization is required using the 
touch sensor on the phone to validate a fingerprint. 


Printer 


Often immediately behind your monitor in output-device importance, the one or more 
printers that you have attached to your computer become invaluable when you need to 
produce a hard copy for distribution or for inclusion in a report, for instance. Chapter 5, 
“Installing and Configuring Printers,” details the various printer families, such as impact, 
thermal, inkjet, and laser, as well as the details involved in their installation, including 
connectivity and driver installation. 


Scanner 


One of the earliest input devices aside from the keyboard and mouse was the scanner. 
Today, it’s somewhat unusual to find a stand-alone scanner. Most are integrated into a mul- 
tifunctional printer or copy machine. Like printers, scanners use USB, Wi-Fi, or Bluetooth 
to connect. 
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Scanners use light to reflect off of a surface and measure the relative reflections of the 
different dots that make up the grid that the scanner is able to detect. The tighter the grid 
(the more dots per inch [DPI] supported), the higher the resolution of the resulting image. 
Charge-coupled devices (CCDs) are a common choice in today’s scanners. CCDs convert 
the light they receive into electrical impulses, which are then forwarded to the software 
producing the scan for further processing into an image that is a facsimile of the original 
object being scanned. 

A flatbed scanner evokes the concept of a copier with the paper handling and 
printing mechanisms missing. This image is not far off, which is why copiers make 
wonderful scanners, as long as they can produce a digital image file. It’s also why 
multifunction devices are so prolific; it takes very little to outfit a printer with a 
scanner component to be used for input to the computer and as a fax-scanning device. 
Inbound faxes can be printed, or the same digital interface that the scanner uses can be 
used to transfer the image electronically to software in the computer. Figure 3.49 shows 
the top flatbed scanner portion of a laser multifunction device that provides a way to 
print, scan, and fax. 


FIGURE 3.49 A flatbed scanner 





Many multifunctional printer/scanner combinations designed for the workplace have 
an automatic document feeder (ADF) attached to the top. This allows a user to place 
several sheets of paper in the ADF and have them all copied or scanned at the same 
time. Contrast this with a flatbed scanner, which can scan only one piece of paper at a 
time. 

Figure 3.50 shows one of numerous brands of portable document scanners. These handy 
little devices are scarcely more than a foot long and can make short work of scanning 
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anything from a business card to a gas receipt to an 8.5” x 11” lodging folio. The associated 
software that comes with these scanners performs optical character recognition (OCR), 
and it can recognize the orientation of the text and glean pertinent information from the 
documents scanned to populate the internal database. From this database, you can produce 
reports for such purposes as expenses, invoicing, and taxes. This model also offers the 
option to create a PDF during the scan instead. 


FIGURE 3.50 A portable document scanner 





KVM Switch 


A KVM switch isn’t an input or output device, per se, but it allows you to switch 
between sets of input and output devices. The KVM switch is named after the devices 
among which it allows you to switch. The initials stand for keyboard, video, and 
mouse. KVM switches come in a variety of models, with different connector types 
available. 

The purpose of the switch is to allow you to have multiple computers attached to the 
same keyboard, monitor, and mouse. You can use these three devices with only one sys- 
tem at a time. Some switches have a dial that you turn to select which system attaches to 
the components, while others feature buttons for each system connected. Common uses 
of KVM switches include using the same components alternately for a desktop computer 
and a laptop docking station or having a server room with multiple servers but no need to 
interface with them simultaneously. 

Figure 3.51 shows an older, four-system VGA/USB switch with analog audio 
switching as well. If DVI or other attachments are desired, adapters are required. The 
buttons on the front (right side of the image) switch the common console connections 
among the four systems, only three of which are currently attached. A maximum of one 


Understanding Uses of Peripheral Devices 193 


of the four LEDs beside the corresponding buttons is lit at a time—only for the system 
currently in control. 


FIGURE 3.51 A KVM switch 





Storage Devices 


We’ve already spent quite a lot of time in this book discussing storage options, such 
as optical drives and hard drives. These devices are frequently internal to the case, but 
external options are available as well. 

Take optical drives, for instance. In order to save space on smaller laptops, 
manufacturers are removing optical drives. If users want to play a Blu-ray or DVD 
movie, they will need to attach an external optical drive. External optical drives can be 
used for data backups as well. These external drives will most likely connect via USB or 
eSATA. 

External storage drives can greatly enhance the storage capacity of a computer, or they 
can provide networked storage for several users. A plethora of options is available, from 
single drives to multi-drive systems with several terabytes of capacity. Figure 3.52 shows an 
external network-attached storage (NAS) device. 
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FIGURE 3.52 A network-attached storage device 





“NETGEAR ReadyNAS NV+” by PJ - Own work. Licensed under CC BY-SA 3.0 via Wikimedia Commons 


Looking at Figure 3.52, you can see that this is a self-enclosed unit that can hold up to 
four hard drives. Some hold more; some hold less. Nicer NAS systems enable you to hot- 
swap hard drives and have built-in fault tolerance as well. 

In addition to the hardware, the NAS device contains its own operating system, mean- 
ing that it acts like its own file server. In most cases, you can plug it in, do some very minor 
configuration, and have instant storage space on your network. As far as connectivity goes, 
NAS systems will connect to a PC through a USB or eSATA port, but that is primarily so 
you can use that PC to run the configuration software for the NAS. The NAS also connects 
to the network, and that is how all of the network users access the storage space. 


Summary 


In this chapter, you learned about various cable and connection types, and the pur- 
poses and uses of peripheral types. First, you learned about video cables and connector 
types. Topics included the analog VGA standard, as well as the digital standards HDMI, 
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mini-HDMI, DisplayPort, and DVI. Then, hard drive connections and cables related to 
SATA, IDE (PATA), and SCSI were covered. Multipurpose cables are used for a variety of 
peripheral types and include the common USB, Lightning, and Thunderbolt connectors. 
Finally, you learned about other cable and connector types, such as serial, FireWire, audio/ 
video, and PS/2. 

The second section in the chapter focused on peripheral types. We broke them into four 
categories: video, audio, input/output, and storage. Video peripherals include monitors, 
projectors, webcams, VR headsets, and optical glasses, such as Google Glass. There aren’t 
many audio connectors, but most use the TRS connector you learned about. Input and 
output devices were the biggest category, covering keyboards, mice, touch pads, signature 
pads, game controllers, smart card readers, NFC/tap pay devices, printers, scanners, and 
KVM switches. Finally, the chapter ended with a quick reminder that storage devices and 
optical drives can be external, and an example of an external network-attached storage 
(NAS) device. 


Exam Essentials 


Recognize and understand different peripheral connectors and converters. Expansion cards 
and motherboards have external connectivity interfaces. The interfaces have connectors that 
adhere to some sort of standard for interconnecting with a cable or external device. Knowing 
these specific characteristics can help you differentiate among the capabilities of the interfaces 
available to you. Understanding when to use an adapter to convert one connector to another 
is crucial to achieving connectivity among differing interfaces. Adapters you should know are 
DVI to HDMI, USB to Ethernet, and DVI to VGA. 


Recognize and be able to describe display connectors specifically. Although a type of 
peripheral connector, display connectors are in a class all their own. Technologies continue 
to be developed to merge display and other peripheral functions, such as serial I/O, but the 
differences among the various display interfaces are substantial enough for these connectors 
to warrant their own category. Types include VGA, HDMI, mini- HDMI, DisplayPort, and 
the various versions of DVI. 


Know the characteristics of cables used for peripheral attachment. Whether the 
connection is internal or external to the computer system, each cable used has specific 
characteristics, no matter their resemblance to others. Some cables that look similar to 
others support higher speeds or longer distances. Some have power components, while 
others are completely passive in nature. Knowing the specific cables that go along with the 
expansion cards and their interfaces is extremely valuable and important. 


Recognize and understand the purpose of hard drive cables. The connectors you should 
recognize are SATA, IDE (PATA), and SCSI. They each connect hard drives or optical 
drives. 


Know the various multipurpose cables and their connectors. Multipurpose cables 
include USB, Lightning, and Thunderbolt. USB has the largest variety of connectors, 
including USB-A and USB-B and their mini- and micro- versions, as well as the newer 
USB-C. USB cables also can have proprietary connectors, such as Apple’s Lightning 
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connector. Thunderbolt can use a proprietary connector or USB-C. Other connectors to 
know are DB-9, SCSI, eSATA, and Molex. 


Understand the purpose and use of video peripherals. Video peripherals are used to get 
video into or out of a computer. The most common video device is a monitor. Projectors 
also output video. Webcams provide video input. Newer inventions include virtual reality 
(VR) headsets and augmented reality (AR) optical headsets. 


Understand the purpose and use of audio peripherals. Audio peripherals are used to 
produce or input sound. Examples include speakers and headsets, and microphones for 
input. 


Know what various input/output devices are used for. Be familiar with the basics such 
as keyboards and mice. Also know the purposes for touch pads, signature pads, game 
controllers, barcode and QR code scanners, magnetic strip and chip readers (including 
smart card readers), and NFC/tap pay devices. Finally, be familiar with printers, scanners, 
and KVM switches. 


Understand external storage options. External storage options include hard drives 
and optical drives, such as Blue-ray and DVD drives. Hard drives can be single drives 
or configured in a combined set, such as an external network-attached storage (NAS) 
appliance. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. 


Which of the following have been common methods to backlight an LCD monitor? 
(Choose two.) 


A. RGB OLEDs 
LEDs 
Incandescent bulbs 
Halogen bulbs 


Fluorescent bulbs 


moo sf 


You are attaching an external hard drive to a computer with USB 2.0 ports. The user is 
concerned about data transfer speed. What is the maximum speed of USB 2.0? 


A. 480 Mbps 


B. 5 Gbps 
C. 10 Gbps 
D. 20 Gbps 


You are installing peripherals on a new computer. Which of the following devices provides 
both input and output? 


A. Webcam 

B. Projector 

C. Touch screen 

D. KVM switch 

You are installing a replacement monitor on a desktop computer. Which of the following is 
true regarding a monitor’s refresh rate? 


A. As long as the graphics adapter can refresh the image at a particular rate, the attached 
monitor can accommodate that refresh rate. 


B. The refresh rate is normally expressed in MHz. 


C. The refresh rate is normally selected by using the controls on the front panel of the 
monitor. 


D. As you lower the resolution, the maximum refresh rate allowed tends to increase. 


Which of the following connector types is typically not associated with hard drive use? 
A. USB-C 


B. eSATA 
C. DB-9 
D. SCSI 
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10. 


11. 
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You are interested in purchasing a new monitor and notice the contrast ratio specification. 
What does that refer to? 


A. The ratio of luminance between the darkest and lightest colors that can be displayed 
B. A term that was used with LCDs but is not a valid specification for OLEDs 

C. The ratio of luminance between two adjacent pixels 

D. A feature that changes based on the resolution setting 

You are installing a new video card that has an HDMI port. Which of the following is true 
about HDMI cables? (Choose all that apply.) 

A. They can transmit analog or digital signals. 

B. They can transmit audio as well as video. 

C. They are not used to connect to projectors. 

D. They can use HDMI or mini- HDMI connectors. 


Which of the following display interfaces is equivalent to DisplayPort with PCIe added in? 
A. Thunderbolt 


B. HDMI 
Cc. DVI 
D. VGA 


What is the single, fixed resolution of an LCD called? 
Default resolution 
Refresh rate 


A 

B 

C. Burned-in resolution 
D. Native resolution 

E 


Aspect ratio 
How do you connect a DVI-A interface on a peripheral to a DVI-D interface on the 
computer? 
A. With a DVI-I cable 


B. With a cable that is terminated on one end with a DVI-A connector and on the other 
end with a DVD-D connector 


C. You wouldn’t interconnect those two interfaces. 

D. With a standard DVI cable 

What kind of peripheral is used to read credit cards to initiate financial transactions? 
(Choose all that apply.) 

A. Barcode reader 

B. Signature pad 

C. Magnetic reader 

D. Chip reader 


12. 


13. 


14. 


15. 


16. 


17. 
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Why might you use a KVM switch? 
A. You have multiple Ethernet devices that need to communicate with one another. 
B. You need to be able to switch the voltage supplied to a particular device. 


C. You have a printer that is not attached to the network but you want multiple computers 
to be able to print to it. 


D. You have more than one server and don’t want to buy certain external peripherals 
separately for each. 

Which of the following connector types are capable of conducting power and transmitting 

data? (Choose all that apply.) 

A. Lightning 

Molex 

USB-C 

DB-9 

micro-USB 


moo wf 


You want to enhance your display capabilities. Which of the following is possible to do 
with multi-monitor settings? 


A. Connect multiple monitors to your computer only by using a graphics adapter with two 
video interfaces. 


B. Cause two different Desktops to merge onto the same monitor. 
C. Connect two laptops together so they display the same Desktop. 
D. Display different parts of your Desktop on different monitors. 


Which of the following is not an example of a connector for a standard peripheral input 
device? 


A. 1/8” jack 
B. Molex 
C. D-sub 

D. USB 


When purchasing a projector, which of the following is the most important characteristic to 
consider? 


A. Aspect ratio 

B. Maximum resolution 

C. Lumens 

D. Native resolution 

A user with an iPhone 7 needs to charge her device and asks you to bring a cable. Which of 
the following connector types should you ensure that the cable has? 

A. Thunderbolt 


B. Lightning 
C. USB-C 
D. Micro-USB 
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18. Which of the following resolutions is an example of a 16:10 aspect ratio? 
A. 1280 x 1024 
B. 1920 x 1200 
C. 800 x 600 
D. 2048 x 1536 


19. What type of pointing device features a ball and buttons on the top and a flat, steady sur- 
face on the bottom? 


A. Mouse 

B. Touch pad 
C. Trackball 
D. Track pad 


20. VGA cables use what type of signal between the adapter and monitor? 
A. Digital 
B. Analog 
C. Composite 
D. 


Compressed 
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Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answers compare to the authors’, refer 
to Appendix B. 


Looking at the back of a computer, you see the interfaces shown in the following 
graphic. Which type of cables do you need to plug into each one? 
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Custom PC 
Configurations 





THE FOLLOWING COMPTIA A+ 220-1001 
OBJECTIVES ARE COVERED INTHIS 
CHAPTER: 


Z 3.8 Given a scenario, select and configure appropriate 
components for a custom PC configuration to meet 
customer specifications or needs. 


a Graphic / CAD / CAM design workstation 
a SSD 
= High-end video 
a Maximum RAM 
a Audio/Video editing workstation 
= Specialized audio and video card 
= Large, fast hard drive 
a Dual monitors 
a Virtualization workstation 
a Maximum RAM and CPU cores 
a Gaming PC 
a SSD 
= High-end video/specialized GPU 
a High-definition sound card 
= High-end cooling 
a Standard thick client 
a Desktop applications 


a Meets recommended requirements for selected OS 





= Thin client 
a Basic applications 
= Meets minimum requirements for selected OS 
a Network connectivity 
a Network attached storage device 
= Media streaming 
= File sharing 
= Gigabit NIC 
= RAID array 


= Hard drive 


y 3.9 Given a scenario, install and configure common 
devices. 


= Desktop 
= Thin client 
a Thick client 


= Account setup/settings 





Not all computers are right for every situation. There are small 
Chromebooks that are ideal for portability and web brows- 
BEL: ing, but they would fail miserably when used for mathematical 
modeling of complex systems. Supercomputers that are up to the modeling task would have 
to be completely disassembled to be transported anywhere, and they would probably break 
the bank for most home users. While these are extreme examples, dozens more exist that 
shine a light on the need for custom configurations to perform specific jobs. 

This chapter introduces you to some of the custom configurations, which have become 
so popular that they are tantamount to standards, enough so that they can be discussed in 
a finite way. Because of the situations in which you might find yourself, such concepts have 
become requisite knowledge for the A+ certified technician. For example, you might be 
given a list of requirements from a client and need to translate that into the optimal system 
for their needs. Or the A+ exam might give you a scenario with specifications, and you'll 
need to determine the best answer. The following specialized systems are covered in this 
chapter: 





= Standard thick clients 

= Graphic and CAD/CAM design workstations 
a Audio/video editing workstations 

= Virtualization workstations 

= Gaming PCs 

a Thin clients 


a Network-attached storage devices 


Exploring Custom Configurations 


As much as computer systems have become specialized, their core components don’t dif- 
fer dramatically in functionality from one type of system to the next. For example, a hard 
drive is designed to store files, regardless of whether it’s a small one in a tablet or if it’s 

in a gigantic and super-fast audio/video editing workstation. Because of this, you might 
feel like this chapter talks about much of the same hardware over and over, but that is by 
design. Many hardware components are in multiple configurations; the size and speed of 
those components may differ among custom configuration types. Software is much the 
same; an operating system provides an interface between other software applications and 
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the hardware, regardless of the device on which is it running. Other types of hardware and 
software are so specialized that they only apply to a single custom configuration from the 
previous list. The following types of hardware (and software) are discussed in the sections 
to come: 


= CPU enhancements 

= Video enhancements 

a Maximized RAM 

= Specialized audio 

= Specialized drives 

a NIC enhancements 

= Additional specialized devices or software 
= Enhanced cooling 
a Special chassis 


= Application specifics 


P On the A+ exam, you may be given a scenario and asked to choose the 
‘GQ right PC configuration to meet customer needs. Each of the next seven 
sections on different configurations gives you the information needed to 
choose the right configuration based on a given scenario. For example, 
if given a scenario where the user will be designing magazines, they will 
need a graphic or CAD/CAM workstation. Or, if the user wants to store all 
of the family’s important files in a central location for all family members 
to access, they might consider a network-attached storage device. 


Standard Thick Clients 


A standard thick client is not really a custom configuration; it’s the standard configuration 
on which custom configurations are based. In other words, a thick client is a standard client 
computer system. For most end-user scenarios, this is the type of client they need, unless 
they are performing specialized duties requiring extra hardware or software. 

As a typical client computer, it must meet the recommended requirements for the 
selected operating system as well as be able to run standard desktop applications, such as a 
productivity suite like Microsoft Office. Because it’s a client, however, the ability to attach 
to a network and accept a configuration that attaches it to one or more servers is implied. 
Although most computers today exhibit such capabilities, they cannot be assumed. 

Each operating system requires a minimum set of hardware features to support its 
installation. Each additional desktop application installed requires its own set of features 
concurrent with, or on top of, those required for the operating system. For example, 64-bit 
versions of the Windows 10 operating system require 2 GB of RAM for installation and 
20 GB of hard drive space. If you buy an application that also requires 2 GB of RAM, you 
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don’t need to install 4 GB total—the app can share RAM with the OS, although neither 
may run as fast as you’d want them to. (More RAM is almost always a good thing!) When 
it comes to hard drive space, though, it will most certainly require enough additional hard- 
drive space to store its related files. 

Keep in mind that minimum specifications are just that—the minimum. All operating 
systems—Windows, macOS, Linux, and others—have published minimum specifications, 
but also higher recommended specifications. It’s in your best interest to even go beyond 
those, if possible. 

With any client computer, you will need to set up user accounts and any customized 
settings the user requires. Configuring user accounts is an objective in the CompTIA 
A+ 220-1002 exam, so we’ll cover how to do that in Chapter 16, “Operating System 
Administration.” For now, know that each user that will operate that computer will need 
their own user account. Every user account has its own settings, so the environment can be 
tailored toward the individual as needed. Multiple people could use the same username and 
password to log in, but that reduces individualization and creates security risks that you 
probably don’t want to deal with. 


Graphic and CAD/CAM Design Workstations 


Some users will be designers of graphical content, such as posters, advertisements, maga- 
zines, product packaging, and other graphic media. Others will be engineers or architects 
designing homes or commercial buildings. 

Computers used by graphic design artists must process a constant flow of colors and 
detailed shapes, the combination of which can put a strain on the disk subsystem, RAM, 
and video components. 

CAD/CAM systems can carry the designer’s vision from conception to design in a 
100-percent digital setting. Three-dimensional drawings are also common with this tech- 
nology. These designs drive or aid in the production of 3D models. Such systems have been 
used for decades by professionals in the architecture, surveying, and engineering fields, as 
well as by design engineers in manufacturing firms. 

The output of computer numerical control (CNC) systems used in the manufacturing 
process following the use of CAD/CAM workstations in the design phase is far different 
from displays on monitors or printouts. CNC systems take a set of coded instructions and 
render them into machine or tool movements. The result is often a programmable cutting 
away of parts of the raw material to produce a finished product. Examples are automotive 
parts, such as metallic engine parts or wheel rims, crowns and other dental structures, and 
works of art from various materials. 

When faced with a scenario in which these types of users need a workstation, know that 
the systems used in the design of graphical content need a particular emphasis placed on 
the following three areas: 


= Solid-state hard drives 
a Video enhancements 
a Maximized RAM 
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Solid-State Hard Drives 


The files that are generated on graphic design and CAD/CAM systems are often quite large, 
and the users will often be saving and loading these files. For this reason, solid-state drives 
(SSDs) are recommended. They possess much faster read and write times than conventional 
magnetic drives. Traditional drives might slow down the designer due to long file save or 
load times. 


Video Enhancements 


Possibly an obvious requirement for such systems, graphics adapters with better graphics 
processing units (GPUs) and additional RAM on board have the capability to keep up with 
the demand of graphic design applications. Such applications place an unacceptable load 
on the CPU and system RAM when specialized processors and adequate RAM are not 
present on the graphics adapter. The video system is an area in which the best technology 
(that is within the budget) should be purchased. Table 4.1 compares a typical video card to 
a high-end one, and Figure 4.1 shows the face plate of the EVGA GeForce GTX 1070 Ti 
video card. 


Throughout this chapter we will show comparisons of hardware to dem- 
i onstrate the differences between common hardware that you might find 

in a typical thick client and hardware found in higher-end configurations. 

We do this knowing that the minute we write down specs, newer and faster 

hardware will become available and prices will drop. That’s just the nature 

of computer hardware. So, we ask that you take these comparisons for 

what they are—illustrations of a concept—and not at literal face value or 

an endorsement of specific products. If you need to configure a custom 

system, it should give you an idea of what to look for when researching 

hardware. 


TABLE 4.1 Video card comparison 





Specification Typical Video Card High-End Video Card 
Name AMD Radeon HD 5040 EVGA GeForce GTX 1070 Ti 
Slot PCle x16 Dual-slot PCle x16 
Standard PCle 2.1 PCle 3.0 


Memory 1 GB DDR3 8 GB GDDR5 
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Specification Typical Video Card High-End Video Card 
Memory speed 900 MHz 8008 MHz 

Interfaces VGA, DVI, HDMI DVI-I, HDMI, 3x DisplayPort 
Maximum displays 1 4 

Maximum digital resolution 2560 x 1600 7680 x 4320 

Price $40 $500 


FIGURE 4.1 EVGA GeForce GTX 1070 Ti interfaces 


of 


oat. ae) 
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EP Table 4.1 references GDDR5 memory. The acronym stands for “graphics 
‘gr double data rate,” which is memory specifically designed for video cards. 
Although there are some minor technical differences between GDDR5 and 
DDR5, you don’t need to worry about them for the A+ exam (or in real life, 
for that matter, unless you design video cards). 


You may also want to consider multiple PCIe x16 video adapters, which can power sepa- 
rate video displays or be bridged together to form one functional unit. Examples of this 
technology are NVIDIA’s Scalable Link Interface (SLI) and AMD’s CrossFire. Remember 
that the motherboard and applications must fully support these technologies for them to 
work properly. 


Maximized RAM 


Although such systems take advantage of enhanced video subsystems, all applications 
still require CPUs to process their instructions and RAM to hold these instructions 
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during processing. Graphics applications tend to be particularly CPU and RAM hungry. 
Maximizing the amount of RAM that can be accessed by the CPU and operating system 
will result in better overall performance by graphic design workstations. 

The cost of RAM is among the most volatile of computer components. So much depends 
on the configuration, speed, and brand. And like everything else in computing, the cost 
drops dramatically over time. As an example, in 1994, the cost of RAM was about $100 
per megabyte. As of the time of writing this chapter, a quick survey online shows that 
RAM goes for about $100-$125 per 8 GB. Also factor in the cost of a motherboard. 
Motherboards that support more RAM are likely to be more expensive than those that sup- 
port less RAM. 


P Before upgrading your RAM, always check to see which type of RAM is 
A: compatible with the motherboard, how many slots are available, and how 
the slots work together. For example, if there is an open slot, you might be 
able to upgrade the total system RAM by just adding a new stick; in some 
cases, the new RAM must be exactly the same type as the existing RAM 
for them to work together. In other cases, you might need to remove the 
old RAM and replace it with new RAM. Check your documentation! 


Audio/Video Editing Workstations 


Professionals who edit multimedia material require workstations that excel in three areas: 
a Video enhancements 

= Specialized audio 

= Specialized hard drives 


The following sections assume the use of nonlinear editing (NLE) schemes for video. 
NLE differs from linear editing by storing the video to be edited on a local drive instead 
of editing being performed in real time as the source video is fed into the computer. NLE 
requires workstations with much higher RAM capacity and disk space than does linear 
editing. Although maximizing RAM is a benefit to these systems, doing so is considered 
secondary to the three areas of enhancement mentioned in the preceding list. 


Video Enhancements 


Although a high-performance video subsystem is a benefit for computer systems used by 
audio/video (A/V) editors, it is not the most important video enhancement for such sys- 
tems. Audio/video editing workstations benefit most from a graphics adapter with multiple 
video interfaces that can be used simultaneously. These adapters are not rare, but it is still 
possible to find high-end adapters with only one interface, which are not ideal for A/V edit- 
ing systems. 

Having dual monitors is a must. When editing multimedia content, or even generalized 
documents, it is imperative that editors have multiple views of the same or similar files. The 
editor of such material often needs to view different parts of the same file. Additionally, 
many A/V editing software suites allow, and often encourage or require, the editor to use 
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multiple utilities simultaneously. For example, in video editing, many packages optimize 
their desktop arrangement when multiple monitors are detected, allowing less horizontal 
scrolling through the timelines used to control the master editing file. The ability to extend 
the desktop across multiple monitors is valuable in such situations. 

To improve video-editing performance, insist on a graphics adapter that supports 
NVIDIA’s Compute Unified Device Architecture (CUDA) or OpenCL. CUDA is a parallel 
computing architecture for breaking down larger processing tasks into smaller tasks and 
processing them simultaneously on a GPU. Open Computing Language (OpenCL) is a simi- 
lar cross-platform open standard maintained by the Khronos Group. Programmers can spec- 
ify high-level function calls in a programming language with which they are more familiar 
instead of writing specific instructions for the microcode of the processor at hand. The over- 
all performance increase of macro-style application programming interfaces (APIs) like these 
is an advantage of the technologies as well. The rendering of 2D and 3D graphics occurs 
much more quickly and in a more fluid manner with one of these technologies. CUDA is 
optimized for NVIDIA GPUs, while OpenCL is less specific, more universal, and perhaps, 
as a result, less ideal when used with the same NVIDIA GPUs that CUDA supports. 

Furthermore, depending on the visual quality of the content being edited, the profession- 
al’s workstation might require a graphics adapter and monitor capable of higher resolution 
than is readily available in the consumer marketplace. If the accuracy of what the editor 
sees on the monitor must be as true to life as possible, a specialty monitor might be the best 
choice for the project. Such monitors are expensive—they can easily be ten times the price 
of a standard monitor—but they provide the best resolution and color representation when 
compared to other high-quality monitors available today. 


Specialized Audio 


The most basic audio controllers in today’s computer systems are not very different from 
those in the original sound cards from the 1980s. They still use an analog codec with a 
simple two-channel arrangement. Editors of audio information who are expected to per- 
form quality work often require six to eight channels of audio. Many of today’s mother- 
boards come equipped with 5.1 or 7.1 analog or digital audio. 

Although analog audio is not entirely incompatible with quality work, digital audio is 
preferred. In some cases, an add-on adapter supporting such audio might be required to 
support an A/V editing workstation. Very good quality sound cards can be found for under 
$100, compared with cheaper models around $20—there isn’t a huge difference in price 
like there is with CPUs and video cards. Look for a card with a higher sampling rate (mea- 
sured in kilohertz [kHz]) and higher signal-to-noise ratio (measured in decibels [dB]). 


Integrated motherboard audio will typically have about a 90 kHz sampling 

A OTE rate and an 85-90 dB signal-to-noise ratio (SNR or S/N). A good add-on 
sound card can provide sampling of 190 kHz or more and an SNR of 115 dB 
or higher. The difference is noticeable, especially in professional produc- 
tions, which may be played at loud volumes. 
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In addition to audio output, many A/V editors will require the ability to input custom 
music from an electronic musical keyboard or other device. A term you will hear in rela- 
tion to this is the musical instrument digital interface (MIDI) standard. Old sound cards 
would sometimes have a MIDI port, which was used to connect the musical keyboard or 
other instrument to the computer. MIDI ports use the round 5-pin DIN connection shown 
in Figure 4.2. Some sound cards may have a DA-15 connection, which can be used for a 
MIDI device as well (or a joystick). Figure 4.3 shows a DA-15 port next to a few 1/8” audio 
jacks on a sound card. Nowadays, digital musical instrument connections are often made 
via USB. Nonetheless, you will still see the term MIDI-compatible used with a lot of digital 
musical devices. 


FIGURE 4.2 5-pin MIDI ports and a cable 





By :en:Pretzelpaws. Image: Midi_ports_and_cable.jpg, CC BY-SA 3.0, https: //commons.wikimedia.org/w/ 
index. php?curid=142551 


FIGURE 4.3 Sound card with a DA-15 MIDI port 
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Specialized Hard Drives 


Graphics editing workstations and other systems running drive-intensive NLE software 
benefit from uncoupling the drive that contains the operating system and applications from 
the one that houses the media files. This greatly reduces the need for multitasking by a single 
drive. With the data drive as the input source for video encoding, consider using a third drive 
as the output destination during the encoding. If not, use the system drive for encoding out- 
put. Just remember to move the resulting files to the data drive once the encoding is complete. 


The system drive is the hard drive that contains operating system files. A 

A OTE data drive can be a separate hard drive that just stores data, and not oper- 
ating system files. Data and system drives can be the same drive, or they 
can be split apart for better performance. 


Not only should you use separate drives for system and data files, you should also make 
sure that the data drive is large and fast. SATA 6 Gbps drives that spin at 7,200 rpm and 
faster are recommended for these applications. SSDs can also be considered because they’re 
very fast, but their biggest limitation for A/V editing is lack of size. Table 4.2 shows a 
comparison of five different internal hard drive options. 


TABLE 4.2 Hard drive comparison 





Standard 

Specification HDD Large HDD Standard SSD Large SSD Fast SSD 

Type 3.5” SATA 3.5”SATAHDD 2.5” SATA SSD 2.5” SATA SSD NVMe M.2 SSD 
HDD 

Capacity 1 TB 8 TB 256 GB 2 TB 1 TB 

RPM 7,200 rpm 7,200 rpm — — — 

Cost $100 $500 $100-$120 $400-$500 $450 


Editors cannot afford delays and the non-real-time video playback caused by buffer- 
ing due to inefficient hard-drive subsystems. If you decide to use an external hard drive, 
whether for convenience or portability, or because of the fact that an extremely powerful 
laptop is being used as an A/V editing workstation, use an eSATA connection when pos- 
sible. Doing so ensures that there will be no loss in performance over internal SATA drives 
due to conversion delays or slower interfaces, such as USB 2.0. 


PP For external hard drives, Thunderbolt and USB 3.1/3.2 devices can be used 
PN too, as they provide similar performance to eSATA. 
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If you cannot find a drive that has the capacity you require, you should consider imple- 
menting RAID 0, disk striping without parity. Doing so has two advantages: You can 
pay less for the total space you end up with, and RAID 0 improves read and write speeds 
because multiple drives are active simultaneously. If you would also like to add fault toler- 
ance and prevent data loss, go with RAID 5, which has much of the read/write benefit of 
RAID 0 with the added assurance that losing a single drive won’t result in data loss. RAID 
should be implemented in hardware when possible to avoid overtaxing the operating sys- 
tem, which has to implement or help implement software RAID itself. 


Virtualization Workstations 


Hardware virtualization is the core technology that enables cloud computing. Entire com- 
panies exist to provide software and algorithms of varying effectiveness for the purpose of 
minimizing the hardware footprint required to implement multiple servers and worksta- 
tions. Although virtualization as a technology subculture is discussed in greater detail later 
in this book, in this chapter we will investigate the unique requirements for the workstation 
that will host the guest operating systems and their applications. (Virtualization is dis- 
cussed in depth in Chapter 9, “Network Services, Virtualization and Cloud Computing.”) 

A typical use case for a virtualization workstation might exist in a software development 
environment. Developers might need to ensure that their programs work on different oper- 
ating systems, and virtualization allows them to do that with one physical computer. 

Without getting into too much detail, virtualization allows for multiple guest OSs to run 
on the same computer at the same time, along with a host OS. Each virtual machine (VM) 
running on a host system appears to come along with its own resources. A quick look in 
the Device Manager utility of a guest operating system leads you to believe it has its own 
components and does not require or interfere with any resources on the host. This is not 
entirely true, however. The following list includes some of the more important components 
that are shared by the host and all guest operating systems: 


=» CPU cycles 

= System memory 

= Drive storage space 

a System-wide network bandwidth 


Because of these requirements, virtualization workstations must exceed the specifica- 
tions of standard workstations in two primary areas: 


= CPU enhancements 
a Maximized RAM 


Depending on the specific guest systems and processes that the workstation will host, 
it may be necessary to increase the hard drive capacity of the workstation and possibly the 
number and speed of network cards as well. Because this is only a possibility, increased 
drive or network capacity is not considered a primary enhancement for virtualization 
workstations. 
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CPU Enhancements 


Sometimes it’s a matter of how powerful a computer’s CPU is. At other times, having mul- 
tiple lesser CPUs that can work independently on a number of separate tasks is more impor- 
tant. Many of today’s PCs have either of these characteristics or a combination of both. 
Nevertheless, there are enough computers being produced that have neither. As a result, it is 
necessary to gauge the purpose of the machine when choosing the CPU profile of a computer. 
The best type of CPU for virtualization workstations is a multicore processor. This 
is because, with multiple cores, each core can execute instructions independently, which 
greatly speeds up the system’s performance. With today’s technology, a quad-core proces- 
sor should be considered at a minimum. If the user has extremely high needs, then a 16- or 
18-core processor might be better, but also consider that these CPUs will be incredibly 
expensive by comparison. 


When selecting a multicore processor, the amount of cache is also a very 

A OTE important consideration. Each core should have a sufficient amount of L1 
and L2 cache dedicated to it, and L3 cache will be shared among them. A 
16-core processor with 40 MB of cache will greatly outperform a 16-core 
processor with only a 16 MB cache. 


Also remember from Chapter 1, “Motherboards, Processors, and Memory,” that some 
processors have the ability to support hyperthreading, or multiple threads at once. An 
Intel Core i7 with four cores can support eight threads, whereas a quad-core Intel Core 
iS can support only four threads. This could make a sizeable difference in performance 
for processor-intensive applications. Table 4.3 shows a comparison of a relatively average 
processor to a high-end model. 


TABLE 4.3 CPU comparison 





Specification Typical CPU High-End CPU 

Type Intel Core i5-6400 Intel Core i9-7980XE 
Cores 4 18 

Threads 4 36 

Base speed 2.7 GHz 2.6 GHz 

Max turbo speed 3.3 GHz 4.2 GHz 

Cache 6 MB 24.75 MB 
Supported RAM DDR4-2133/1866 DDR4-2666 

Price $200 $2000 
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Because the physical host’s processor is shared by all operating systems running, virtual 
or not, it behooves you to implement virtual machines on a host with as many CPUs or 
CPU cores as possible. In virtualization, each core in a multicore processor can be con- 
sidered its own individual processor and therefore assigned duties separately by the VMs 
running on them. Consequently, the more CPUs you can install in a workstation, each with 
as many cores as possible, the more dedicated CPU cycles you can assign to each virtual 
machine. 


Maximized RAM 


As you create a virtual machine, even before a guest operating system is installed in the 
VM, you must decide how much RAM the guest system will require. The same minimum 
requirements for installing an operating system on a conventional machine apply to the 
installation of that operating system on a virtual machine. 

The RAM you dedicate to that VM is not used until the VM is booted. Once it is 
booted, though, that RAM is typically unavailable to the host operating system. As a 
result, you must ensure that the virtualization workstation is equipped with enough RAM 
to handle its own needs as well as those of all guests that could run simultaneously. As with 
a conventional system running a single operating system at a time, you generally want to 
supply each VM with additional RAM to keep it humming along nicely. 

This cumulative RAM must be accounted for in the physical configuration of the 
virtualization workstation. In most cases, this will result in maximizing the amount of 
RAM installed in the computer. The maximum installed RAM hinges on three primary 
constraints: 


a The CPU’s address-bus width 
= The operating system’s maximum supported RAM 
= The motherboard’s maximum supported RAM 

The smallest of these constraints dictates the maximum RAM you will be able to use 
in the workstation. Attention to each of these limitations should be exercised in the selec- 
tion of the workstation to be used to host guest operating systems and their applications. 


Considering the limitations of operating systems leads to preferring the use of server ver- 
sions over client versions and the use of x64 (64-bit) versions over x86 (32-bit) versions. 








Gp Real World Scenario 
What's It Going to Take? 


The folks at a medium-sized organization decided to try their hand at virtualization 
because the IT manager heard that they could save money on future infrastructure and 
“go green” at the same time. They already had all the server operating systems they 
needed; they were currently installed on separate machines. The manager envisioned 
removing the KVM switch and having a single machine in the server room. 
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The technician in charge did almost everything right. He chose the company’s most pow- 
erful server and created five virtual machines. The hard drive was large enough that there 
was plenty of room for the host operating system and the five VMs. The technician knew 
the minimum requirements for running each of the operating systems and made sure that 
each VM was configured with plenty of RAM. The quad-core CPU installed in the server 
was more than powerful enough to handle each operating system. 


After a combination of clean installations and image transfers into the VMs, the server 
was ready to test. The host booted and ran beautifully, as always. The first VM was 
started and was found to be accessible over the network. It served client requests and 
created a barely noticeable draw on performance. It was the second VM that sparked the 
realization that the manager and technician missed a crucial point. The processor and the 
RAM settings for each individual VM were sufficient for the host and at most one VM, but 
when any second VM was added to the mix, the combined drain on the CPU and RAM 
was untenable. “What’s it going to take to be able to run these servers simultaneously?” 
the technician wondered. 


The solution was to replace the server motherboard with a model that supported a 16-core 
Intel i9 Extreme Edition processor and to maximize the RAM based on what the new moth- 
erboard supported. The result was an impressive system with five virtual servers, each of 
which displayed impressive performance statistics. Before long, the expense of the server 
was returned in power savings. Eventually, additional savings will be realized when the 
original physical hardware for the five servers would have had to be replaced. 





Gaming PCs 


Early video games designed for the PC market were able to run on the average end user’s 
computer system. As is true with all software, there is a push/pull relationship between 
PC-based games and the hardware they run on. Over time, the hardware improved and 
challenged the producers of gaming software. Inspired by the possibilities, the program- 
mers pushed the limits of the hardware, encouraging hardware engineers to create more 
room for software growth. Today’s advanced PC-based gaming software cannot be 
expected to run on an average system. Specialized gaming PCs, computers optimized for 
running modern video games, fill a niche in the marketplace, leading to a continually grow- 
ing segment of the personal-computer market. 


P Keep in mind that when we are talking about gaming systems, we're not 
A: talking about solitaire or free Internet games. Nearly every computer can 
do that. The games to which we're referring are the high-end, multiplayer 
games, such as the Call of Duty series, Final Fantasy, World of Warcraft, 
and several others. In many newer games, the video quality is practically 
cinema-like. Of course, this list will change over time as these titles age 
and new ones take their place. 
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Gaming enthusiasts often turn to specialized game consoles for the best performance, 
but with the right specifications, a personal computer can give modern consoles a run 
for their money, possibly even eclipsing their performance. If you encounter a scenario in 
which you need to build a gaming PC that will light up the eyes of the most difficult-to- 
please gamer, four areas of enhancement must be considered: 


a Hard drive enhancements 
a Video enhancements 
=a Specialized audio 


= Enhanced cooling 


Hard Drive Enhancements 


As we have stated before, SSDs are faster than conventional hard drives at reading and 
writing data. In gaming, speed is often life, and in many instances the system will be using 
virtual memory in addition to the physical memory in the computer. Virtual memory is 
hard drive space used as temporary memory, so transfers into and out of this space need to 
be as fast as possible. Therefore, SSDs are the way to go for gaming systems. 


Po Not only are SSDs faster than HDDs, they run cooler as well. This is impor- 

JTE tant for a gaming computer, which will likely have other high-end compo- 
nents that run hot and require extra cooling. An SSD won't add too much 
to the excess heat issues that gaming systems can have. 


Video Enhancements 


Video games have evolved from text-based and simple two-dimensional graphics-based 
applications into highly complex software that requires everything from real-time high- 
resolution, high-definition rendering to three-dimensional modeling. Technologies like 
NVIDIA’s SLI and ATI’s CrossFire are extremely beneficial for such graphics-intensive 
applications. (SLI was discussed in Chapter 1.) The best video connection is also needed, so 
go with a video card that supports the latest version of HDMI. 

No longer can gaming software rely mostly on the system’s CPU to process its code and 
deliver the end result to the graphics adapter for output to the monitor. Video cards for 
gaming systems essentially require their own dedicated graphics processing unit (GPU). No 
longer can this software store a screen or two at a time in the graphics adapter’s memory, 
allowing for video adapters with only a few hundred MB of RAM. Today’s gaming appli- 
cations can be resource-hungry powerhouses capable of displaying fluid video at 40-60 
frames per second. To keep up with such demands, the RAM installed on relatively decent 
graphics adapters has breached the 4 GB mark, a capacity not long ago reserved for pri- 
mary system memory. In fact, if users want to spend thousands of dollars on a video card, 
they could get one with 12 GB or 16 GB RAM as well. 

In the same way that CUDA- and OpenCL-capable GPUs benefit workstations used 
for video editing, these same standards are indispensable in the world of modern gaming 
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software. Not all GPUs support these standards; thus, another selling point emerges for 
high-end graphics adapters. 

Of course, all the internal system enhancements in the world are for naught if the moni- 
tor you choose cannot keep up with the speed of the adapter or its resolutions and 3D 
capability. Quite a bit of care must be exercised when comparison-shopping for an adequate 
gaming monitor. 


Specialized Audio 


Today’s video games continue the genre of interactive multimedia spectacles. Not only 

can your video work in both directions, using cameras to record the image or motion of 

the player, your audio can as well. It’s exceedingly common to find a gamer shouting into 

a microphone boom on a headset as they guide their character through the virtual world 

of high-definition video and high-definition digital audio. A lesser audio controller is not 
acceptable in today’s PC gaming world. Technologies such as S/PDIF and HDMI produce 
high-quality, high-definition digital audio for the gaming enthusiast. Of course, HDMI pro- 
vides for state-of-the-art digital video as well. 


Enhanced Cooling 


As mentioned earlier, the practices of speed junkies, such as modern PC gamers, can lead 
to a processor’s early demise. Although a shorter lifespan for an overclocked CPU isn’t a 
given, operators of such systems use standard and experimental cooling methods to reduce 
the self-destructive effects of the increased heat output from the CPU. Refer back to the 
section “CPU Cooling” in Chapter 1 for more information on cooling techniques that give 
overclocked CPUs a fighting chance. 

Standard case fans can be very inexpensive—you can get them for around $5 without 
much of a search, and high-end fans are around $50. Low-end liquid cooling systems start 
off around $50 and can easily run $400 or more. A liquid cooling system is also larger than 
a standard fan, so be sure that the case has enough room to accommodate it, if that’s the 
route you choose. 

Today’s high-end graphics adapters come equipped with their own cooling mechanisms 
designed to keep them properly cooled under even extreme circumstances. Nevertheless, the 
use of high-end adapters in advanced ways leads to additional concerns. Graphics adapt- 
ers that rob a second slot for their cooling mechanism to have space to exhaust heated air 
through the backplane might be unwelcome in a smaller chassis that has only a single slot 
to spare. Also, the gaming-PC builder’s decision to include two or more ganged adapt- 
ers (video cards that are two expansion slots wide and take up two expansion slots but 
attached together as one unit) in one system (SLI or CrossFire) challenges the engineered 
cooling circuit. When many large adapters are placed in the path of cooler air brought in 
through one end of the chassis for the purpose of replacing the warmer internal air of the 
chassis, the overall ambient internal temperature increases. 

Figure 4.4 shows the inside of an NVIDIA gaming computer that has a liquid cooling 
system in it. In Exercise 4.1, you will go shopping for a gaming system. 
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FIGURE 4.4 Gaming system with liquid cooling 





Shopping for a Gaming System 


1. Go to your favorite electronics store website. 
If you are unfamiliar with one, try www. bestbuy.com or www. frys.com. 
2. Look at the selection of most popular desktop PCs, and note the price range. 
3. Look for a gaming PC for under $1000. 
What is the best configuration you can get? 
4. Now look for the best gaming computer offered. 


How much is the price difference? What are the specifications versus the less expensive 
system? 
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Thin Clients 


In situations where an enterprise is interested in saving copious amounts in infrastructure 
cost, thin clients can be used to achieve their goal. A thin client is any machine that divests 
itself of all or most local storage and varying levels of RAM and processing power without 
necessarily giving up all ability to process instructions and data. In the extreme, a thin cli- 
ent resembles a dumb terminal, which only displays output to the monitor and relays input 
from the mouse and keyboard back to the server. The primary difference between these 
ultra-thin clients and dumb terminals is that thin clients feature a true network connection 
and contain enough intelligence to locate the server before turning over processing control. 

The ramification of having clients with low processing and storage capabilities is that 
there must be one or more servers with increased corresponding capacities. Unfortunately, 
this leads to a single or centralized point of failure in the infrastructure that can impact 
productivity to an unacceptable level. Thin clients have no offline capability, requiring con- 
stant network connectivity. Workforces that require employees to be independent or mobile 
with their computing power lean away from thin clients as well, opting for laptops and 
similar technology. 

Some thin clients will have local storage and be capable of running basic applications, 
which are executed locally. These types of systems must, of course, be able to accommodate 
the storage and processing needs of those applications and an operating system. Thin cli- 
ent OSs can be very simple and designed specifically for a thin client, such as Thinstation, 
Windows Internet of Things (IoT, formerly Windows Embedded Standard), and Lenovo 
Terminal Operating System (LeTOS), or they can be more robust, such as full versions of 
Windows. Simple thin client designs featuring flash-based storage and small quantities of 
small form factor RAM exist, reducing the need for such systems to resemble thick clients 
at all. 


Network-Attached Storage Devices 


You may encounter a scenario where you (or a client) want to have files accessible across 
a network connection but you don’t want to mess with a server operating system such as 
Windows Server or Linux. A network-attached storage (NAS) device might be the right 
solution. 

Network-attached storage devices are in many ways like a mini-server, except without 
the full server operating system. They provide storage with one or more hard drives, net- 
work access (of course), and in most cases have their own processor, RAM, and operating 
system. Instead of connecting a monitor and keyboard to a NAS, you manage them though 
an interface accessed from another computer on the network. In addition, because their pri- 
mary purpose is to provide easily accessible network storage (they’re really networked hard 
drives), fault tolerance considerations should be entertained. 
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Fault tolerance differs from redundancy in that fault tolerance seeks to 
retain accessibility during the failure, whereas redundancy simply ensures 
recoverability after the failure. Redundancy, in the form of a data backup, 
does not ensure the continued accessibility of the data, but RAID, for 
example, seeks to do so. Even the most basic home system should be 
backed up regularly to avoid total data loss, but most of the time, the 
added expense of fault tolerance isn’t worth it. 


As you might imagine, there are a variety of NAS options on the market (Figure 4.5). 
Entry-level models with two drive bays can be bought for around $150, minus hard 
drives. On the nicer side, Table 4.4 shows some of the key specifications of a QNAP 
TVS-882BRT3 8-bay NAS enclosure. 


FIGURE 4.5 ONAP TVS-882BRT3 8-bay NAS enclosure (or just QNAP 8-bay NAS 


enclosure) 





TABLE 4.4 


Component 
CPU 
RAM 


Flash memory 





QNAP 8-bay NAS specifications 


Specification 
3.6 GHz Intel Core i7-7700 quad-core 
32 GB DDR4 (expandable to 64 GB) 


512 MB 
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Component Specification 

Hard drive trays 8 SATA 6 GB/s 

M.2 slots 2 2242/2260/2280/22110 slots 

Optical drive 1x Blu-ray drive 

Audio 2 microphones in, 2 built-in speakers, 1 3.5mm line out 
Expansion slots 1 PCle 3.0 x8, 2 PCle 3.0 x4 

Ports 4 Thunderbolt, 5 USB 3.0 Type-A, 4 RJ-45, 3 HDMI 
Operating system OTS 4.3 (Linux) 

RAID support RAID 0, 1, 5, 6, 10 

Hot swappable drives Yes 

Data encryption FIPS 140-2 AES 256-bit 


You might look at Table 4.4 and think that it looks pretty much like a high-end com- 
puter, and you are right. While NASs can be built from the same components that go into 
today’s higher-performance systems, they are almost always purchased as pre-built units. 
Attention needs to be paid to certain features, however. The following list outlines the 
specifications a good NAS should provide: 


a Media streaming capabilities 
= File sharing services 

a Gigabit NIC 

a Hard drive enhancements 

= RAID array 


Media Streaming Capabilities 


A popular use for a NAS device is to stream music, photos, and videos to other devices, 
including those that are not PCs. With Windows 7 and newer, you can enable media 
streaming services and configure the computer to stream media. Of course, third-party 
applications and utilities are also a possibility. 

You can prepare a Windows computer to stream media through Windows Media Player 
by accessing the media streaming configuration through the advanced settings of the 
Network and Sharing Center in Control Panel. Exercise 4.2 walks you through the process. 
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Configuring Windows 10 for Media Streaming 


1. Open Control Panel. (Click Start, type Control, and then click Control Panel when it 
appears under Best Match.) 


2. Inthe upper-right corner where it says View By, change it to Small Icons or Large Icons. 
3. Click the Network and Sharing Center applet to open it. 


4. Click the Change Advanced Sharing Settings link in the left frame, as shown in Figure 4.6. 


FIGURE 4.6 Click the Change Advanced Sharing Settings link. 





55 Network and Sharing Center an o x 


$ ~ 4 SE > Control Panel > All Control Panel items > Network and Sharing Center v © Search Control 





View your basic network information and set up connections 
Control Panel Home 


View your active networks 
Change adapter settings 


Change advanced sharing DrNet Access type: Internet 
settings Public network Connections: if Wi-Fi (DrNet) 


Change your networking settings 
Ww Set up a new connection or network 


Set up a broadband, dial-up, or VPN connection; or set up a router or access point. 


= Troubleshoot problems 


Diagnose and repair network problems, or get troubleshooting information. 





Infrared 


Internet Options 
Windows Defender Firewall 











5. Click the arrow to the right of All Networks, as shown in Figure 4.7, to expand that 
configuration section. 
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FIGURE 4.7 Changing sharing options 


6. 
7. 





°@ Advanced sharing settings — o 


€E ~ 4 °& « All Control Panelltems > Network and Sharing Center > Advanced sharing settings w & Search Control Panel 


Change sharing options for different network profiles 


Windows creates a separate network profile for each network you use. You can choose specific options for 


each profile. 


Private 
Guest or Public (current profile) 


All Networks 
Public folder sharing 


When Public folder sharing is on, people on the network, including homegroup members, can 
access files in the Public folders. 


O Turn on sharing so anyone with network access can read and write files in the Public folders 
@ Turn off Public folder sharing (people logged on to this computer can still access these 
folders) 


Media streaming 


When media streaming is on, people and devices on the network can access pictures, music, and 
videos on this computer. This computer can also find media on the network. 


Choose media streaming options... 
File sharing connections 


Windows uses 128-bit encryption to help protect file sharing connections. Some devices don't 
support 128-bit encryption and must use 40- or 56-bit encryption. 


@ Use 128-bit encryption to help protect file sharing connections (recommended) 
O Enable file sharing for devices that use 40- or 56-bit encryption 


Ge] Save changes Cancel 











In the Media Streaming section, click the Choose Media Streaming Options link. 


If media streaming is not turned on, you will need to click the Turn on Media Stream- 


ing box (shown in Figure 4.8) to proceed to step 8. 


FIGURE 4.8 Turning on media streaming 








[E Media streaming options = 


e ~ 4 [F « All Control Panel items > Network and Sharing Center > Media streaming options v Ù Search Control Panel 


Choose media streaming options for computers and devices 


Media streaming is not turned on 


Media streaming allows you to send your music, pictures and videos to other computers and devices 
on your network. It also allows you to receive media from other computers and devices. 


If you turn on media streaming, your current network profile and firewall settings will be modified. 


You should turn on media streaming only on networks that you trust, such as home or work 
networks. 


Turn on media streaming 


Tell me more about media streaming 
Read the privacy statement online 


OK Cancel 
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EXERCISE 4.2 (continued) 


8. Inthe Media Streaming Options dialog, name your media library, and check the 
Allowed box for each computer on the network that you want to be able to stream 
from the local PC. An example is shown in Figure 4.9. 


FIGURE 4.9 Media streaming options 





(F Media streaming options = o x 


e ~ 4 [È « All Control Panelitems > Network and Sharing Center > Media streaming options vou Search Control Panel 2 


Choose media streaming options for computers and devices 














Choose default settings... 


B) Name your media library: | Q 
HN =] 


Show devices on: |Local network ~ Allow All Block All 





. © Media programs on this PC and remote connections... Customize... Allowed A 


WZ Allowed access using default settings. S 








All devices are allowed to access your shared media. 


Choose power options 
Tell me more about media streaming 
Read the privacy statement online 


OK Cancel 











9. Click OK to leave the Media Streaming Options dialog, and then close the Network 
and Sharing Center dialog. 


10. Open Windows Media Player (for example, Start > Windows Media Player) and 
switch to Library mode, if necessary. 


You can do this by using the grid icon with the arrow pointing left in Now Playing 
mode, by pressing the Alt key and choosing View > Library, or by pressing Ctrl+1. 


11. Make sure streaming is enabled by clicking Stream > Turn On Media Streaming. 
This option is hidden if streaming is already on. 
12. Start Windows Media Player on one of the remote systems. 


13. Scroll down, if necessary, in the left frame until you see Other Libraries (as shown at 
the bottom of Figure 4.10). 
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FIGURE 4.10 Windows Media Player 























Windows Media Player - o x 
(JQ * Library > Music > All music Play ya ane 
Organize ¥ Stream v Create playlist v gzz v [Search P ~| @ H Saelst Clear P» a 
# Title Length Rating Contributing artist a 
E) Library a e ere rae REN etda E ee Unsaved list 
E Playlists B.B. King > 
~me 3 Pity The Fool 4:36 Er B.B. King; Buddy Guy 
A Artist 6 There's Something On... 6:02 Wir B.B. King; Etta James i 
© Album 1 The Thrill ls Gone 5:00 WSS B.B. King 
2 : mo 
© Genre 2 How Blue Can You Get? 3:27 RNN B.B. King e Unsaved ket > 
H Videos 3 Every Day | Have The BI 5:05 NN B.B. King 
(SJ Pictures 4 Paying The Cost ToBe... 2:40 Wis B.B. King 
E) Other media 5 Guess Who 5:41 Wests B.B. King Dray Hemabere 
6 Mr. Pawnbroker 3:17 NNN B.B. King to create a playlist 
(P Other Libraries 7 It's My Own Fault Baby 3:36 USUS B.B. King pe 
[P Admin (kdocter-pe) 8 You Done Lost Your Go... 4:44 A B.B. King a 
(P kdocter (kdocter-p;, 9 The Letter 320 erry BB. King from'All music. 
(P Guest (kdocter-pc) 10 Catfish Blues 2:27 Wises B.B. King 
(P Girls (kdocter-pe) 11 That Evil Child 3:55 SISUS B.B. King 
12 Outside Help 6:58 ATATA B.B. King — 
13 Long Nights 3:34 wis B.B. King wh ans 
vo i piss © bbin © —~é $ Updating media library: C:\U... 1> 





14. Expand the remote library that you just shared, and see if you can play music, watch 
videos or recorded TV, or view pictures. 


File and Print Sharing Services 


In addition to the ability to stream files to remote machines, a NAS is expected to allow 
the static transfer of files to or from its hard drive or array. Streaming and file sharing are 
similar concepts, but streaming occurs in one direction from the NAS and does not affect 
the client’s file system. File sharing can go in both directions, and it adds to the client’s file 
system during downloads. The NAS acts as a repository for uploaded files that can then be 
downloaded from any other machine in the home network. 

The difference between a NAS and an enterprise server is that all clients in a home envi- 
ronment tend to have equal access to the data store on the NAS. Enterprise file servers have 
data stores that are isolated from users who do not have permission to access them. Print 
servers in the home and enterprise behave in a similar fashion. Each printer attached to the 
home server should be accessible to anyone on the home network. 

File and print sharing are available through classic file sharing in Windows and other 
operating systems. 
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Gigabit NIC 


The NAS should be attached to a wired switched port in an Ethernet switch or in the wire- 
less access point. The network interface card (NIC) and the switch port should be capable 
of Gigabit Ethernet speeds. Providing such speed ensures that clients using 100 Mbps Fast 
Ethernet ports and across the wireless network will not create a bottleneck in their attempt 
to share the NASs resources. Running client NICs at gigabit speeds should be avoided, even 
though the capability is ubiquitous. Running all devices on the network at gigabit speeds 
guarantees that each device that is attached will attempt to saturate the NASs gigabit inter- 
face with its own traffic. 


Hard Drive Enhancements 


The primary purpose of a NAS device is to store files, and often that means storing a large 
quantity of files. For this reason, you should pay careful attention to the hard drives you 
choose. The priority in this case is for large storage capacity over speed. Therefore, you will 
most likely choose conventional hard drives. There’s nothing wrong with choosing large- 
capacity SSDs if they are in the budget, but don’t sacrifice storage space for speed in a NAS 
system. 


RAID Array 


Because some of the data stored on a NAS represents the only copy, such as data that is 
streamed to all clients or the data included in a crucial backup of client systems, it must 

be protected from accidental loss. Because the data that comprises the streaming content, 
shared data store, and client backup sets can become quite expansive, a large storage capac- 
ity is desirable. Even a recoverable NAS outage results in data that is temporarily unus- 

able by any client, so fault tolerance should be included. RAID provides the answer to all 
these needs. 

When a hardware RAID solution is used in the NAS, the NASs operating system is not 
taxed with the arduous task of managing the array, and additional RAID levels might also 
be available. The RAID array can extend to many terabytes in size, many times the size of 
a single drive, and it should include hot-swappable drives so that it can be rebuilt on-the-fly 
while still servicing client requests during the loss of a single drive. 


Summary 


This chapter introduced you to seven custom configurations. The first is the standard 
thick client, which really isn’t custom but it gives you a base of comparison for other 
types of workstations that you will encounter. Thick clients need to meet recommended 
requirements for the selected OS and support the desktop applications needed by the user. 
When installing a thick client, you will likely need to set up user accounts and configure 
custom settings for the user. The six other systems are graphic and CAD/CAM design 


Exam Essentials 229 


workstations, audio/video editing workstations, virtualization workstations, gaming PCs, 
thin clients, and network-attached storage devices. 

You learned how some of these systems have very specific needs, whereas others share 
common requirements for components not found in a standard desktop system. These 
needs include CPU enhancements, video enhancements, maximized RAM, specialized 
audio, specialized drives, NIC enhancements, enhanced cooling, and specifics related to 
applications. 


Exam Essentials 


Be able to describe graphic and CAD/CAM design workstations and list their components. 
CAD/CAM workstations are designed to create blueprints and advanced designs. These 
workstations require specialized hard drives, high-end video, and maximum RAM to be 
able to provide the performance required to allow efficient graphic design and modeling. 


Be able to describe audio/video editing workstations and list their components. Ifa 

user wants to create high-quality audio or video files, they need an A/V workstation. A/V 
workstations call for specialized audio and video, large and fast hard drives, and multiple 
monitors to allow editors to play back their media smoothly while being able to see all the 
controls of their utilities and applications. 


Be able to describe virtualization workstations and list their components. Some users, 
particularly developers, can benefit from workstations that can host multiple operating sys- 
tems at one time, and virtualization is a technology that enables this. Virtualization work- 
stations need plenty of RAM and CPU cores to share among the guest operating systems 
while still allowing the host to run efficiently and error free. 


Be able to describe gaming PCs and list their components. For hardcore gaming enthusi- 
asts, a gaming PC that makes use of high-performance SSDs and powerful GPUs to deliver 
the ultimate gaming experience is required. Rounding out the experience is awesome sound 
production, which comes at the price of increased heat production due to the faster-running 
components. As a result, enhanced cooling mechanisms must be employed. 


Be able to describe thin clients and list their components. Thin clients are used in situa- 
tions where costs are to be kept to a minimum but users still need to run applications like 
they would on a workstation. Because of this, thin clients should still conform to the mini- 
mum requirements for the selected OS and be able to run basic applications. However, it 
is possible to go a step further and have the server run all software and feed the client no 
more information than a dumb terminal would receive. The primary difference is that it is 
fed over an Ethernet connection instead of a classic serial interface. 


Be able to describe a network-attached storage device and list its components. If multiple 
users on a home or office network need to share files or other resources, a NAS can be ben- 
eficial. A NAS is expected to support media streaming as well as file sharing. To stay ahead 
of the client demand, the NAS should be connected to a Gigabit Ethernet interface. To 
ensure fault tolerance, RAID is recommended. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 
1. You have been asked to set up a workstation for a new graphic designer at your company. 
Which of the following is not a requirement for a graphic design workstation? 
A. Fast hard drive 
B. Maximum RAM 
C. Powerful CPU 
D. High-end video 
2. You have been hired as a consultant for a video editing company that needs all new work- 


stations for its six editors. Which of the following is required when constructing an A/V 
editing workstation? 


A. Gigabit NIC 
B. Powerful processor 
C. Maximum RAM 
D. Fast hard drive 
3. Danielle has been asked to configure virtualization at her company. She recommends that 


her manager buy multicore processors. What justification should she give as to why virtual- 
ization workstations require as many CPU cores as possible? 


A. Each virtual machine has one or more cores installed directly in it. 


B. Each virtual machine makes use of actual CPU resources for processing instructions 
and data. 


C. Fault tolerance dictates that if one CPU core fails, there should be one or more in line 
to take its place. 


D. Because each guest operating system runs in its own space, multiple cores are required 
to store the collective data. 


4. Your friend Joe plays video game tournaments online, and he read in an online forum that 
he should install multiple GPUs for better speed. You tell him that if he does that, he needs 
better cooling. Why is high-end cooling a requirement for gaming PCs? 


A. Multiple GPUs generate more heat and can cause components to fail. 


B. Gaming controllers have components for tactile realism that generate copious amounts 
of heat. 


C. Digital sound cards generate more heat than analog sound cards. 


D. Placing that many hard drives in such a small space generates too much heat. 
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Marcus, a network technician, has been asked to build a virtualization workstation for his 
manager. Which of the following are not common requirements that Marcus should con- 
sider for this custom configuration? (Choose all that apply.) 


A. Surround sound 

B. Maximum RAM 

C. Large, fast hard drives 

D. Multiple CPU cores 

Which type of system simply needs to meet recommended requirements for standard ver- 
sions of operating systems and support desktop applications? 

A. Thin client 

B. Thick client 

C. Network-attached storage device 


D. Virtualization workstation 


Which of the following descriptions most closely matches that of a thin client? 

A. A high-resolution monitor, keyboard, and mouse 

B. A computer with a low-profile case 

C. A laptop 

D. A dumb terminal with a NIC 

You have recently installed a NAS in your home so that all your family members could 


share media. You have a router and network cabling that supports Gigabit Ethernet. Why 
should you equip a NAS with a Gigabit NIC? 


A. All systems, including the NAS, should communicate at the same speed. 


B. The NAS should not be allowed to communicate at the higher speeds of the rest of the 
network or it will be overused. 


C. The NAS should exceed the communication speed of the clients to avoid a bottleneck. 
D. The operating system that a NAS runs is not compatible with Gigabit Ethernet. 
An engineer on your network is complaining that his CAD workstation is slow and he 


wants a GPU upgrade. Which of the following reasons is justification for having a powerful 
video card in a CAD/CAM workstation? 


A. Only powerful GPUs can stream graphical information efficiently. 


B. Manufacturing equipment is generally faster than design equipment, which needs faster 
GPUs to keep up. 


9 


On a CAD system, the CPU defers to the GPU for all system processing requirements. 


D. The algorithms used in rendering graphics can be GPU-intensive. 
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A video editor at your company wants a second monitor, claiming that having only one 
monitor limits her ability to work. Why do A/V editing workstations benefit from more 
than one monitor? 


A. Their software often has enough controls across their width that one monitor seems 
cramped. 


B. While one graphics adapter works on one rendering project, the other can simply dis- 
play a normal desktop. 


C. Once the editing is complete, the second monitor is used to present the results to others 
on the team. 


D. Additional monitors are used for remote collaboration among other editors. 

You are configuring a virtualization workstation for your home use. Which of the following 
is required for your new system? 

A. Multiple host operating systems 

B. Maximum RAM allowed 

C. File sharing services 

D. Multiple NICs 

Robin has been asked to lead training for new technicians at a local PC distributor special- 


izing in gaming PCs. For which one of the following should she not recommend upgraded 
parts? 


A. High-end cooling 

B. ARAID array 

C. High-end video 

D. Better sound card 

Which of the following system types do not require a CPU enhancement of any sort? 
(Choose all that apply.) 

A. A/V editing workstation 

B. Gaming PC 

C. Graphic design workstation 

D. Virtualization workstation 

Maria is setting up a gaming PC and wants to know which type of video cables to purchase. 
Which of the following is the recommended video output technology for a gaming PC? 
A. DVI 


B. VGA 
C. HDMI 
D. YCbCr 


15. 


16. 


17. 


18. 


19. 


20. 


Review Questions 


Which of the following is a common feature of a standard thick client? 


A. 
B. 
C. 
D. 


Has enhanced video capabilities 
Has a high-performance hard drive 
Has as much RAM installed as possible 


Can run a full version of Windows 


Your network uses thin clients. A new technician is amazed that the computers have no 
hard drives and asks, “If the operating system is not resident on the client, where is it 
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found?” 

A. Ona DVD inserted at bootup 

B. Ona USB flash drive 

C. On the server for session-by-session client use 

D. Embedded in a flash module on the motherboard 
Peter is configuring a NAS. Which of the following should be his least-important priority to 
include in his NAS? 

A. File sharing 

B. Maximum RAM 

C. Gigabit NIC 

D. Media streaming 

E. RAID array 


All of the following systems benefit from increased RAM except 





(Choose two.) 


A. 
B. 
C. 
D. 


Network-attached storage device 
Virtualization workstation 
Graphic design workstation 
Gaming PC 


Which of the following uses would not require a custom configuration for a PC? 


A. 


B. 
C. 
D. 


A computer running Windows 10 with 1 TB of data and 250 GB of applications 
installed 


A computer running Windows IoT 
A design computer used to drive a lathe that makes automotive rims 


A computer to replace a Blu-ray player and DVR 


Which of the following system types does not benefit from video enhancements? 


A. 


B. 
C. 
D 


CAD/CAM design workstation 
Network-attached storage device 
A/V editing workstation 
Gaming PC 
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Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answer compares to the authors’, refer 
to Appendix B. 


List the steps required to stream video from one Windows 10 computer to another in the 
same house. Assume that the two computers are members of the same network. 


CompTIA® A+® Complete Study Guide, Fourth Edition 
By Quentin Docter and Jon Buhagiar 
Copyright © 2019 by John Wiley & Sons, Inc. 


Installing and 
Configuring Printers 





THE FOLLOWING COMPTIA A+ 220-1001 
EXAM OBJECTIVES ARE COVERED IN THIS 
CHAPTER: 


vy 3.10 Given a scenario, configure SOHO multifunction 
devices/printers and settings. 


= Use appropriate printer drivers for a given operating system 
= Configuration settings 
= Duplex 
= Collate 
= Orientation 
= Quality 
a Device sharing 
a Wired 
=» USB 
= Serial 
= Ethernet 
a Wireless 
= Bluetooth 
= 802.11(a, b, g, n, ac) 
= Infrastructure vs. ad hoc 


Integrated print server (hardware) 


= Cloud printing/remote printing 
= Public/shared devices 


= Sharing local/networked device via operating system 
settings 


a TCP/Bonjour/AirPrint 





= Data privacy 
=» User authentication on the device 


a Hard drive caching 


Y 3.11 Given a scenario, install and maintain various print 
technologies. 


a Laser 


= Imaging drum, fuser assembly, transfer belt, transfer 
roller, pickup rollers, separate pads, duplexing assembly 


= Imaging process: processing, charging, exposing, 
developing, transferring, fusing, and cleaning 


= Maintenance: Replace toner, apply maintenance kit, 
calibrate, clean 


= Inkjet 


= Ink cartridge, print head, roller, feeder, duplexing 
assembly, carriage, and belt 


= Calibrate 


=» Maintenance: Clean heads, replace cartridges, calibrate, 
clear jams 


a Thermal 
= Feed assembly, heating element 
= Special thermal paper 


=» Maintenance: Replace paper, clean heating element, 
remove debris 


= Impact 
= Print head, ribbon, tractor feed 
= Impact paper 
a Maintenance: Replace ribbon, replace print head, replace 
paper 
a Virtual 
= Print to file 
= Print to PDF 
= Print to XPS 
a Print to image 
a 3D printers 


= Plastic filament 





Let’s face it: No matter how much we try to get away from it, 
our society is dependent on paper. When we conduct business, 
we use different types of paper documents, such as contracts, 
letters, and, of course, money. And because most of those documents are created on comput- 
ers, printers are inherently important. Even with electronic business being the norm in many 
situations, you will likely still have daily situations that require an old-fashioned hard copy 
of something. 

Printers are electromechanical output devices that are used to put information from the 
computer onto paper. They have been around since the introduction of the computer. Other 
than the display monitor, the printer is the most popular peripheral purchased for a com- 
puter because a lot of people want to have paper copies of the documents that they create. 

In this chapter, we will discuss the details of each major type of printing technology, 
including impact printers, inkjet printers, laser printers, thermal printers, and virtual 
printers. We’ll also get into three-dimensional (3D) printers, which are an entirely different 
output animal and have nothing to do with putting ink on paper. They are so different that 
it’s almost a misnomer to call them printers. Unless we specifically talk about 3D printing, 
assume we mean the classic two-dimensional kind. Once we cover the different types, 
we'll talk about installing and configuring printers and finish up with a section on printer 
maintenance. 





Take special note of the section on laser printers. The A+ exams test these 
TE subjects in detail, so we'll cover them in depth. 
PP Printer troubleshooting is covered in Chapter 14, “Hardware and Network 


A: Troubleshooting.” 


Understanding Print Technologies 
and Imaging Processes 


Several types of printers are available on the market today. As with all other computer com- 
ponents, there have been significant advancements in printer technology over the years. Most 
of the time, when faced with the decision of purchasing a printer, you’re going to be weigh- 
ing performance versus cost. Some of the higher-quality technologies, such as color laser 
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printing, are relatively expensive for the home user. Other technologies are less expensive but 
don’t provide the same level of quality. 

In the following sections, you will learn about the various types of print technologies 
that you will see as a technician as well as their basic components and how they function. 
Specifically, we are going to look at five classifications of classic printing: impact, inkjet, 
laser, thermal, and virtual, and then finish up with a primer on 3D printing. 


Impact Printers 


The most basic type of printer is in the category known as an impact printer. Impact print- 
ers, as their name suggests, use some form of impact and an inked printer ribbon to make an 
imprint on the paper. Impact printers also use a paper feed mechanism called a tractor feed 
that requires special paper. Perhaps you’ve seen it before—it’s continuous feed paper with 
holes running down both edges. 

There are two major types of impact printers: daisy-wheel and dot- matrix. Each type 
has its own service and maintenance issues. 


Daisy-Wheel Printers 


The first type of impact printer to know about is the daisy-wheel printer. This is one of the 
oldest printing technologies in use. These impact printers contain a wheel (called the daisy 
wheel because it looks like a daisy) with raised letters and symbols on each “petal” (see 
Figure 5.1). When the printer needs to print a character, it sends a signal to the mechanism 
that contains the wheel. This mechanism is called the print head. The print head rotates the 
daisy wheel until the required character is in place. An electromechanical hammer (called a 
solenoid) then strikes the back of the petal containing the character. The character pushes 
up against an inked ribbon that ultimately strikes the paper, making the impression of the 
requested character. 


FIGURE 5.1 A daisy-wheel printer mechanism 























Printhead 
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Daisy-wheel printers were among the first types of impact printer developed. Their speed 
is rated by the number of characters per second (cps) they can print. The earliest printers 
could print only two to four characters per second. Aside from their poor speed, the main 
disadvantage of this type of printer is that it makes a lot of noise when printing—so much 
so, in fact, that special enclosures were developed to contain the noise. There is also no con- 
cept of using multiple fonts; the font is whatever the character on the wheel looks like. 

The daisy-wheel printer has a few advantages, of course. First, because it is an impact 
printer, you can print on multipart forms (like carbonless receipts), assuming that they can 
be fed into the printer properly. Sometimes, you will hear this type of paper referred to as 
impact paper. Second, it is relatively inexpensive compared to the price of a laser printer of 
the same vintage. Finally, the print quality is easily readable; the level of quality was given a 
name: letter quality (LQ). Today, LQ might refer to quality that’s better than an old-school 
typewriter (if you’re familiar with them) but not up to inkjet standards. 


Dot-Matrix Printers 


The other type of impact printer to understand is the dot-matrix printer. These printers work 
in a manner similar to daisy-wheel printers, but instead of a spinning, character-imprinted 
wheel, the print head contains a row of pins (short, sturdy stalks of hard wire). These pins 
are triggered in patterns that form letters and numbers as the print head moves across the 
paper (see Figure 5.2). 


FIGURE 5.2 Formation of images in a dot-matrix printer 


TO 
(O 





Printhead 
— aad 
Direction of movement 


The pins in the print head are wrapped with coils of wire to create a solenoid and are 
held in the rest position by a combination of a small magnet and a spring. To trigger a par- 
ticular pin, the printer controller sends a signal to the print head, which energizes the wires 
around the appropriate print wire. This turns the print wire into an electromagnet, which 
repels the print pin, forcing it against the ink ribbon and making a dot on the paper. The 
arrangement of the dots in columns and rows creates the letters and numbers that you see 
on the page. Figure 5.2 illustrates this process. 
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The main disadvantage of dot-matrix printers is their image quality, which can be quite 
poor compared to the quality produced with a daisy wheel. Dot-matrix printers use patterns 
of dots to make letters and images, and the early dot-matrix printers used only nine pins 
to make those patterns. The output quality of such printers is referred to as draft quality— 
good mainly for providing your initial text to a correspondent or reviser. Each letter looked 
fuzzy because the dots were spaced as far as they could be and still be perceived as a letter 
or image. As more pins were crammed into the print head (17-pin and 24-pin models were 
eventually developed), the quality increased because the dots were closer together. Dot- 
matrix technology ultimately improved to the point that a letter printed on a dot-matrix 
printer was almost indistinguishable from daisy-wheel output. This level of quality is known 
as near letter quality (NLỌ). 

Dot-matrix printers are noisy, but the print wires and print head are covered by a 
plastic dust cover, making them quieter than daisy-wheel printers. They also use a more 
efficient printing technology, so the print speed is faster (typically starting around 72 cps). 
Some dot-matrix printers (like the Epson DFX series) can print at close to a page per sec- 
ond! Finally, because dot-matrix printers are also impact printers, they can use multipart 
forms. Because of these advantages, dot-matrix printers quickly made daisy-wheel printers 
obsolete. 


P Most impact printers have an option to adjust how close the print head 
A: rests from the ribbon. So if your printing is too light, you may be able 
to adjust the print head closer to the ribbon. If it’s too dark or you get 
smeared printing, you may be able to move the print head back. 


Inkjet Printers 


One of the most popular types of printers in use today is the inkjet printer. As opposed to 
impact printers, which strike the page, these printers spray ink on the page to form the im- 
age. Inkjet printers typically use a reservoir of ink, a pump, and a nozzle to accomplish this. 
Older inkjet printers were messy, noisy, and inefficient, but the technology is good enough 
now that you see plenty of photo printers using inkjet technology. You might also hear these 
types of printers referred to as bubble-jet printers, but that term is copyrighted by Canon. 
You can think of inkjets as spraying droplets of ink in a very high-definition dot-matrix 
pattern, although printer manufacturers would likely scoff at the comparison to an older 
technology. 

In the following sections, you will learn the parts of an inkjet printer as well as how ink- 
jet printers work. 


Parts of a Typical Inkjet Printer 


Inkjet printers are simple devices. They contain very few parts (even fewer than dot-matrix 
printers) and, as such, are inexpensive to manufacture. It’s common today to have a $40 to 
$50 inkjet printer with print quality that rivals that of basic laser printers. 
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The printer parts can be divided into the following categories: 
= Print head/ink cartridge 
=a Head carriage, belt, and stepper motor 
=a Paper feed mechanism 


= Control, interface, and power circuitry 








Why So Cheap? 


The cost of inkjet printers is pretty low—one would think that the printer companies make 
very little money on them (which is true). So why do they price them so low? 


The answer is that printer companies make the vast majority of their profits off of ink 
cartridge sales. They figure that if they can get you into their printer, you will buy their ink 
refills—which is true—so you are then a captive consumer. Ink cartridges are very cheap 
to produce and have a high profit margin. 





Print Head/Ink Cartridge 


The first part of an inkjet printer is the one that people see the most: the print head. This 
part of a printer contains many small nozzles (usually 100 to 200) that spray the ink in small 
droplets onto the page. Many times, the print head is part of the ink cartridge, which con- 
tains a reservoir of ink and the print head in a removable package. Most color inkjet printers 
include multiple print heads. Either there will be one for the black cartridge and one for the 
color one, or there will be one for each of the CMYK (cyan, magenta, yellow, and black) 
print inks. The print cartridge must be replaced as the ink supply runs out. 

Inside the ink cartridge are several small chambers. At the top of each chamber are a 
metal plate and a tube leading to the ink supply. At the bottom of each chamber is a small 
pinhole. These pinholes are used to spray ink on the page to form characters and images 
as patterns of dots, similar to the way a dot-matrix printer works but with much higher 
resolution. 

There are two methods of spraying the ink out of the cartridge. Hewlett-Packard (HP) 
popularized the first method: When a particular chamber needs to spray ink, an electric 
signal is sent to the heating element, energizing it. The elements heat up quickly, causing the 
ink to vaporize. Because of the expanding ink vapor, the ink is pushed out of the pinhole 
and forms a bubble. As the vapor expands, the bubble eventually gets large enough to break 
off into a droplet. The rest of the ink is pulled back into the chamber by the surface tension 
of the ink. When another drop needs to be sprayed, the process begins again. The second 
method, developed by Epson, uses a piezoelectric element (either a small rod or a unit that 
looks like a miniature drum head) that flexes when energized. The outward flex pushes the 
ink from the nozzle; on the return, it sucks more ink from the reservoir. 
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When the printer is done printing, the print head moves back to its maintenance sta- 
tion. The maintenance station contains a small suction pump and ink-absorbing pad. 
To keep the ink flowing freely, before each print cycle, the maintenance station pulls ink 
through the ink nozzles using vacuum suction. The pad absorbs this expelled ink. The 
station serves two functions: to provide a place for the print head to rest when the printer 
isn’t printing and to keep the print head in working order. 


Head Carriage, Belt, and Stepper Motor 


Another major component of the inkjet printer is the head carriage and the associated parts 
that make it move. The print head carriage is the component of an inkjet printer that moves 
back and forth during printing. It contains the physical as well as electronic connections 

for the print head and (in some cases) the ink reservoir. Figure 5.3 shows an example of a 
head carriage. Note the clips that keep the ink cartridge in place and the electronic connec- 
tions for the ink cartridge. These connections cause the nozzles to fire, and if they aren’t kept 
clean, you may have printing problems. 


FIGURE 5.3 A print head carriage (holding two ink cartridges) in an inkjet printer 
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The stepper motor and belt make the print head carriage move. A stepper motor is a 
precisely made electric motor that can move in the same very small increments each time it 
is activated. That way, it can move to the same position(s) time after time. The motor that 
makes the print head carriage move is also often called the carriage motor or carriage 
stepper motor. Figure 5.4 shows an example of a stepper motor. 
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FIGURE 5.4 Acarriage stepper motor 




















In addition to the motor, a belt is placed around two small wheels or pulleys and attached 
to the print head carriage. This belt, called the carriage belt, is driven by the carriage motor 
and moves the print head back and forth across the page while it prints. To keep the print 
head carriage aligned and stable while it traverses the page, the carriage rests on a small 
metal stabilizer bar. Figure 5.5 shows the stabilizer bar, carriage belt, and pulleys. 


FIGURE 5.5 Stabilizer bar, carriage belt, and pulleys in an inkjet printer 


Pulley Stabilizer bar Belt 
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Paper Feed Mechanism 


In addition to getting the ink onto the paper, the printer must have a way to get the paper 
into the printer. That’s where the paper feed mechanism comes in. The paper feed mechanism 
picks up paper from the paper drawer and feeds it into the printer. This component consists 
of several smaller assemblies. First are the pickup rollers (see Figure 5.6), which are several 
rubber rollers with a slightly flat spot; they rub against the paper as they rotate and feed the 
paper into the printer. They work against small cork or rubber patches known as separator 
pads (see Figure 5.7), which help keep the rest of the paper in place so that only one sheet 
goes into the printer. The pickup rollers are turned on a shaft by the pickup stepper motor. 


FIGURE 5.6 Inkjet pickup rollers 














FIGURE 5.7 Inkjet separator pads 
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Clean pickup rollers (and other rubber rollers) with mild soap and water, 
OTE not with alcohol. Alcohol can dry out the rollers, making them brittle and 
ineffective. 


Sometimes the paper that is fed into an inkjet printer is placed into a paper tray, which 
is simply a small plastic tray in the front of the printer that holds the paper until it is fed 
into the printer by the paper feed mechanism. On smaller printers, the paper is placed ver- 
tically into a paper feeder at the back of the printer; it uses gravity, in combination with 
feed rollers and separator pads, to get the paper into the printer. No real rhyme or reason 
dictates which manufacturers use these different parts; some models use them, and some 
don’t. Generally, more expensive printers use paper trays because they hold more paper. 
Figure 5.8 shows an example of a paper tray on an inkjet printer. 


FIGURE 5.8 A paper tray on an inkjet printer 














The final parts of the paper feed mechanism are the paper feed sensors. These com- 
ponents tell the printer when it is out of paper as well as when a paper jam has occurred 
during the paper feed process. Figure 5.9 shows an example of a paper feed sensor. Being 
able to identify the parts of an inkjet printer is an important skill for an A+ candidate. In 
Exercise 5.1, you will identify the parts of an inkjet printer. For this exercise, you’ll need an 
inkjet printer. 
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FIGURE 5.9 A paper feed sensor on an inkjet printer 





Many of the exercises in this chapter require printer hardware. If you don’t 

‘Qo have the proper hardware on which to practice, you can find many helpful 
videos online showing how to identify parts and install and perform main- 
tenance on printers. Sites such as ifixit.com and youtube.com are good 
places to start. 


Identifying the Parts of an Inkjet Printer 

1. Unplug the inkjet printer from the power source and the computer. 
Open the top cover to expose the inner print mechanism. 

Locate and identify the paper tray. 

Locate and identify the paper feed sensor. 

Locate and identify the pickup roller(s). 

Locate and identify the separator pad(s). 


Locate and identify the print head, carriage assembly, and belt. 


on oO a PF Y DN 


Locate and identify the ink cartridge(s). 
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Control, Interface, and Power Circuitry 


The final component group is the electronic circuitry for printer control, printer interfaces, 
and printer power. The printer control circuits are usually on a small circuit board that 
contains all the circuitry to run the stepper motors the way the printer needs them to work 
(back and forth, load paper and then stop, and so on). These circuits are also responsible for 
monitoring the health of the printer and for reporting that information back to the PC. 

The second power component, the interface circuitry (commonly called a port), makes 
the physical connection to whatever signal is coming from the computer (USB, serial, net- 
work, infrared, etc.) and also connects the physical interface to the control circuitry. The 
interface circuitry converts the signals from the interface into the data stream that the 
printer uses. 

The last set of circuits the printer uses is the power circuits. Essentially, these conduc- 
tive pathways convert 110V (in the United States) or 220V (in most of the rest of the world) 
from a standard wall outlet into the voltages that the inkjet printer uses, usually 12V and 
5V, and distribute those voltages to the other printer circuits and devices that need it. This 
is accomplished through the use of a transformer. A transformer, in this case, takes the 
110V AC current and changes it to 12V DC (among others). This transformer can be either 
internal (incorporated into the body of the printer) or external. Either design can be used in 
today’s inkjets, although the integrated design is preferred because it is simpler and doesn’t 
show the bulky transformer. 


The Inkjet Printing Process 


Before you print to an inkjet printer, you must ensure that the device is calibrated. 
Calibration is the process by which a device is brought within functional specifications. For 
example, inkjet printers need their print heads aligned so that they print evenly and don’t 
print funny-looking letters and unevenly spaced lines. The process is part of the installation 
for all inkjet printers. Printers will typically run a calibration routine every time you install 
new ink cartridges. You will only need to manually initiate a calibration if the printing align- 
ment appears off. 

Just as with other types of printing, the inkjet printing process consists of a set of steps that 
the printer must follow in order to put the data onto the page being printed. The following 
steps take place whenever you click the Print button in your favorite software (like Microsoft 
Word or Google Chrome): 


1. You click the Print button (or similar) that initiates the printing process. 


2. The software from which you are printing sends the data to be printed to the printer 
driver that you have selected. 


-_. The function and use of the printer driver are discussed later in this 
~<a 


s chapter. 
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The printer driver uses a page-description language to convert the data being printed 
into the format that the printer can understand. The driver also ensures that the printer 
is ready to print. 


The printer driver sends the information to the printer via whatever connection method 
is being used (USB, network, serial, and so on). 


The printer stores the received data in its onboard print buffer memory. 


A print buffer is a small amount of memory (typically 512 KB to 16 MB) used to store 
print jobs as they are received from the printing computer. This buffer allows several 
jobs to be printed at once and helps printing to be completed quickly. 


If the printer has not printed in a while, the printer’s control circuits activate a cleaning 
cycle. 


A cleaning cycle is a set of steps the inkjet printer goes through to purge the print heads 
of any dried ink. It uses a special suction cup and sucking action to pull ink through the 
print head, dislodging any dried ink or clearing stuck passageways. 


Once the printer is ready to print, the control circuitry activates the paper feed motor. 


This causes a sheet of paper to be fed into the printer until the paper activates the paper 
feed sensor, which stops the feed until the print head is in the right position and the 
leading edge of the paper is under the print head. If the paper doesn’t reach the paper 
feed sensor in a specified amount of time after the stepper motor has been activated, the 
Out Of Paper light is turned on and a message is sent to the computer. 


Once the paper is positioned properly, the print head stepper motor uses the print head 
belt and carriage to move the print head across the page, little by little. 

The motor is moved one small step, and the print head sprays the dots of ink on the 
paper in the pattern dictated by the control circuitry. 

Typically, this is either a pattern of black dots or a pattern of CMYK inks that are mixed 
to make colors. 

Then the stepper motor moves the print head another small step; the process repeats all 
the way across the page. 

This process is so quick, however, that the entire series of starts and stops across the 
page looks like one smooth motion. 

At the end of a pass across the page, the paper feed stepper motor advances the page a 
small amount. Then the print head repeats step 8. 

Depending on the model, either the print head returns to the beginning of the line and 
prints again in the same direction only or it moves backward across the page so that 
printing occurs in both directions. This process continues until the page is finished. 
Once the page is finished, the feed stepper motor is actuated and ejects the page from 
the printer into the output tray. 

If more pages need to print, the process for printing the next page begins again at step 7. 
Once printing is complete and the final page is ejected from the printer, the print head 
is parked (locked into rest position) and the print process is finished. 
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Some nicer models of inkjet printers have a duplexing assembly attached to them, either 
at the back of the printer or inside it. It’s used for two-sided printing. After the first page is 
printed, it’s fed into the duplexing assembly, turned over, and fed back into the paper feed 
assembly. Then the second page can be printed on the back side of the original piece of 
paper. It’s a fancy attachment that gives your inkjet more functionality. 


Laser Printers 


Laser printers and inkjet printers are referred to as page printers because they receive their 
print job instructions one page at a time rather than receiving instructions one line at a time. 
There are two major types of page printers that use the electrophotographic (EP) imaging 
process. The first uses a laser to scan the image onto a photosensitive drum, and the second 
uses an array of light-emitting diodes (LEDs) to create the image on the drum. Even though 
they write the image in different ways, both types still follow the laser printer imaging pro- 
cess. Since the A+ exam focuses on the laser printer imaging process and not on differences 
between laser and LED, we’ll focus on the same here. 

Xerox, Hewlett-Packard, and Canon were pioneers in developing the laser printer tech- 
nology we use today. Scientists at Xerox developed the electrophotographic (EP) imaging 
process in 1971. HP introduced the first successful desktop laser printer in 1984, using 
Canon hardware that used the EP process. This technology uses a combination of static 
electric charges, laser light, and a black powdery ink-like substance called toner. Printers 
that use this technology are called EP process laser printers, or just laser printers. Every 
laser printer technology has its foundations in the EP printer imaging process. 

Let’s discuss the basic components of the EP laser printer and how they operate so that 
you can understand the way an EP laser printer works. 


Basic Components 


Most printers that use the EP imaging process contain nine standard assemblies: the toner 
cartridge, laser scanner, high-voltage power supply, DC power supply, paper transport as- 
sembly (including paper-pickup rollers and paper-registration rollers), transfer corona, fusing 
assembly, printer controller circuitry, and ozone filter. Let’s discuss each of the components 
individually, along with a duplexing assembly, before we examine how they all work together 
to make the printer function. 


The Toner Cartridge 


The EP toner cartridge (see Figure 5.10), as its name suggests, holds the toner. Toner is a 
black carbon substance mixed with polyester resins to make it flow better and iron oxide 
particles to make it sensitive to electrical charges. These two components make the toner 
capable of being attracted to the photosensitive drum and of melting into the paper. In ad- 
dition to these components, toner contains a medium called the developer (also called the 
carrier), which carries the toner until it is used by the EP process. 
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FIGURE 5.10 An EP toner cartridge 
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The toner cartridge also contains the EP print drum. This drum is coated with a 
photosensitive material that can hold a static charge when not exposed to light but 
cannot hold a charge when it is exposed to light—a curious phenomenon and one that 
EP printers exploit for the purpose of making images. Finally, the drum assembly 
contains a cleaning blade that continuously scrapes the used toner off the photosensitive 
drum to keep it clean. 


Exposing a photosensitive drum to dust or light can damage it, but touch- 
ing it will most likely render the drum inoperable! It’s best to just not mess 
around with them. 


‘Or 

In most laser printers, toner cartridge means an EP toner cartridge 

TE that contains toner and a photosensitive drum in one plastic case. In 
some laser printers, however, the toner and photosensitive drum can 
be replaced separately instead of as a single unit. If you ask for a toner 
cartridge for one of these printers, all you will receive is a cylinder full 
of toner. Consult the printer’s manual to find out which kind of toner 
cartridge your laser printer uses. 
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Never ship a printer anywhere with a toner cartridge installed! The jostling 
OTE that happens during shipping could cause toner to spill out of the cartridge 

and all over the inside of the printer. This will be a huge mess to clean up! 

If the printer is a laser printer, remove the toner cartridge first. You can 

put it in a sealed, airtight bag to ship, if needed. If it’s an LED page printer, 

there is a method to remove the photosensitive drum and toner cartridge. 

Check your manual for details. 


The Laser Scanning Assembly 


As we mentioned earlier, the EP photosensitive drum can hold a charge if it’s not exposed 
to light. It is dark inside an EP printer, except when the laser scanning assembly shines on 
particular areas of the photosensitive drum. When it does that, the drum discharges, but only 
in the area that has been exposed. As the drum rotates, the laser scanning assembly scans the 
laser across the photosensitive drum, exposing the image onto it. Figure 5.11 shows the laser 


scanning assembly. 


FIGURE 5.11 The EP laser scanning assembly (side view and simplified top view) 
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Laser light is damaging to human eyes. Therefore, the laser is kept in an 
TE enclosure and will operate only when the laser printer’s cover is closed. 
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High-Voltage Power Supply 


The EP process requires high-voltage electricity. The high-voltage power supply (HVPS) 
provides the high voltages used during the EP process. This component converts AC current 
from a standard wall outlet (120V and 60 Hz) into higher voltages that the printer can use. 
This high voltage is used to energize both the charging corona and the transfer corona. 


ZL Anything with the words high voltage in it should make you pause before 

ING opening a device and getting your hands into it. The HVPS can hurt or kill 
you if you're working inside a laser printer and don’t know what you're 
doing. 


DC Power Supply 


The high voltages used in the EP process can’t power the other components in the printer 
(the logic circuitry and motors). These components require low voltages, between +5 VDC 
and +24VDC. The DC power supply (DCPS) converts house current into three voltages: 
+5VDC and -SVDC for the logic circuitry and +24VDC for the paper transport motors. This 
component also runs the fan that cools the internal components of the printer. 


Paper Transport Assembly 


The paper transport assembly is responsible for moving the paper through the printer. It 
consists of a motor and several rubberized rollers that each performs a different function. 
The first type of roller found in most laser printers is the feed roller, or paper pickup 
roller (see Figure 5.12). This D-shaped roller, when activated, rotates against the paper and 
pushes one sheet into the printer. This roller works in conjunction with a special rubber 
separator pad to prevent more than one sheet from being fed into the printer at a time. 


FIGURE 5.12 Paper transport rollers 
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Registration rollers 


Another type of roller that is used in the printer is the registration roller (also shown in 
Figure 5.12). There are actually two registration rollers, which work together. These rollers 
synchronize the paper movement with the image-formation process in the EP cartridge. The 
rollers don’t feed the paper past the EP cartridge until the cartridge is ready for it. 
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Both of these rollers are operated with a special electric motor known as an electronic 
stepper motor. This type of motor can accurately move in very small increments. It powers 
all the paper transport rollers as well as the fuser rollers. 


The Transfer Corona Assembly 


When the laser writes (exposes) the images on the photosensitive drum, the toner then 
sticks to the exposed areas. (We’ll cover this in the “Electrophotographic Imaging Process” 
section.) How does the toner get from the photosensitive drum onto the paper? The transfer 
corona assembly (see Figure 5.13) is given a high-voltage charge, which is transferred to the 
paper, which, in turn, pulls the toner from the photosensitive drum. 


FIGURE 5.13 The transfer corona assembly 
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Included in the transfer corona assembly is a static-charge eliminator strip that drains 
away the charge imparted to the paper by the corona. If you didn’t drain away the charge, 
the paper would stick to the EP cartridge and jam the printer. 

There are two types of transfer corona assemblies: those that contain a transfer corona 
wire and those that contain a transfer corona roller. The transfer corona wire is a small- 
diameter wire that is charged by the HVPS. The wire is located in a special notch in the 
floor of the laser printer (under the EP print cartridge). The transfer corona roller performs 
the same function as the transfer corona wire, but it’s a roller rather than a wire. Because 
the transfer corona roller is directly in contact with the paper, it supports higher speeds. 
For this reason, the transfer corona wire is used infrequently in laser printers today. 


Fusing Assembly 


The toner in the EP toner cartridge will stick to just about anything, including paper. This 
is true because the toner has a negative static charge and most objects have a net positive 
charge. However, these toner particles can be removed by brushing any object across the page. 
This could be a problem if you want the images and letters to stay on the paper permanently. 
To solve this problem, EP laser printers incorporate a device known as a fuser (see 
Figure 5.14), which uses two rollers that apply pressure and heat to fuse the plastic toner 
particles to the paper. You may have noticed that pages from either a laser printer or a 
copier (which uses a similar device) come out warm. This is because of the fuser. 
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FIGURE 5.14 The fuser 
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The fuser is made up of three main parts: a halogen heating lamp, a Teflon-coated 
aluminum-fusing roller, and a rubberized pressure roller. The fuser uses the halogen lamp 
to heat the fusing roller to between 329° F (165° C) and 392° F (200° C). As the paper 
passes between the two rollers, the pressure roller pushes the paper against the fusing 
roller, which melts the toner into the paper. 


Ck The fuser can cause severe burns! Be careful when working with it. 
ING 


Printer Controller Circuitry 


Another component in the laser printer that we need to discuss is the printer controller 
assembly. This large circuit board converts signals from the computer into signals for the 
various assemblies in the laser printer using a process known as rasterizing. This circuit 
board is usually mounted under the printer. The board has connectors for each type of inter- 
face and cables to each assembly. 

When a computer prints to a laser printer, it sends a signal through a cable to the printer 
controller assembly. The controller assembly formats the information into a page’s worth of 
line-by-line commands for the laser scanner. The controller sends commands to each of the 
components, telling them to wake up and begin the EP imaging process. 


Ozone Filter 


Your laser printer uses various high-voltage biases inside the case. As anyone who has been 
outside during a lightning storm can tell you, high voltages create ozone. Ozone is a chemi- 
cally reactive gas that is created by the high-voltage coronas (charging and transfer) inside 
the printer. Because ozone is chemically reactive and can severely reduce the life of laser 
printer components, many older laser printers contain a filter to remove ozone gas from 
inside the printer as it is produced. This filter must be removed and cleaned with compressed 
air periodically. (Cleaning it whenever the toner cartridge is replaced is usually sufficient.) 
Most newer laser printers don’t have ozone filters. This is because these printers don’t use 
transfer corona wires but instead use transfer corona rollers, which dramatically reduce 
ozone emissions. 
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Duplexing Assembly 


Any laser printer worth its money today can print on both sides of the paper (as can some 
nicer models of inkjet printers, mentioned earlier). This is accomplished through the use 
of a duplexing assembly. Usually located inside or on the back of the printer, the assembly 
is responsible for taking the paper, turning it over, and feeding back into the printer so the 
second side can be printed. 


Electrophotographic Imaging Process 


The electrophotographic (EP) imaging process is the process by which an EP laser printer 
forms images on paper. It consists of seven major steps, each designed for a specific goal. 
Although many different manufacturers call these steps different things or place them in a 
different order, the basic process is still the same. Here are the steps in the order you will see 
them on the exam: 


Processing 
Charging 
Exposing 
Developing 
Transferring 


Fusing 


SO Gls oe NS 


Cleaning 


Before any of these steps can begin, however, the controller must sense that the printer is 
ready to start printing (toner cartridge installed, fuser warmed to temperature, and all cov- 
ers in place). Printing cannot take place until the printer is in its ready state, usually indi- 
cated by an illuminated Ready LED light or a display that says something like 00 READY (on 
HP printers). The computer sends the print job to the printer, which begins processing the 
data as the first step to creating output. 


Step 1: Processing 


The processing step comprises two parts: receiving the image and creating the image. The 
computer sends the print job to the printer, which receives it via its print interface (USB, 
wireless, etc.). Then, the printer needs to create the print job in such a way that it can ac- 
curately produce the output. 

If you think back to our discussion of dot-matrix printing earlier in this chapter, you 
might recall that dot-matrix printers produce images by creating one strip of dots at a time 
across the page. Laser printers use the same concept of rendering one horizontal strip at a 
time to create the image. Each strip across the page is called a scan line or a raster line. 

A component of the laser printer called the Raster Image Processor (RIP) manages ras- 
ter creation. Its responsibility is to generate an image of the final page in memory. How the 
raster gets created depends on the page-description language that your system is using, such 
as PostScript (PS) or Printer Control Language (PCL). Ultimately, this collection of lines is 
what gets written to the photosensitive drum and onto the paper. 
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Step 2: Charging 

The next step in the EP process is charging (see Figure 5.15). In this step, a special wire or 
roller (called a charging corona) within the EP toner cartridge (above the photo sensitive 
drum) gets high voltage from the HVPS. It uses this high voltage to apply a strong, uniform 
negative charge (around -600VDC) to the surface of the photosensitive drum. 


FIGURE 5.15 The charging step of the EP process 
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Step 3: Exposing 

Next is exposing the drum to the image, often referred to as the exposing step. In this step, 
the laser is turned on and scans the drum from side to side, flashing on and off accord- 

ing to the bits of information that the printer controller sends it as it communicates the 
individual bits of the image. Wherever the laser beam touches, the photosensitive drum’s 
charge is severely reduced from -600VDC to a slight negative charge (around -100VDC). 
As the drum rotates, a pattern of exposed areas is formed, representing the image to be 
printed. Figure 5.16 shows this process. 


FIGURE 5.16 The exposing step of the EP process 
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At this point, the controller sends a signal to the pickup roller to feed a piece of paper 
into the printer, where it stops at the registration rollers. 
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Step 4: Developing 


Now that the surface of the drum holds an electrical representation of the image being print- 
ed, its discrete electrical charges need to be converted into something that can be transferred 
to a piece of paper. The EP process step that accomplishes this is developing (see Figure 5.17). 
In this step, toner is transferred to the areas that were exposed in the exposing step. 


FIGURE 5.17 The developing step of the EP process 
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A metallic roller called the developing roller inside an EP cartridge acquires a -600VDC 
charge (called a bias voltage) from the HVPS. The toner sticks to this roller because there is a 
magnet located inside the roller and because of the electrostatic charges between the toner and 
the developing roller. While the developing roller rotates toward the photosensitive drum, the 
toner acquires the charge of the roller (-600VDC). When the toner comes between the develop- 
ing roller and the photosensitive drum, the toner is attracted to the areas that have been exposed 
by the laser (because these areas have a lesser charge, -100VDC). The toner also is repelled from 
the unexposed areas (because they are at the same -600VDC charge and like charges repel). This 
toner transfer creates a fog of toner between the EP drum and the developing roller. 

The photosensitive drum now has toner stuck to it where the laser has written. The pho- 
tosensitive drum continues to rotate until the developed image is ready to be transferred to 
paper in the next step. 


Step 5: Transferring 


At this point in the EP process, the developed image is rotating into position. The controller 
notifies the registration rollers that the paper should be fed through. The registration rollers 
move the paper underneath the photosensitive drum, and the process of transferring the im- 
age can begin; this is the transferring step. 

The controller sends a signal to the charging corona wire or roller (depending on which 
one the printer has) and tells it to turn on. The corona wire/roller then acquires a strong 
positive charge (+600VDC) and applies that charge to the paper. Thus charged, the paper 
pulls the toner from the photosensitive drum at the line of contact between the roller and 
the paper because the paper and toner have opposite charges. Once the registration rollers 
move the paper past the corona wire, the static-eliminator strip removes all charge from 
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that line of the paper. Figure 5.18 details this step. If the strip didn’t bleed this charge away, 
the paper would attract itself to the toner cartridge and cause a paper jam. 


FIGURE 5.18 The transferring step of the EP process 
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The toner is now held in place by weak electrostatic charges and gravity. It will not stay 
there, however, unless it is made permanent, which is the reason for the fusing step. 


Step 6: Fusing 
The penultimate step before the printer produces the finished product is called fusing. Here 
the toner image is made permanent. The registration rollers push the paper toward the fuser 
rollers. Once the fuser grabs the paper, the registration rollers push for only a short time 
longer. The fuser is now in control of moving the paper. 

As the paper passes through the fuser, the 350° F fuser roller melts the polyester resin 
of the toner, and the rubberized pressure roller presses it permanently into the paper (see 
Figure 5.19). The paper continues through the fuser and eventually exits the printer. 


FIGURE 5.19 The fusing step of the EP process 
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Once the paper completely exits the fuser, it trips a sensor that tells the printer to finish 
the EP process with the cleaning step. 


Step 7: Cleaning 


In the last part of the laser imaging process, a rubber blade inside the EP cartridge scrapes 
any toner left on the drum into a used toner receptacle inside the EP cartridge, and a fluo- 
rescent lamp discharges any remaining charge on the photosensitive drum. (Remember that 
the drum, being photosensitive, loses its charge when exposed to light.) This step is called 
cleaning (see Figure 5.20). 
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FIGURE 5.20 The cleaning step of the EP process 
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The EP cartridge is constantly cleaning the drum. It may take more than one rotation of 
the photosensitive drum to make an image on the paper. The cleaning step keeps the drum 
fresh for each use. If you didn’t clean the drum, you would see ghosts of previous pages 
printed along with your image. 


The amount of toner removed in the cleaning process is quite small, and 
TE the cartridge will run out of toner before the used toner receptacle fills up. 
The toner that’s in the receptacle is useless because the imaging process has 


already chemically altered it. In addition, it’s considered a hazardous sub- 
stance. Recycle the print cartridge and don’t pay attention to the leftover toner. 


At this point, the printer can print another page, and the EP process can begin again. 


Summary of the EP Imaging Process 


Figure 5.21 provides a diagram of all the parts involved in the EP printing process. Here’s a 
summary of the process, which you should commit to memory: 


1. The printer receives and processes the image and stores a page in memory. 


2. The printer places a uniform -600VDC charge on the photosensitive drum by means 
of a charging corona. 


3. The laser “paints” an image onto the photosensitive drum, discharging the image areas 
to a much lower voltage (-1O0VDC). 


4. The developing roller in the toner cartridge has charged (-600VDC) toner stuck to 
it. As it rolls the toner toward the photosensitive drum, the toner is attracted to (and 
sticks to) the areas of the photosensitive drum that the laser has discharged. 


5. The image is then transferred from the drum to the paper at its line of contact by 
means of the transfer corona wire (or corona roller) with a +600VDC charge. The 
static-eliminator strip removes the high, positive charge from the paper, and the paper, 
now holding the image, moves on. 


6. The paper then enters the fuser, where a fuser roller and the pressure roller make the 
image permanent. The paper exits the printer. 


7. The printer uses a rubber scraper to clean the photosensitive drum. At that point, it is 
ready to print the next page or it returns to the ready state. 
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FIGURE 5.21 The EP imaging process 
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Ø There have been a lot of concepts covered in the laser printing section. For 
‘Qi the A+ certification exam, be sure you are familiar with laser printer parts, 


including the imaging drum, fuser assembly, transfer belt, pickup rollers, 
separator pads, and duplexing assembly. Also know the steps of the imag- 
ing process in order. They are processing, charging, exposing, developing, 
transferring, fusing, and cleaning. 


Thermal Printers 


The types of printers that you have learned about so far in this chapter account for 90 per- 
cent of all paper printers that are used with home or office computers and that you will see 
as a repair technician. The remaining 10 percent consist of other types of printers that pri- 
marily differ by the method they use to put colored material on the paper to represent what 
is being printed. Examples of these include solid ink, dye sublimation, and thermal printers. 
Keep in mind that, for the most part, these printers operate like other paper printers in many 
ways: They all have a paper feed mechanism (sheet-fed or roll); they all require consumables 
such as ink or toner and paper; they all use the same interfaces, for the most part, as other 
types of printers; and they are usually about the same size. 

Thermal printing technology is used in many point-of-sale (POS) terminals and older 
fax machines. (Newer fax machines usually use inkjet or laser technology.) They print on 
special thermal paper, which is a kind of waxy paper that comes on a roll; the paper turns 
black when heat passes over it. Thermal printers work by using a print head that is the 
width of the paper. When it needs to print, a heating element heats certain spots on the 
print head. The paper below the heated print head turns black in those spots. As the paper 
moves through the printer, the pattern of blackened spots forms an image on the page of 
what is being printed. Another type of thermal printer uses a heat-sensitive ribbon instead 
of heat-sensitive paper. A thermal print head melts wax-based ink from the ribbon onto the 
paper. These are called thermal transfer printers or thermal wax-transfer printers. 
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Thermal direct printers typically have long lives because they have few moving parts. 
The only unique part that you might not be as familiar with is the paper feed assembly, 
which often needs to accommodate a roll of paper instead of sheets. The paper is somewhat 
expensive, doesn’t last long (especially if it is left in a very warm place, like a closed car in 
summer), and produces poorer-quality images than the paper used by most of the other 
printing technologies. 


Virtual Printers 


All the print technologies that we have covered so far are physical technologies—that is, they 
do something to the paper to produce an image, by using ink, toner, or heat. Another con- 
cept that we need to cover is virtual printing, which sends the desired output to a file instead 
of to paper. From the end user’s standpoint, starting the printing process is the same. They 
click Print in their application and the process starts. From there, though, instead of sending 
the output to an electromechanical device, a new file containing the output is generated. 

Printing to a file is nothing new; this option has been around for probably 20 years or 
more. You open the document (or other file) that you want to print, select Print, and a print 
window similar to the one shown in Figure 5.22 opens. Once there, you check the Print To 
File box, and then click OK. (Other programs may have you choose the option to print to 
file in a drop-down list of printers.) Then, choose where to save the file (just as saving any 
other file), and after you chose a destination, you are done. Some programs or operating 
systems would even let you print to an image (such as JPG) instead of a file, but the process 
works the same way. 


FIGURE 5.22 Print To File option 


Pa lx 

















[Printer 

Name: | Eroperties 

Status: Ready Comments and Forms: 

Type: HP D 640 [Document and Stamps v 

j 

[Print Range: M Preview 

© al 

© Curent view 

© Current page 


C Pages from: | to: | 

Subset [All pages in range >| J” Reverse pages 
| Page Handling 

Copies: 1 = I Collate 

Page Scaling: Reduce to Printer Margins Y | 


JV Auto-Botate and Center 











I” Choose Paper Source by PDF page size 











T Print to file 
J Print color as black 


Units: Inches Zoom: 100% 


1/72 (1) _ 

















262 Chapter 5 = Installing and Configuring Printers 


It used to be that people only chose this option when the printer was not available. You 
could print your output to a file, take the file to a different machine that had a printer avail- 
able, and print the file from that machine. Now, you might ask, why wouldn’t you just take 
the original file from the first computer to the second and print it from the application? 
That would make sense, but this method allowed you to print from a second computer that 
didn’t have the application in which you created the file installed on it. There was one big 
caveat: You had to be printing to the same type of printer using the same printer driver as 
you used to publish the electronic print file; otherwise, it wouldn’t work. The upshot was 
that it was rarely, if ever, used. 

Another option has emerged, though, and this one is actually useful! Instead of printing 
to a generic file format that can be later used to produce a paper copy, you can print to a 
Portable Document Format (PDF) file. Basically, you are just creating a PDF file using your 
application’s print function. 

There are a few different ways to print to PDF from Windows and Windows-based appli- 
cations. Some apps natively print to PDF, whereas others require you to install a third-party 
application that supports printing to PDF. There is no shortage of apps in the market that 
will do this; for example, Adobe Acrobat (www.adobe.com), CutePDF Writer (www. cutepdf 
.com), and Nitro PDF (www. gonitro.com) will do the trick. When you print, you will get a 
screen similar to the one shown in Figure 5.23. 


FIGURE 5.23 Printing to PDF 
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Select Print to PDF (or your version of it) and click Print. A window will pop up asking 
where you want to save the file. Save it, and a PDF file is created for you. It’s as easy as that. 


P Current versions of Microsoft Office products also let you create a PDF 
A: file automatically. For example, in Word, you can choose File > Save As, 
and one of your options in the drop-down menu will be the PDF format. 
Another way is to click File > Save & Send, and then choose Send As PDF. 


Another option, besides printing to PDF, is to print to XPS. An Open XML Paper 
Specification (XPS) file is Microsoft’s version of a PDF. It’s designed to be an open stan- 
dard, like PDF, but it hasn’t really taken off in terms of popularity. In fact, with the 
introduction of Windows 8, Microsoft included support for OpenXPS (OXPS), which is 
incompatible with the XPS reader included with Windows 7. In addition, Windows 8 and 
newer include a native PDF reader, so it seems that Microsoft isn’t heavily invested in sup- 
porting the XPS format itself. 

Let’s go back to printing to an image for a minute. If your program doesn’t support 
printing to an image but you need the output of the file in an image format (JPG, TIF, 
PNG, or other), you can print the file as a PDF first, and then convert it to an image file. 
There are dozens of free image file converters on the web. 

To summarize, there are four potential options for printing to a virtual printer: print to 
file, print to image, print to PDF, and print to XPS. Of the four, the only one that you will 
likely find to be useful is print to PDF. 


3D Printers 


In 2011, the first commercially available 3D printer hit the market. Although the word 
“printing” is used, the technology and process are completely different from putting ink to 
paper. 3D printing is really a fabrication process, also called additive manufacturing. In it, a 
three-dimensional product is produced by “printing” thin layers of a material and stacking 
those layers on top of each other. 

The first 3D printers were used in manufacturing environments. Over time, smaller, 
more economical models have been made for home use as well, although the technology 
still remains fairly expensive. Most 3D printers intended for the home use rolls of plastic 
filament to create objects, but industrial printers can use a variety of materials, including 
aluminum, copper, and other metals. Some enterprising soul also created a 3D printer that 
prints using melted chocolate. They very likely deserve a Nobel Prize. 


Parts of a 3D Printer 


They can produce complex creations, but 3D printers are relatively simple devices with few 
parts. For the examples here, we will use smaller 3D printers designed for home or small 
business use. Therefore, we'll focus on printers that use plastic filament as opposed to other 
materials. The primary components are as follows: 


a Frame 


= Printing plate 
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= Extruder 

= Cooling fan 

a PCB circuit board 
a Filament 


The frame holds the printer together. On the bottom of the printer will be the printing 
plate, where the object is created. The extruder heats up and melts the filament, which is 
used to create the object. A cooling fan keeps the extruder from overheating. A PCB circuit 
board will be installed somewhere, to control the movement of the extruder assembly. Some 
printers will also have electronic displays and a clear protective case. Figure 5.24 shows a 
simple MakerBot 3D printer 24. It’s relatively easy to see the frame, printing plate, display, 
and filament tube. 3D printers are connected to a computer using a USB cable. 


FIGURE 5.24 A3D printer 





On most 3D printers, the extruder is attached to metal rods that control the position of 
the extruder on X, Y, and Z axes. As mentioned earlier, the extruder heats up and melts 
plastic filament. The extruder then moves around to create the object, adding one thin layer 
of material to the printing plate at a time. Figure 5.25 shows an extruder from a different 
3D printer—it’s the small black block at the bottom of the image. In this image, the fila- 
ment tube is seen coming from the top of the extruder assembly. 
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FIGURE 5.25 3D printer extruder 


7 





Filament comes on a spool, much like wire, and is shown in Figure 5.26. Be sure that 
the filament is compatible with the printer you intend to use it with. Here are the things to 
consider when purchasing replacement filament: 


Type More than a dozen different types of plastic filament are available. The most 
popular are polylactic acid (PLA) and acrylonitrile butadiene styrene (ABS). Each has 
different characteristics—for example, ABS shrinks as it cools, so a heated printing plate is 
recommended. 


Size The most common size is 1.75 mm, but 3.0 mm filament (which is actually 2.85 mm 
thick) was the original size and is still used today. 


Color The printer doesn’t really care what color you use, but a variety of colors are available. 


Replacing filament is a straightforward process. The 3D printer’s app (or interface panel) 
will have a Replace Filament button or option. Once you start the process, the extruder will 
heat up and start to expel the current filament. At some point, it will tell you to replace the 
roll. You remove the old roll and feed the new filament through the filament tube into the 
extruder. After a short time, you will see the new color come through as melted filament (if 
you changed colors), and you can use the app or interface panel to stop the replacement. 
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FIGURE 5.26 3D printer PLA filament 
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The 3D Printing Process 


Every 3D printer comes with its own software that helps manage the printing process; there- 
fore, the process will differ slightly from printer to printer. The following steps are general 
steps taken to get from idea to 3D printed object. 


1. 


Design the object using a computer-aided design (CAD) program. 

The most well-known commercial software for this is probably AutoCAD by Autodesk. 
Another option is the free Tinkercad. 

Export the file from the CAD software. Doing so will cause the CAD program to “slice” 
the object into layers, preparing it for printing. The exported file will be a .STL file. 

This step will vary somewhat, depending on the 3D printer’s software. In many cases, 
the .STL file can be imported into the printer’s app, and the app will slice the file yet 
again, formatting the model specifically for the printer. Some apps can’t slice, though, so 
third-party slicing software is needed. Examples include Cura, SliceCrafter, and Slic3r. 
Most slicers are free, although commercial versions are available. 

Send the job to the printer. This is basically just pushing the Print button. 


The printer will perform a calibration and self-test. The extruder will heat up and 
calibrate its position on the X, Y, and Z axes. 


Printing begins. 
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Small print jobs may take over an hour, depending on the printer and size of the object. 
Larger jobs may take days to complete. The maximum object size will be determined by the 
model of printer. After the job is done, a little sanding or filing may be required to remove 
excess filament. A completed 3D print job (actually several jobs) is shown in Figure 5.27. In 
total, the objects are about 1.5” long. Higher-end 3D printers can create components that 
move, such as hinges and latches. 


FIGURE 5.27 3D printed objects 





Installing and Maintaining Printers 


Odds are that if someone owns a computer, they own a printer as well. If they don’t, they 
have easy access to a printer at a library, work, or some other place. Many retailers and 
computer manufacturers make it incredibly easy to buy a printer because they often bundle a 
printer with a computer system as an incentive to get you to buy. 

The CompTIA A+ 220-1001 exam will test your knowledge of the procedures to install 
and maintain printers. In the following sections, we will discuss connecting printers 
through various interfaces, installing and sharing local and networked printers, performing 
printer maintenance, and installing printer upgrades. 


Many inkjet and laser printers today provide several functions, including 

TE copying, scanning, and faxing. These devices go by several names, includ- 
ing multifunctional printer, multifunction device (MFD), multifunction prod- 
uct (MFP), or all-in-one printer. 


Printer Interface Components 


A printer’s interface is the collection of hardware and software that allows the printer to 
communicate with a computer. The hardware interface is commonly called a port. Each 
printer has at least one interface, but some printers have several interfaces, to make them 
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more flexible in a multiplatform environment. If a printer has several interfaces, it can usu- 
ally switch between them on-the-fly so that several computers can print at the same time. 

An interface incorporates several components, including its interface type and the 
interface software. Each aspect must be matched on both the printer and the computer. 
For example, an older HP LaserJet 4L has only a parallel port. Therefore, you must use a 
parallel cable as well as the correct software for the platform being used (for example, a 
Macintosh HP LaserJet 4L driver if you connect it to a Macintosh computer). 


Interface Types 


When we say interface types, we’re talking about the ports used in getting the printed 
information from the computer to the printer. There are two major classifications here: 
wired and wireless. Wired examples are serial, parallel, USB, and Ethernet. Wireless options 
include 802.11 and Bluetooth. You’ve learned about the wired connections in Chapter 3, 
“Peripherals and Connectors,” and you will learn more about the wireless connections in 
Chapter 6, “Networking Fundamentals.” Here you will learn how they apply to printers. 


Serial 


When computers send data serially, they send it 1 bit at a time, one after another. The bits stand 
in line like people at a movie theater, waiting to get in. Old-time serial (RS-232) connections 
were painfully slow, but new serial technology (Thunderbolt, eSATA, and others) makes it a 
more viable option than parallel. While it’s quite common to see USB (another type of serial 
connection) printers on the market, it’s rare to find any other types of serial printers out there. 


Parallel 


When a printer uses parallel communication, it is receiving data 8 bits at a time over eight 
separate wires (one for each bit). Parallel communication was the most popular way of 
communicating from computer to printer for many years, mainly because it was faster than 
serial. In fact, the parallel port became so synonymous with printing that a lot of companies 
simply started referring to parallel ports as printer ports. Today, though, parallel printers are 
uncommon. The vast majority of wired printers that you see will be USB or Ethernet. 

A parallel cable consists of a male DB25 connector that connects to the computer and 
a male 36-pin Centronics connector that connects to the printer. Most of the cables are 
shorter than 10’. The industry standard that defines parallel communications is IEEE 1284; 
parallel cables should be IEEE 1284-compliant. 


ING cables more than 50’. If the length is greater than 10’, communications can 
become unreliable due to crosstalk, which is the degrading of a signal due 
to electromagnetic interference (EMI). 


ta Keep printer cable lengths shorter than 10’. Some people try to run printer 


Universal Serial Bus 


The most popular type of wired printer interface is the Universal Serial Bus (USB). In fact, 
it is the most popular interface for just about every peripheral. The convenience for printers 
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is that it has a higher transfer rate than older serial or parallel connections, and it automati- 
cally recognizes new devices. And, of course, USB is physically very easy to connect. 


Ethernet 


Many printers sold today have a wired Ethernet interface that allows them to be hooked 
directly to an Ethernet cable. These printers have an internal network interface card (NIC) 
and ROM-based software that allow them to communicate on the network with servers and 
workstations. 

As with any other networking device, the type of network interface used on the printer 
depends on the type of network to which the printer is being attached. It’s likely that the 
only connection type that you will run into is RJ-45 for an Ethernet connection. 


Wireless 


The latest trend in printer interface technology is to use wireless. Clearly, people love their 
Wi-Fi because it enables them to roam around an office and still remain connected to one 
another and to their network. It logically follows that someone came up with the brilliant 
idea that it would be nice if printers could be that mobile as well—after all, many are on 
carts with wheels. Some printers have built-in Wi-Fi interfaces, while others can accept wire- 
less network cards. Wi-Fi-enabled printers support nearly all 802.11 standards (a, b, g, n, 
ac), and the availability of devices will mirror the current popularity of each standard. 

The wireless technology that is especially popular among peripheral manufacturers is 
Bluetooth. Bluetooth is a short-range wireless technology; most devices are specified to 
work within 10 meters (33 feet). Printers such as the HP Sprocket series and Officejet 150 
mobile printers have Bluetooth capability. 

When printing with a Bluetooth-enabled device (like a smartphone or tablet) and a 
Bluetooth-enabled printer, all you need to do is get within range of the device (that is, move 
closer), select the printer driver from the device, and choose Print. The information is trans- 
mitted wirelessly through the air using radio waves and is received by the device. 


When Wi-Fi is used to connect printers to a network on a more permanent 

JTE basis, it is known as infrastructure mode. Wi-Fi and Bluetooth can be used 
to connect a printer temporarily to a single computer (or mobile device), 
and the connection does not have permanent status. This type of configu- 
ration is known as an ad hoc network connection. 


Interface Software 


Now that we’ve looked at the ways that you can connect your printer, it’s time to face a grim 
reality: Computers and printers don’t know how to talk to each other. They need help. That 
help comes in the form of interface software used to translate software commands into com- 
mands that the printer can understand. 

There are two major components of interface software: the page-description language 
and the driver software. The page-description language (PDL) determines how efficient 
the printer is at converting the information to be printed into signals that the printer can 
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understand. The driver software understands and controls the printer and must be written 
to communicate between a specific operating system and specific printer. It is very impor- 
tant that you use the correct interface software for your printer. If you use either the wrong 
page-description language or the wrong driver software, the printer will print garbage—or 
possibly nothing at all. 


Page-Description Languages 
A page-description language works just as its name implies: It describes the whole page being 
printed by sending commands that describe the text as well as the margins and other settings. 
The controller in the printer interprets these commands and turns them into laser pulses (or 
pin strikes). Several printer communication languages exist, but the three most common are 
PostScript, Printer Command Language (PCL), and Graphics Device Interface (GDI). 

The first page-description language was PostScript. Developed by Adobe, it was first 
used in the Apple LaserWriter printer. It made printing graphics fast and simple. Here’s how 
PostScript works: The PostScript printer driver describes the page in terms of “draw” and 
“position” commands. The page is divided into a very fine grid (as fine as the resolution of the 
printer). When you want to print a square, a communication like the following takes place: 


POSITION 1,42%DRAW 10%POSITION 1,64%DRAW10D% . 


These commands tell the printer to draw a line on the page from line 42 to line 64 (verti- 
cally). In other words, a page-description language tells the printer to draw a line on the 
page and gives it the starting and ending points—and that’s that. Rather than send the 
printer the location of each and every dot in the line and an instruction at each and every 
location to print that location’s individual dot, PostScript can get the line drawn with fewer 
than five instructions. As you can see, PostScript uses commands that are more or less in 
English. The commands are interpreted by the processor on the printer’s controller and 
converted into the print-control signals. 

PCL was developed by Hewlett-Packard in 1984 and originally intended for use with 
inkjet printers as a competitor to PostScript. Since then, its role has been expanded to virtu- 
ally every printer type, and it’s a de facto industry standard. 

GDI is actually a Windows component and is not specific to printers. Instead, it’s a series 
of components that govern how images are presented to both monitors and printers. GDI 
printers work by using computer processing power instead of their own. The printed image 
is rendered to a bitmap on the computer and then sent to the printer. This means that the 
printer hardware doesn’t need to be as powerful, which results in a less expensive printer. 
Generally speaking, the least expensive laser printers on the market are GDI printers. 


Most newer printers can handle both PS and PCL (and GDI) and will auto- 
A TE matically translate for you. Therefore, it’s less likely that you'll install the 
wrong printer driver than it was several years ago. 
The main advantage of page-description languages is that they move some of the process- 


ing from the computer to the printer. With text-only documents, they offer little benefit. 
However, with documents that have large amounts of graphics or that use numerous fonts, 
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page-description languages make the processing of those print jobs happen much faster. This 
makes them an ideal choice for laser printers, although nearly every type of printer uses them. 


1 If you're working with an older laser printer and it’s printing garbage, check 
P the driver. It might have the letters PS or PCL at the end of the name. If a 
PS driver is installed for a printer that wants PCL (or vice versa), garbage 
output could be the result. 








G Real World Scenario 


Life Without a Page-Description Language 


Page-description languages make printing an efficient process. But what about when 
they are not used? In situations like this, the computer sends all the instructions the 
printer needs in a serial stream, like so: Position 1, print nothing; Position 2, strike pins 

1 and 3; Position 3, print nothing. This type of description language works well for dot- 
matrix printers, but it can be inefficient for laser printers. For example, if you wanted to 
print a page using a standard page-description language and only one character was on 
the page, there would be a lot of signal wasted on the “print nothing” commands. 


With graphics, the commands to draw a shape on the page are relatively complex. For 
example, to draw a square, the computer (or printer) has to calculate the size of the square 
and convert that into a lot of “strike pin x” (or “turn on laser”) and “print nothing” com- 
mands. This is where the other types of page-description languages come into the picture. 





Driver Software 


The driver software controls how the printer processes the print job. When you install a 
printer driver for the printer you are using, it allows the computer to print to that printer 
correctly (assuming that you have the correct interface configured between the computer 
and printer). The driver must be written specifically for the operating system the computer is 
using and for the printer being used. In other words, Mac clients need a different driver than 
Windows clients need, even to print to the same printer. 


to the software that is installed on the computer and lets you print as the 
“printer.” The physical device where the paper comes out is referred to as 
the “print device.” Here, when we say “printer,” we mean the physical device. 


~<a If you're working with a Windows-based operating system, Microsoft refers 
á TE 


When you need to print, you select the printer driver for your printer from a preconfig- 
ured list. The driver that you select has been configured for the type, brand, and model of 
printer, as well as the computer port to which it is connected. You can also select which 
paper tray the printer should use as well as any other features the printer has (if applicable). 
Also, each printer driver is configured to use a particular page-description language. 
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ING the wrong language. If that occurs, the printer will print several pages full 
of garbage (even if only one page of information was sent). This “garbage” 
isn’t garbage at all but the printer page-description language commands 
printed literally as text instead of being interpreted as control commands. 


Ck If the wrong printer driver is selected, the computer will send commands in 


Installing and Sharing Local Printers 
Although every device is different, there are certain accepted methods used for installing 
almost all of them. The following procedure works for installing many kinds of devices: 


1. Attach the device using a local port (generally USB, but maybe something else) and 
connect the power. 


2. Install and update the device driver and calibrate the device. 
3. Configure options and settings. 
4. Print a test page. 
5. Verify compatibility with the operating system and applications. 
6. Educate users about basic functionality. 
w Before installing any device, read your device's installation instructions. 
P There are exceptions to every rule. 


Step 1: Attach the Device Using a Local Port and 
Connect the Power 


When installing a printer, you must first take the device out of its packaging and set it up 
on a flat, stable surface. Then, with the device powered off, connect it to the host computer. 
Today, the vast majority of local printers are USB, but you will occasionally find ones that 
use different ports as well. 

Once you have connected the device, connect power to it using whatever supplied power 
adapter comes with it. Some devices have their own built-in power supply and just need an 
AC power cord connecting the device to the wall outlet, while others rely on an external 
transformer and power supply. Finally, turn on the device. 


Step 2: Install and Update the Device Driver and 
Calibrate the Device 


Once you have connected and powered up the device, Windows should automatically recog- 
nize it. When it does, a screen will pop up saying that Windows is installing the driver. If a 
driver is not found, you will be given the option to specify the location of the driver. You can 
insert the driver media (flash drive, DVD, etc.) that came with the device, and the wizard will 
guide you through the device driver installation. 
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If Windows fails to recognize the device, you can start the process manually by initiat- 
ing the Add Printer Wizard (called Add A Printer Wizard in Windows 7 and Windows 
8/8.1) to troubleshoot the installation and to install the device drivers. To start the wizard 
in Windows 10, click Start, type printer, and then click Printers & Scanners when it 
appears under Best Match. Click Add a Printer or Scanner, as shown in Figure 5.28. If 
a printer is not detected, a link will appear with the words “The printer that I want isn’t 
listed.” Click that link, and it will start the wizard shown in Figure 5.29. 


FIGURE 5.28 Printers & scanners 
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FIGURE 5.29 Add Printer Wizard 
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This might go without saying at this point, but it bears repeating: You need 
OTE the right driver—one that matches both your printer and your operating 
system—in order for everything to work right. 


Once the driver is installed, the device will function. But some devices, such as inkjet 
printers, must be calibrated. If the printer requires this step, it will tell you. You'll need to 
walk through a few steps before the printer will print, but instructions will be provided 
either on your computer screen or on the printer’s display. 


1 When you are working with print media, it is especially important to cali- 
y g 
P brate all your hardware, including your monitor, scanner, printer, and digi- 
tal camera, to ensure color matching. 


Each manufacturer’s process is different, but a typical alignment/calibration works 
like this: 


1. During software installation, the installation wizard asks you if you would like to cali- 
brate now, to which you will respond Yes or OK. 


2. The printer prints out a sheet with multiple sets of numbered lines. Each set of lines 
represents an alignment instance. 


3. The software will ask you which set(s) looks the best. Enter the number and click OK 
or Continue. 


4. Some alignment routines end at this point. Others will reprint the alignment page and 
see if the alignment “took.” If not, you can re-enter the number of the one that looks 
the best. 


5. Click Finish to end the alignment routine. 


Step 3: Configure Options and Settings 


Once you have installed the software and calibrated the device, you can configure any op- 
tions that you would like for the printer. All the settings and how to change them can be 
found online or in your user manual. 

Where you configure specific printer properties depends a lot on the printer itself. 
As a rule of thumb, you’re looking for the Printer Properties or Printing Preferences 
applet. In Windows 10, if you open Printers & Scanners, you will see the list of printers 
that are installed. Clicking an installed printer will show three buttons: Open Queue, 
Manage, and Remove Device, as shown in Figure 5.30. The Open Queue button lets you 
manage print jobs, and the Remove Device button is self-explanatory. Click Manage to 
get the screen like the one shown in Figure 5.31. Here you have options to print a test 
page, as well as the Printer properties and Printing preferences link. Figure 5.32 shows 
the General tab of the Printer Properties window, and Figure 5.33 shows the Printing 
Preferences window. 
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FIGURE 5.30 Three printer management buttons 
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FIGURE 5.31 Manage your device options 
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FIGURE 5.32 Printer Properties 
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From the printer’s Properties dialog box (Figure 5.32), you can configure nearly any 
option that you want to for your printer. The Properties dialog box will be pretty much the 
same for any printer that you install, and we’ll cover a few options here in a minute. First, 
though, notice the Preferences button on the General tab. Clicking the Preferences button is 
another way to get to Printing Preferences (Figure 5.33). That window will have configura- 
tion options based on your specific model of printer. Usually, though, this is where you can 
find layout (portrait or landscape), duplexing, quality, color, and paper tray settings 
(if applicable) for the printer. 

Now back to the Properties dialog box. The printer’s Properties dialog box is less about 
how the printer does its job and more about how people can access the printer. From the 
Properties dialog box, you can share the printer, set up the port that it’s on, configure 
when the printer will be available throughout the day, and specify who can use it. Let’s 
take a look at a few key tabs. We’ve already taken a look at the General tab, which has 
the Preferences button as well as the all-important Print Test Page button. It’s handy for 
troubleshooting! 

Figure 5.34 shows the Sharing tab. If you want other users to be able to print to this 
printer, you need to share it. Notice the warnings above the Share This Printer check box. 
Those are important to remember. When you share the printer, you give it a share name. 
Network users can map the printer through their own Add Printer Wizard (choosing a 
networked printer) and by using the standard \\computer_name\share_name convention. 
Permissions for user authentication are managed through the Security tab, which is shown 
in Figure 5.35. 


FIGURE 5.34 Printer Properties Sharing tab 
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FIGURE 5.35 Printer Properties Security tab 
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If you are on a public network and want others to be able to find and print 
to your shared printer, you first need to enable file and printer sharing for 
public networks. Open the Network and Sharing Center, and then click 
Change Advanced Sharing Settings on the left side. In Advanced Shar- 
ing Settings, open the Guest or Public network and click Turn On File and 
Printer Sharing, as shown in Figure 5.36. 


One other important feature to call out on this tab is the Additional Drivers button. 
This one provides a description that is fairly self-explanatory. 

Figure 5.37 shows the Ports tab. Here you can configure your printer port and add and 
delete ports. There’s also a check box to enable printer pooling. This would be used if you 
have multiple physical printers that operate under the same printer name. 


v 


If you're going to configure a printer pool, remember that all of the output 
can appear on any of the devices that are part of that pool. Make sure that 
all the printers in that pool are in the same physical location. Otherwise, 
you will have people wandering all over the office trying to find their print- 
outs. That might be entertaining for you, but not so much for them. 
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FIGURE 5.36 Turning on file and printer sharing 
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FIGURE 5.37 Printer Properties Ports tab 
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Figure 5.38 shows the important Advanced tab of the printer’s Properties dialog box. 
On this tab, you can configure the printer to be available during only certain hours of the 
day. This might be useful if you’re trying to curtail after-hours printing of non-work-related 
documents, for example. You can also configure the spool settings. For faster printing, 
you should always spool the jobs instead of printing directly to the printer. However, if the 
printer is printing garbage, you can try printing directly to it to see if the spooler is causing 
the problem. 


FIGURE 5.38 Printer Properties Advanced tab 
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Regarding the check boxes at the bottom, you will always want to print spooled 
documents first because that speeds up the printing process. If you need to maintain 
an electronic copy of all printed files, check the Keep Printed Documents check box. 
Keep in mind that this will eat up a lot of hard disk space and could potentially create a 
security risk. 

Finally, the Printing Defaults button takes you to the Printing Preferences window 
(shown earlier in Figure 5.33). The Print Processor button lets you select alternate methods 
of processing print jobs (not usually needed), and the Separator Page button lets you specify 
a file to use as a separator page (a document that prints out at the beginning of each sepa- 
rate print job, usually with the user’s name on it), which can be useful if you have several 
(or several dozen) users sharing one printer. 
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Step 4: Print a Test Page 


Once you have configured your printer, you are finished and can print a test page to test 

its output. Windows has a built-in function for doing just that—you saw links to do so in 
Figure 5.31 and Figure 5.32. Click the link or button, and Windows will send a test page to 
the printer. If the page prints, your printer is working. If not, double-check all your connec- 
tions. If they appear to be in order, then skip ahead to Chapter 14 for troubleshooting tips. 


Step 5: Verify Compatibility with Operating System 
and Applications 


Once your printer is installed and you have printed a test page, everything else should work 
well, right? That’s usually true, but it’s good practice to verify compatibility with applica- 
tions before you consider the device fully installed. 

With printers, this process is rather straightforward. Open the application you’re 
wondering about and print something. For example, open Microsoft Word, type in some 
gibberish (or open a real document, if you want), and print it. If you are running non- 
Microsoft applications (such as a computer-aided drafting program or accounting software) 
and have questions about their compatibility with the printer, try printing from those pro- 
grams as well. 


Step 6: Educate Users about Basic Functionality 


Most users today know how to print, but not everyone knows how to install the right 
printer or how to print efficiently. This can be a significant issue in work environments. 

Say your workplace has 10 different printers, and you just installed number 11. First, 
your company should use a naming process to identify the printers in a way that makes 
sense. Calling a printer HPLJ4 on a network does little to help users understand where that 
printer is in the building. Naming it after its physical location might make more sense. 

After installing the printer, offer installation assistance to those who might want to use 
the device. Show users how to install the printer in Windows (or if printer installation is 
automated, let them know that they have a new printer and where it is). Also, let the users 
know the various options available on that printer. Can it print double-sided? If so, you can 
save a lot of paper. Show users how to configure that. Is it a color printer? Do users really 
need color for rough drafts of documents or presentations? Show users how to print in 
black and white on a color printer to save the expensive color ink or toner cartridges. 

On the printer we’ve used as an example in this chapter, most of the options involv- 
ing print output are located in Preferences (refer to Figure 5.33). Two of them are on the 
Printing Shortcut tab: Duplex (or Print On Both Sides) and Print Quality (Best, Normal, 
Draft). Orientation (Portrait or Landscape) is set on the Layout tab. This printer does not 
have a collate feature, which is used if you are printing several copies of a longer docu- 
ment. Collation enables you to select whether you want it to print pages in order (1, 2, 
3... 1, 2, 3... and so on) or multiple copies of the same page at once (1, 1, 1... 2, 2, 2... 
and so forth). 

In Exercise 5.2, we'll step through the process of installing a USB printer in Windows 10. 
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Installing a USB Printer in Windows 10 

For this exercise, you will need the following items: 

= A USB printer 

= A USB printer cable 

= The software driver that came with the printer (flash drive, DVD, or downloaded) 
= A computer with a free USB port and the ability to access the driver 

1. Turn on the computer. 

2. Plug the printer into the wall outlet and turn it on. 


3. Access the driver file to begin the installation process. You can do this in one of two 
ways, as follows: 


a. Insert the DVD (or CD) into the computer's optical drive. The driver disc's autorun 
feature should automatically start the installation program. If not, click Start and 
type computer. Click the Computer desktop App under Best Match. Find the 
optical drive, and double-click the setup or install file on the disc. 


b. Double-click the setup or install program on the thumb drive or from the location 
to which you downloaded it. 


4. Follow the prompts in the installation program to install the driver. 


5. Once the software has been installed, plug one end of the USB cable into the printer 
and the other end into the free USB port. Some installation programs will prompt you 
for this step. 


6. Windows will automatically detect the new printer, install the driver, and configure it. 


Windows will display a balloon in the lower-right corner of the screen that says, “Your 
hardware is now installed and is ready to use.” If Windows doesn’t properly detect the 
printer, open the Add Printer Wizard to begin the installation process again, and manu- 
ally specify the location of the printer driver (such as the disc or thumb drive). 


7. Printa test page to see if the printer can communicate and print properly. 





& Real World Scenario 
Which Printer Did That Go To? 


One of the authors used to work at a satellite office in Salt Lake City for a company whose 
headquarters were in Houston. Because of printer problems, a new network printer had 
been installed, which had a different network name from the previous printer. 
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At the end of the month, one of the accountants printed her monthly reconciliation report, 
which typically ran about 400 pages. (A hard copy was required for regulatory reasons.) 
Puzzled when it didn’t come out of the printer, she printed it again. And again. And again. 
After the fourth failed attempt, and several hours later, she decided to ask someone in IT 
what the problem was. 


It turns out that she had mapped (installed) the new network printer but had gotten a few 
letters wrong in the printer name. Instead of being at her office, all her print jobs were 
sent to a printer in the Houston office. And, of course, there were people in Houston try- 
ing to print similar reports and who just kept refilling the printer with paper because they 
didn’t want to cut someone else’s report off in the middle. 


While this wasn’t a catastrophic failure, it was annoying. She had unintentionally wasted 
three reams of paper, the associated toner, and hours of printer life. It wasn’t a malicious 
act, and she was a literate computer user, but it’s illustrative of the need to educate and 
help users with installing and configuring devices. Had the printer been mapped correctly 
the first time, the waste could have been avoided. 





Installing and Sharing Networked Printers 


The previous section was about installing a printer attached to your local computer. There 
are advantages to that approach, such as being able to manage and control your own printer, 
not to mention having a printer at your own desk. That doesn’t happen often in the business 
world these days! 

There are some big disadvantages as well. First, it means that all users who need to print 
to your device may need local accounts on your computer, unless you are on a network 
domain. If so, you will need to manage security for these accounts and the printer. Second, 
your computer is the print server. The print server is the device that hosts the printer 
and processes the necessary printer commands. This can slow your system down. Third, 
because your computer is the print server, if for any reason it’s turned off, no one will be 
able to print to that device. 

There is another option, though. Instead of needing a specific computer to be the print 
server, why not make the print server part of the printer itself, or make it a separate network 
device that hosts the printers? That is exactly the principle behind network printing. Next, 
we will cover two types of network printing—local network printing and cloud printing—as 
well as talk about data privacy concerns with printing to public or shared printers. 


Local Network Printing 


The key to local network printing is that you are moving the print server from your com- 
puter to another location, accessible to other users on the network. Therefore, the print 
server needs a direct attachment to the network, via either a wired (RJ-45) or wireless 
connection. You will find two major varieties of print servers. The first, called an integrated 
print server, is incorporated into the printer itself, and the second is a separate hardware 
print server. If you are using a stand-alone print server, the printers attach to the print server, 


284 Chapter 5 = Installing and Configuring Printers 


either physically or logically. In most cases, if a printer is capable of connecting directly to a 
network, it has the capability to be its own print server. 

Installing and using a networked printer is very similar to installing and using a local 
printer. You need to ensure that both devices are plugged in, turned on, and attached to 
the network (either with an RJ-45 Ethernet connection or by using wireless). Probably the 
biggest difference is that when you install it, you need to tell your computer that you are 
adding a networked printer instead of a local printer. For example, in Windows 10, when 
you open the Add Printer utility (shown in Figure 5.29), you choose Add a Bluetooth, wire- 
less or other network discoverable printer instead of Add a Local Printer. From there, you 
will be asked to install the printer driver, just as if the printer were directly attached to your 
computer. Once it’s installed, you use it just as you would use a local printer, including set- 
ting the configuration options that we looked at in earlier sections. Every computer on the 
local network should be able to see and add the printer in the same way. 


PP The print server needs to have drivers available (installed) for all the types 

A: of clients that will connect to its printers. For example, if the network has 
Mac, Linux, and Windows 10 clients, the server will need to have all three 
drivers. If not, users may not be able to install the printer properly and not 
be able to print. 


There are a few other ways that you can add shared networked printers, and they are by 
using TCP, Bonjour, and AirPrint. 


TCP Printing 


Printers that are network-aware need IP addresses, so it makes sense that you can add a 
networked printer by using TCP/IP, also known as TOP printing. Exercise 5.3 walks you 
through the general process of installing a TCP printer, using Windows 10 as an example. 


Installing a TCP/IP Printer in Windows 10 
1. Connect the printer to the network and power it on. 
2. Configure the printer with an IP address, if it does not already have one. 


Most network-aware printers will have their own display panel where you can config- 
ure or verify network settings. The IP address needs to be on the same subnet as the 
computer trying to add the printer. 


3. From your Windows 10 computer, start the Add Printer Wizard. 
4. Choose Add a Printer Using a TCP/IP Address or Hostname, and then click Next. 


5. On the next screen, shown in Figure 5.39, you have a few options. One is to let the 
system automatically detect the device. If so, leave Device Type as Autodetect and 
click Next. Otherwise, set Device Type to TCP/IP Device and move to the next step. 
For this exercise, let's do the latter. 
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FIGURE 5.39 Adding an IP printer 
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6. Enter the IP address (or hostname) of the printer that you want to add, add a port 
name (it’s just for identification), and then click Next. 


7. Select the make and model of your printer from the list. 


8. You will be prompted to install the driver; continue installing the printer as you would 
any other local or networked printer. 


Some installations will ask you which TCP printing protocol you want to use, RAW or 
LPR. RAW (also called the Standard TCP/IP Port Monitor) is the default, and it uses TCP port 
9100. It also uses the Simple Network Management Protocol (SNMP) for bidirectional com- 
munication between the computer and the printer. LPR is older, and the protocol is included 
for use with legacy systems. It’s limited to source ports 721-731 and the destination port 515. 


DPO We will discuss ports and port numbers in Chapter 7, “Introduction to 
OTE TCP/IP.” 


After the printer is installed, it will appear in your Printers & Scanners window, just as 
any other printer would. 

There are a few advantages to using TCP printing. First, it sends the print jobs directly 
to the printer, so your system does not need to act as the print server or spend processing 
time dealing with formatting the print job. Second, it allows clients with different OSs, 
such as Linux or macOS, to add printers without worrying about intra-OS conflicts. 
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Bonjour 


Apple introduced Bonjour in 2002 (then under the name Rendezvous) as an implemen- 
tation of zero configuration networking. It’s designed to enable automatic discovery of 
devices and services on local networks using TCP/IP as well as to provide hostname reso- 
lution. Currently, it comes installed by default on Apple’s macOS and iOS operating sys- 
tems. Bonjour makes it easy to discover and install printers that have been shared by other 
Bonjour-enabled clients on the network. 

Even though Apple developed Bonjour, it does work on other operating systems. For 
example, it comes with iTunes and the Safari browser, so if you have either of those 
installed on a Windows computer, odds are that you have Bonjour as well. Once installed, 
the Bonjour service starts automatically and scans the network looking for shared devices. 
Exercise 5.4 shows you how to see if Bonjour is installed in Windows. 


Determining if Bonjour Is Installed in Windows 


1. Click Start, type services, and then click Services under Best Match. The Services 
window will open. 


2. Sort the list by name and look for the Bonjour service, as shown in Figure 5.40. 


FIGURE 5.40 Bonjour service is running and set to start automatically. 
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Bonjour works only on a single broadcast domain, meaning that it will not find a printer 
or other device if it’s on the other side of a router from your computer. All major printer 
manufacturers support Bonjour technology. 
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If you are using a Mac, adding a Bonjour printer is easy. You open System Preferences > 
Print And Scan, click the plus sign under Printers to open the Add Printer window, and 
look for the printer on the list. If the Mac doesn’t have the driver available, you will be 
asked to provide it. Otherwise, you’re done. 

In order to add or share a Bonjour printer from Windows, you need to download Bonjour 
Print Services for Windows. It’s found on Apple’s support site at https: //support.apple 
.com/kb/d1999. 


AirPrint 


The one big complaint that Apple aficionados had about Bonjour was that it didn’t support 
printing from iPhones or iPads. In 2010, Apple introduced AirPrint to meet that need. 

The idea behind AirPrint is quite simple. Mobile devices can automatically detect 
AirPrint-enabled printers on their local network and print to them without requiring the 
installation of a driver. To be fair, what Apple really did was eliminate the need for a spe- 
cific printer driver to be installed on the client and replaced it with the AirPrint concept. 
Then it was up to the printer manufacturers to develop their own drivers that talked to 
AirPrint. HP was happy to oblige with its Photosmart Plus series, and other manufacturers 
soon followed. The list of AirPrint-enabled printers is available at https: //support.apple 
.com/en-us/HT201311. From the end-user standpoint, though, no driver is required. 

There really is no installation process, and printing is easy. Just be sure that your mobile 
device is on the same local network as an AirPrint printer. When you attempt to print from 
your device, select the printer to which you want to print, and it should work. 


2 You can also purchase AirPrint servers, which are small print servers that 
‘GQ enable you to connect almost any printer to the network and make them 
AirPrint compatible. 


Cloud Printing 


Through the first decade of the 2000s, it seemed like wireless networking was the hot new 
trend in computing. Now that technology has matured a bit, and the cloud has replaced it 
as the trend du jour. Not everyone knows what the cloud is or what the cloud does, but they 
think they are supposed to have it. The cloud would be a sad place if it didn’t support print- 
ing, but, fortunately for us, it does. 


PP We will provide details on the cloud in Chapter 9, “Network Services, Virtu- 
Pn alization, and Cloud Computing.” 


For the purpose of this chapter, know that cloud printing means printing to a remote 
device, one that is not necessarily located on your local network. Essentially, you are using 
the Internet to send the print job from your device to the printer from which you want the 
output to come, and the printer can be located practically anywhere in the world. To use 
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cloud printing, you need to work through a cloud printing service, such as Google Cloud 
Print, HP ePrint, or others. Some printers are cloud-ready, but you can often get older 
devices to work on the cloud as well. 

Cloud services will have their own steps on how to activate printing. In Exercise 5.5, we 
will go through an example using Google Cloud Print. 


Enabling Google Cloud Print 
1. If you do not already have a Google account, you will need to create one. 


2. Log into your Google account and visit https: //www. google.com/cloudprint/ 
#printers, as shown in Figure 5.41. 


FIGURE 5.41 Google Cloud Print 
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You can see on the left of the figure that you have options to add a classic printer or a 
cloud-ready printer. 
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3. For this example, we will add a cloud-ready printer. Click the link that says Add a 
Cloud-Ready Printer. 
You will be directed to an information page, which lists cloud-ready printers. 
4. Find your brand in the list, and click it to see instructions on how to add the printer, 
similar to what is shown in Figure 5.42. 
FIGURE 5.42 Instructions for adding an HP printer 
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If you scroll down in the instructions for an HP printer, it will say to make sure that 
you have an active HP ePrint email address, and then they provide a link to click to 


associate your printer with Google Cloud Print. Follow the steps listed. 


Enter the printer's email address and click Connect My Printer. 


After a moment, you will see that the printer has been registered with Google 


Cloud Print. 


After registering your printer, you can print from Google Cloud Print, as shown in 
Figure 5.43. Notice that the printer is now installed in the right pane. Exercise 5.6 shows 
you how to print to Google Cloud Print using the Chrome browser. 
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FIGURE 5.43 Printers registered with Google Cloud Print 





Qin — o x 
© Google Cloud Print x Wa 
€ C 0 | @ Secure | https://www.google.com/cloudprint?authuser=3#printe xr : 
Seas Em 2 0@ 
Cloud Print ©% | stare c 1-303 


| Pem | = HP5530 (HP ENVY 5530 series) Owned by me 


ov GA Quicken PDF Printer Owned by me 


| Printers & Save to Google Drive 


Google Cloud Print Home 
Add a Cloud-Ready Printer 


Add a Classic Printer 


©Google Terms of Service Privacy Policy Press 











Printing from Google Cloud Print 
1. Open Google Cloud Print, as shown in Figure 5.43. 
2. Click the red Print button. 
You will be asked if you want to upload a file to print or choose other ways to print. 


3. If the file is on your machine, choose the first option. If you are looking to print from 
Chrome or another Google Cloud Print-enabled app, choose the second. In this 
example, we will choose the first. 


4. Anew window pops up with a link to select a file from your computer. Click the link 
and choose a file. 


You will be taken back to the list of available printers. 
5. Click the printer to which you'd like to print. 


You will see print options, such as collate, color, number of copies, size, orientation, 
pages to print, and quality, similar to what is shown in Figure 5.44. 
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FIGURE 5.44 Google Cloud Print options 
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6. Choose your options and click Print. 


The steps involved to print directly from client computers differ based on the client you 


are using. Table 5.1 provides information to get you started in the right direction. 
TABLE 5.1 Google Cloud Print OS client options 


Client Option 





Windows Go to https: //tools.google.com/dlpage/cloudprintdriver to 
download the print client. After installation, Google Cloud Printer will 
appear in your list of printers when you print from an application. 


macOS Download Cloud Printer from the Mac App Store. 


Linux Printers that are installed on a CUPS printing system can be connecte 
using the Google Cloud Print CUPS Connector. See https: //support 
. google.com/a/answer/2906017?h1=en for more information. 


Android Android should natively support Google Cloud Print; if not, download 
the Google Drive Android app from Google Play or use a third-party 
app, such as PrinterShare Mobile Print or Easy Cloud Print. 


iOS Download PrintCentral Pro, gCloud Print, or other apps from iTunes. 


d 
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Earlier we mentioned HP’s ePrint capability. Of course, this works only if you pur- 
chased an HP cloud-ready printer. If it’s cloud-ready, it will have an icon on it that looks 
like a printer with a wireless signal coming from it (the bottom icon on the right side of 
Figure 5.45), and you can configure it with an email address@hpeprint.com. Printer set- 
tings, including the email address and security related to who can print to the printer, can 
be managed at www. hpconnected.com. If you have access, it’s very easy to print. Simply 
email what you want printed to the email address of your printer, and it will print. 


FIGURE 5.45 HPePrint information 





Data Privacy Concerns 


When printing to a public printer, or one that is shared in a common workspace, there may 
be data privacy concerns. For example, employees in Human Resources might need to print 
confidential personnel files, or someone in the Mergers group might have a highly restricted 
contract to print. 

Several printer manufacturers, including Brother, Canon, HP, and Xerox, offer a feature 
called Secure Printing (or Private Printing) on many of their office printers. When users 
print, they need to go into the printer preferences (or a similar place) and indicate that it’s 
a secure print job. They are then asked to enter a PIN and, finally, print the document. The 
document will not print until they physically go to the printer and enter the PIN. 

Another security issue is storing print jobs on print servers. Print jobs are cached on the 
print server (it’s called hard drive caching), and they can be saved indefinitely. We looked 
at the check box to keep printed documents in Figure 5.38. If you are configuring a printer 
for a public area, do not select this option. If you’re printing to a public printer (such as at 
a hotel), and you can see the printer properties, check to make sure that this option is not 
selected. That will help ensure that your files will not be cached on the hotel computer’s 
hard drive. 


Performing Printer Maintenance 


Considering the amount of work they do, printers last a pretty long time. Some printers 
handle over 100,000 pages per month, yet they’re usually pretty reliable devices. You can 
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help your printers live long and fulfilling lives by performing the right maintenance, and 
smoothly running printers always make your officemates happy. After all, going to get your 
print job from the printer and discovering that the printer is in the shop is a very frustrating 
experience! 

Regardless of the type of printer you use, giving it a regular check-up is a good idea. 
You're probably familiar with some of the activities that fall under maintenance, such as 
replacing paper, ink, or toner cartridges. We’ll look at those as well as some additional, 
more involved maintenance procedures. 


Replacing Consumables 


To maintain a printer properly, you need to replace consumables such as toner or ink 
cartridges, assemblies, filters, and rollers on occasion. Trying to cut costs by buying cheaper 
supplies rarely pays off. 

Whenever purchasing supplies for your printer, always get supplies from the manufac- 
turer or from an authorized reseller. This way, you’ll be sure that the parts are of high qual- 
ity. Using unauthorized parts can damage your printer and possibly void your warranty. 


Printer Paper 


Most people don’t give much thought to the kind of paper they use in their printers. It’s a 
factor that can have a tremendous effect on the quality of the hard-copy printout, however, 
and the topic is more complex than people think. For example, the wrong paper can cause 
frequent paper jams and possibly even damage components. 

Several aspects of paper can be measured; each gives an indication as to the paper’s qual- 
ity. The first factor is composition. Paper is made from a variety of substances. Paper used 
to be made from cotton and was called rag stock. It can also be made from wood pulp, 
which is cheaper. Most paper today is made from the latter or a combination of the two. 

Another aspect of paper is the property known as basis weight (or simply weight). The 
weight of a particular type of paper is the actual weight, in pounds, of a ream (500 sheets) 
of the standard size of that paper made of that material. For regular bond paper, that size is 
17 X22: 

The final paper property we’ll discuss is the caliper (or thickness) of an individual sheet 
of paper. If the paper is too thick, it may jam in feed mechanisms that have several curves 
in the paper path. On the other hand, a paper that’s too thin may not feed at all. 

These are just three of the categories we use to judge the quality of paper. Because there 
are so many different types and brands of printers as well as paper, it would be impossible 
to give the specifications for the “perfect” paper. However, the documentation for any 
printer will give specifications for the paper that should be used in that printer. 

Many impact printers need to use special paper that has tractor feed perforations on the 
side, or they will not work properly. When replacing tractor feed paper, it’s very easy to get 
it misaligned, and it will feed crookedly and ultimately jam the printer. Similarly, thermal 
printers also require special paper that needs to be loaded properly. In many cases, if you 
load it upside down, the unit will not produce images. By comparison, adding paper to a 
laser or inkjet printer is usually very easy. 
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For best results, store paper in an area where it will not get wet or be 
OTE exposed to excessive humidity. 


Ink and Toner 


The area in which using recommended supplies is the biggest concern is ink and toner cartridg- 
es. Using the wrong ink or toner supplies is the easiest way to ruin a perfectly good printer. 
Dot-matrix printers use a cloth or polyester ribbon soaked in ink and coiled up inside 
a plastic case. This assembly is called a printer ribbon (or ribbon cartridge). Once the rib- 
bon has run out of ink, it must be discarded and replaced. Ribbon cartridges are developed 
closely with their respective printers. For this reason, ribbons should be purchased from 
the same manufacturer as the printer. The wrong ribbon could jam in the printer as well as 
cause quality problems. 


P It is possible to re-ink a ribbon. Some vendors sell a bottle of ink solution 
‘i that can be poured into the plastic casing, where the cloth ribbon will soak 
up the solution. This can be a messy process, and you should do this only 
if the manufacturer recommends it. 


Inkjet cartridges have a liquid ink reservoir. The ink in these cartridges is sealed inside. 
Once the ink runs out, the cartridge must be removed and discarded. A new, full cartridge 
is installed in its place. Because the ink cartridge contains the printing mechanism as well 
as ink, it’s like getting a new printer every time you replace the ink cartridge. 

In some inkjet printers, the ink cartridge and the print head are in separate assemblies. 
This way, the ink can be replaced when it runs out, and the print head can be used several 
times. This works fine if the printer is designed to work this way. However, some people 
think that they can do this on their integrated cartridge/print head system, using special 
ink cartridge refill kits. These kits consist of a syringe filled with ink and a long needle. The 
needle is used to puncture the top of an empty ink cartridge, and the syringe is then used to 
refill the reservoir. 


ING kits (the ones you see advertised with a syringe and a needle). First, the 
kits don’t use the same kind of ink that was originally in the ink cartridges. 
The new ink may be thinner, causing it to run out or not print properly. 
Also, the print head is often supposed to be replaced around this same 
time. Refilling the cartridge doesn’t replace the print head, so you'll have 
print-quality problems. Finally, the hole the syringe leaves cannot be 
plugged and may allow ink to leak out. These problems can happen with 
do-it-yourself kits as well as with cartridges refilled by office supply stores 
or private printer supply sellers. Here’s the bottom line: Buy new ink car- 
tridges from the printer manufacturer. Yes, they are a bit more expensive, 
but in the long run you will save money because you won't have any of the 
problems described here. 


cat Do not use ink cartridge refill kits! There are several problems with these 
N 
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The final type of consumable is toner. Each model of laser printer uses a specific toner car- 
tridge. You should check the printer’s manual to see which toner cartridge your printer needs. 
Many businesses will recycle your toner or ink cartridges for you, refill them, and sell them 
back to you at a discount. Don’t buy them. While some businesses that perform this “service” 
are more legitimate than others, using recycled parts is more dangerous to your hardware 
than using new parts. The reason for this is that refilled cartridges are more likely to break 
or leak than new parts, and this leakage could cause extensive damage to the inside of your 
printer. And again, using secondhand parts can void your warranty, so you’re left with a bro- 
ken printer that you have to pay for. Avoid problems like this by buying new parts. 








GD Real World Scenario 
Think Before You Refill 


Just as with ink cartridges, you should always buy the exact model of toner cartridge 
recommended by the manufacturer. The toner cartridges have been designed specifically 
for a particular model. Additionally, never refill toner cartridges, for most of the same 
reasons we don’t recommend refilling ink cartridges. The printout quality will be poor, 
and the fact that you're just refilling the toner means that you might not be replacing the 
photosensitive drum (which is usually inside the cartridge), and the drum might need to 
be replaced. 


Simply replacing refilled toner cartridges with proper, name-brand toner cartridges has 
solved most laser printer quality problems that we have run across. We keep recom- 
mending the right ones, but clients keep coming back with the refilled ones. The result is 
that we take our clients’ money to solve their print-quality problems when all it involves 
is a toner cartridge, our (usually repeat) advice to buy the proper cartridge next time, and 
the obligatory minimum charge for a half hour of labor (even though the job of replacing 
the cartridge takes all of 5 minutes). 





Always properly recycle your used ink and toner cartridges. Just don’t buy 
P recycled cartridges! 


Performing Scheduled Maintenance 


When shopping for a printer, one of the characteristics you should look for is the printer’s 
capacity, which is often quoted in monthly volume. This is particularly important if the 
printer will be serving in a high-load capacity. Every printer needs periodic maintenance, 
but printers that can handle a lot of traffic typically need it less frequently. Check the printer 
specifications to see how often scheduled maintenance is suggested. Never, ever fall behind 
on performing scheduled maintenance on a printer. 
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Many laser printers have LCD displays that provide useful information, such as error 
messages or notices that you need to replace a toner cartridge. The LCD display will also 
tell you when the printer needs scheduled maintenance. How does it know? Printers keep 
track of the number of pages they print, and when the page limit is reached, they display 
a message, usually something simple like Perform user maintenance. The printer will still 
print, but you should perform the maintenance. 

Being the astute technician that you are, you clean the printer with the recommended 
cleaning kit or install the maintenance kit that you purchased from the manufacturer. 
Now, how do you get the maintenance message to go away? Reset the page count using a 
menu option. For example, on many HP laser printers, you press the Menu button until 
you get to the Configuration menu. Once there, you press the Item key until the dis- 
play shows Service Message = ON. Then press the plus key (+) to change the message to 
Service Message = OFF. Bring the printer back online, and you’re ready to go. 


PP When performing maintenance on an impact printer, always carefully 
A: inspect the print head for damage. Replace damaged print heads with 
authorized parts from the manufacturer. 


Performing routine maintenance will keep the printer clean, make it last longer, and help 
prevent annoying paper jams. 


Using Cleaning Solutions 


With all of the ink or toner they use, printers get dirty. If printers get too dirty or if the print 
heads get dirty, you’ll notice print problems. No one wants this to happen. 

Most printers have a self-cleaning utility that is activated through a menu option or 
by pressing a combination of buttons on the printer itself. It’s recommended that you run 
the cleaning sequence every time you replace the toner or ink cartridges. If you experience 
print-quality problems, such as lines in the output, run the cleaning routine. 

Sometimes, the self-cleaning routines aren’t enough to clear up the problem. If you are 
having print-quality issues, you might want to consider purchasing a cleaning or mainte- 
nance kit, which frequently comes with a cleaning solution. 


P Cleaning kits are often designed for one specific type of printer and should 
‘i be used only on that type of printer. For example, don’t apply an inkjet 
cleaning solution to a laser printer. 


Each cleaning kit comes with its own instructions for use. Exercise 5.7 walks you 
through the steps of using an inkjet cleaning solution. Note that the steps for your printer 
might differ slightly; please consult your manual for specific instructions. After using a 
cleaning kit on a laser or inkjet printer, it’s best to perform a calibration per the printer’s 
instructions. 
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Using an Inkjet Cleaning Solution 


1. Power on the printer, and open the top cover to expose the area containing the print 
cartridges. 


2. Initiate a self-cleaning cycle. When the print head moves from its resting place, pull 
the AC power plug. This lets you freely move the print heads without damaging 
them. 


3. Locate the sponge pads on which to apply the cleaning solution. 
They'll be in the area where the print heads normally park. 
4. Use a cotton swab or paper towel to gently soak up any excess ink in the pads. 


5. Using the supplied syringe, apply the cleaning solution to the sponge pads until they 
are saturated. 


6. Plug the printer back into the wall outlet, and turn it on. The print heads will park 
themselves. 


7. Turn the printer back off. Let the solution sit for at least 3 hours. 
8. Power the printer back on, and run three printer cleaning cycles. 


9. Print a nozzle check pattern (or a test page) after each cleaning cycle to monitor the 
cleaning progress. 


That should take care of it. If not, refer to your printer’s manual for more instructions. 


Thermal printers require special attention because they contain a heating element. 
Always unplug the device and ensure that it’s cooled off before trying to clean it. Thermal 
printer cleaning cards, cleaning pens, and kits are widely available in the marketplace. If 
you need to remove any debris (from any printer), use compressed air or a specialized com- 
puter vacuum. 


Ensuring a Suitable Environment 


Printers won’t complain if the weather outside is too hot or too cold, but they are sus- 
ceptible to environmental issues. Here are some things to watch out for in your printer’s 
environment: 


Heat Laser printers can generate a lot of heat. Because of this, ensure that your laser 
printer is in a well-ventilated area. Resist the temptation to put the laser printer in the little 
cubbyhole in your desk. Overheating will reduce the shelf life of your printer. 


Humidity High humidity can cause printer paper to stick together. Sticky paper leads to 
paper jams. Humidity over 80 or 90 percent can cause issues. 
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Light The laser printer’s toner cartridge contains a photosensitive drum. Exposing that 
drum to light could ruin the drum. While the drum is encased in plastic, it’s best to avoid 
exposing the printer or toner cartridges to extreme light sources. Under no circumstance 
should you open the toner cartridge, unless you’re ready to get rid of it as well as clean up a 
big mess. 


Ozone Laser printers that use corona wires produce ozone as a by-product of the printing 
process. In offices, ozone can cause respiratory problems in small concentrations, and it can 
be seriously dangerous to people in large amounts. Ozone is also a very effective oxidizer 
and can cause damage to printer components. 


Fortunately, laser printers don’t produce large amounts of ozone, and most laser printers 
have an ozone filter. Ozone is another reason to ensure that your printer area has good venti- 
lation. Also, replace the ozone filter periodically; check your printer’s manual for recommen- 
dations on when to do this. 


Ammonia A printer doesn’t produce ammonia, but it is contained in many cleaning prod- 
ucts. Ammonia can greatly reduce the printer’s ability to neutralize ozone and can cause 
permanent damage to toner cartridges. It’s best to avoid using ammonia-based cleaners near 
laser printers. 


Installing Printer Upgrades 


The printer market encompasses a dizzying array of products. You can find portable printers, 
photo printers, cheap black-and-white printers for under $30, high-end color laser print- 

ers for over $5,000, and everything in between. Most of the cheaper printers do not have 
upgrade options, but higher-end printers will have upgrade options, including memory, net- 
work cards, and firmware. Let’s examine some ways that you can upgrade a slower printer 
or add functionality without breaking the bank. 


PP Most of the upgrades discussed here are for laser printers only. Inkjets are 
‘GQ less expensive and usually not upgradeable. 


Installing Printer Memory 


When purchasing a memory upgrade for your printer, you need to make sure of two things. 
First, buy only memory that is compatible with your printer model. Most printers today use 
a standard computer dual in-line memory module (DIMM), but check your manual or the 
manufacturer’s website to be sure. If you’re not sure, purchasing the memory through the 
manufacturer’s website (or an authorized reseller) is a good way to go. Second, be sure that 
your printer is capable of a memory upgrade. It’s possible that the amount of memory in 
your printer is at the maximum that it can handle. 
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Once you have obtained the memory, it’s time to perform the upgrade. The specific steps 


required to install the memory will depend on your printer. Check the manual or the manu- 
facturer’s website for instructions tailored to your model. 


Exercise 5.8 walks you through the general steps for installing memory into a laser printer. 


Installing Memory into a Laser Printer 


1. 
2. 


o 9 N ® 


Turn off the printer. 
Disconnect all cables from the printer (power and interface cables). 
Find the area in which you need to install the memory. 


On most HP LaserJet printers, this is in the back, on a piece of hardware called the 
formatter board. Tabs near the top and bottom of the board hold the formatter board in. 
Remove the formatter board from the printer. Other brands have different configura- 
tions. For example, on many Xerox laser printers, you remove a panel on the top of the 
unit (underneath the paper output tray) to get to the memory. 


If your printer requires you to remove a component (such as the formatter board) to 
upgrade the memory, place that component on a grounded surface, such as an anti- 
static work mat. 


If you are replacing an existing memory module, remove the old module, being care- 
ful not to break off the latches at the end of the module that hold it in. 


Insert the new memory module, making sure that any alignment notches on the 
memory module are lined up with the device before inserting the memory module. 


Replace the removable component (if necessary). 
Reconnect the power and interface cables. 
Power on the printer. 


Follow the printer manual’s instructions for running a self-test to ensure that the 
memory is recognized. 


Some printers require that you manually enable the added memory. Here are the steps to 
do that in Windows: 


1. 
2. 


Open the Printers & Scanners app (or Devices and Printers in Windows 7 and 8). 


Click the printer and choose Manage. (In Windows 7 and 8, right-click the printer and 
choose Properties.) 


On the Device Settings tab, click Printer Memory in the Installable Options section, as 
shown in Figure 5.46. 
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EXERCISE 5.8 (continued) 


FIGURE 5.46 Printer installable options 
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4. Select the amount of memory that is now installed. 


5. Click OK. 


Installing a Network Interface Card 


Installing a NIC directly into a printer has become popular as more and more people need 
their printers to be on the network but don’t want to hassle with a host computer. The NIC 
in a printer is similar to the NIC in a computer, with a couple of important differences. First, 
the NIC in a printer has a small processor on it to perform the management of the NIC 
interface (functions that the software on a host computer would do). This software is usu- 
ally referred to as a print server, but be careful because that term can also refer to a physical 
computer that hosts many printers. Second, the NIC in a printer is proprietary, for the most 
part—that is, the same manufacturer makes the printer and the NIC. 

When a person on the network prints to a printer with a NIC, they are printing right 
to the printer and not going through any third-party device (although in some situations, 
that is desirable and possible with NICs). Because of its dedicated nature, the NIC option 
installed in a printer makes printing to that printer faster and more efficient—that NIC is 
dedicated to receiving print jobs and sending printer status to clients. 
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Most printer NICs come with management software installed that allows 
TE clients to check their print jobs’ status as well as toner levels from any 
computer on the network. You access the configuration options by typing 


the IP address of the printer into your web browser and generally entering 
an authorized username and password. 


Your manual is the best place to check to see if you can install a print server—internal 
ones look like regular expansion cards. Specific steps for installing the print server will also 
be in the manual or on the manufacturer’s website. Generally speaking, it’s very similar to 
installing a NIC into a computer. Figure 5.47 shows an internal HP print server. 


FIGURE 5.47 HP print server expansion card 


hp jeldirect 635n 
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Upgrading Printer Firmware 


As with upgrading memory, methods to upgrade a printer’s firmware depend on the model 
of printer. Most of the time, upgrading a printer’s firmware is a matter of downloading and/ 
or installing a free file from the manufacturer’s website. Printer firmware upgrades are gener- 
ally done from the machine hosting the printer (again, usually called the print server). 

Firmware is usually upgraded for one of two reasons. One, if you are having compatibil- 
ity issues, a firmware upgrade might solve them. Two, firmware upgrades can offer newer 
features that are not available on previous versions. 


Installing Other Upgrades 


While we’ve covered some of the most important upgrades, most printers (especially laser 
printers) can be upgraded with additional capabilities as well. Each manufacturer, with the 
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documentation for each printer, includes a list of all of the accessories, options, and upgrades 
available. The following options can be included on that list: 


= Hard drives 
= Trays and feeders 


a Finishers 


Hard Drives 


For a printer to print properly, the type style, or font, being printed must be downloaded to 
the printer along with the job being printed. Desktop publishing and graphic design busi- 
nesses that print color pages on slower color printers are always looking for ways to speed 
up their print jobs, so they install multiple fonts into the onboard memory of the printer to 
make them printer-resident fonts. There’s a problem, however: Most printers have a limited 
amount of storage space for these fonts. To solve this problem, printer manufacturers made 
it possible for hard drives to be added to many printers. The hard drives can be used to store 
many fonts used during the printing process and are also used to store a large document file 
while it is being processed for printing. 


Trays and Feeders 


One option that is popular in office environments is the addition of paper trays. Most laser 
and inkjet printers come with at least one paper tray (usually 500 sheets or fewer). The addi- 
tion of a paper tray allows a printer to print more sheets between paper refills, thus reducing 
its operating cost. In addition, some printers can accommodate multiple paper trays, which 
can be loaded with different types of paper, stationery, and envelopes. The benefit is that you 
can print a letter and an envelope from the same printer without having to leave your desk 
or change the paper in the printer. 

Related to trays is the option of feeders. Some types of paper products need to be 
watched as they are printed to make sure that the printing happens properly. One 
example is envelopes: You usually can’t put a stack of envelopes in a printer because they 
won’t line up straight or they may get jammed. An accessory that you might add for this 
purpose is the envelope feeder. An envelope feeder typically attaches to the front of a 
laser printer and feeds in envelopes, one at a time. It can hold usually between 100 and 
200 envelopes. 


Finishers 


A printer’s finisher does just what its name implies: It finishes the document being printed. 
It does this by folding, stapling, hole punching, sorting, or collating the sets of documents 
being printed into their final form. So rather than printing out a bunch of paper sheets 
and then having to collate and staple them, you can have the finisher do it. This particular 
option, while not cheap, is becoming more popular on laser printers to turn them into 
multifunction copiers. As a matter of fact, many copiers are now digital and can do all 
the same things that a laser printer can do but much faster and for a much cheaper cost 


per page. 
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Summary 


In this chapter, we discussed how different types of printers work as well as the most com- 
mon methods of connecting them to computers. You learned how computers use page-de- 
scription languages to format data before they send it to printers and drivers to talk to them. 
You also learned about the various types of consumable supplies and how they relate to each 
type of printer. 

The most basic category of printer currently in use is the impact printer. Impact printers 
form images by striking something against a ribbon, which in turn makes a mark on the 
paper. You learned how these printers work and the service concepts associated with them. 

One of the most popular types of printer today is the inkjet printer, so named because of 
the mechanism used to put ink on the paper. 

The most complex type of printer is the laser printer. The A+ 220-1001 exam covers this 
type of printer more than any other. You learned about the steps in the electrophotographic 
(EP) process, the process that explains how laser printers print. We also explained the vari- 
ous components that make up this printer and how they work together. 

Virtual printing has become more popular in recent years, with people choosing to out- 
put electronic PDF files instead of physical paper. 

3D printers are relatively new to the market. They’re not printers in the sense that they 
put ink to paper. They’re actually fabricators, which make 3D objects out of material called 
filament. 

You then learned about the interfaces used to connect printers to PCs and how to install 
and share a printer. Proper steps include connecting the device, installing the driver, con- 
figuring options, validating application and operating system compatibility, and educating 
users on how to use the device. Installing the device is the first step, but you’re not done 
until you ensure that it works properly and that users know how to access it. 

Installing network printers usually involves a few more steps than are needed to install 
local printers, and the device is connected to the network instead of to a host. Cloud print- 
ing is becoming more popular with the flexibility it offers, but installing cloud printers is an 
entirely different process from installing local and networked printers. 

Finally, we looked at how to perform printer maintenance, including the importance of 
using recommended supplies and various types of upgrades you can install in printers. 
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Know the differences between types of printer technologies (for example, laser, inkjet, thermal, 
impact). Laser printers use a laser and toner to create the page. Inkjet printers spray ink onto 
the page. Thermal printers use heat to form the characters on the page. Impact printers use a 
mechanical device to strike a ribbon, thus forming an image on the page. 
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Understand the basics of how 3D printers create objects. 3D printers use filament. It’s most 
often plastic but can be made of other material, such as aluminum or copper. The printer 
uses an extruder to heat the filament and then creates 3D objects by stacking thin layers of 
filament on top of each other. 


Know the names, purposes, and characteristics of interfaces used by printers, including 
port and cable types. Most printers today use the same interfaces, no matter what their 
type. Printers use serial, parallel, USB, Ethernet, Wi-Fi, or Bluetooth to connect to their host 
computers. By far the most common is USB. 


Know how to install and configure printers. The basic procedure is as follows: 
1. Attach the device using a local or network port and connect the power. 

Install and update the device driver and calibrate the device. 

Configure options and default settings. 


Print a test page. 
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Verify compatibility with the operating system and applications. 
6. Educate users about basic functionality. 


Know the seven steps in the laser imaging process. The seven steps are processing, charging, 
exposing, developing, transferring, fusing, and cleaning. 


Know the four kinds of virtual printing Virtual printing options include print to file, print 
to PDE, print to XPS, and print to image. 


Understand the importance of using recommended supplies. Using consumables (paper, 
ink, toner) that are recommended for your printer is important. Using bad supplies could 
ruin your printer and void your warranty. 


Understand how to upgrade printer memory and firmware. Printer memory is upgraded by 
installing an additional or replacement memory module. To do this, you must remove a panel 
from the printer. The specific steps depend on your printer model. Firmware is upgraded by 
downloading a file from the manufacturer’s website and installing it. Some printers require 
that you manually enable the added memory. 


Know what environmental hazards to watch out for around printers. Heat, excessive light, 
ozone, and ammonia are all bad things for printers to be around. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. Which voltage is applied to the paper to transfer the toner to the paper in an EP process 
laser printer? 


A. +600VDC 
B. -600VDC 
C. +6000VDC 
D. -6000VDC 


2. Which types of printers are referred to as page printers because they receive their print job 
instructions one page at a time? (Choose two.) 


A. Daisy-wheel 
Dot-matrix 
Inkjet 

Laser 
Thermal 
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3. Which of the following is not an advantage of a Universal Serial Bus (USB) printer interface? 
A. It has a higher transfer rate than a serial connection. 
B. It has a higher transfer rate than a parallel connection. 
C. It automatically recognizes new devices. 


D. It allows the printer to communicate with networks, servers, and workstations. 


4. Which type of printers can be used with multipart forms? 
A. Inkjet printers 
B. Laser printers 
C. Thermal printers 
D. Dot-matrix printers 

5. Which step in the EP imaging process uses a laser to discharge selected areas of the 
photosensitive drum, thus forming an image on the drum? 
A. Exposing 
B. Transferring 
C. Developing 
D. Cleaning 


6. Which of the following is fed through an extruder on a 3D printer to create objects? 
A. Plastic 
B. Metal 
C. Filament 
D 


Extrusion powder 
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10. 


11. 


12. 


13. 


Chapter 5 = Installing and Configuring Printers 


What voltage does the corona wire or corona roller hold? 


A. +600VDC 
B. -600VDC 
Cc. OVDC 

D. -100VDC 


Which device in an inkjet printer contains the print head? 
A. Toner cartridge 

B. Ink cartridge 

C. Daisy wheel 

D. Paper tray 


What is the correct order of the steps in the EP imaging process? 

A. Developing, exposing, transferring, fusing, charging, cleaning, processing 
B. Charging, processing, exposing, developing, transferring, fusing, cleaning 
C. Processing, transferring, exposing, developing, charging, cleaning, fusing 
D. Processing, charging, exposing, developing, transferring, fusing, cleaning 


Most printers that use the electrophotographic process contain how many standard 
assemblies? 


A. Five 
B. Six 
C. Four 
D. Nine 


What is typically included in the EP laser printer toner cartridge? (Choose three.) 
A. Toner 

B. Print drum 

C. Laser 

D. Cleaning blade 


What happens during the developing stage of laser printing? 

A. An electrostatic charge is applied to the drum to attract toner particles. 
B. Heat is applied to the paper to melt the toner. 

C. The laser creates an image of the page on the drum. 


D. An electrostatic charge is applied to the paper to attract toner particles. 


Which of the following are possible interfaces for printers? (Choose three.) 
A. Parallel 

B. SATA 

C. USB 

D. Network 


14. 


15. 


16. 


17. 


18. 


19. 


20. 
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You have just installed a new printer, but it prints only garbled text. Which of the following 
is likely the problem? 


A. Wrong IP address 

B. Worn print head 

C. Incorrect printer drivers 

D. Unsupported printer 

Which printer contains a wheel that looks like a flower with raised letters and symbols on 
each “petal”? 

A. Inkjet printer 

B. Daisy-wheel printer 

C. Dot-matrix printer 


D. Laser printer 


What part of a laser printer supplies the voltages for charging and transferring corona assemblies? 
A. High-voltage power supply (HVPS) 

B. DC power supply (DCPS) 

C. Controller circuitry 

D. ‘Transfer corona 

Which printer part gets the toner from the photosensitive drum onto the paper? 

A. Laser-scanning assembly 

B. Fusing assembly 


C. Corona assembly 


D. Drum 

Which step in the laser printer printing process occurs immediately after the exposing phase? 
A. Charging 

B. Fusing 


C. Transferring 


D. Developing 


Which laser printer component permanently presses the toner into the paper? 

A. Transfer corona 

B. Fuser assembly 

C. Printer controller circuitry 

D. Paper transport assembly 

Which of the following most accurately describes how to obtain a firmware upgrade for 
your laser printer? 

A. Download the firmware upgrade for free from the manufacturer’s website. 

B. Pay to download the firmware upgrade from the manufacturer’s website. 

C. Have a certified laser printer technician come to your site and install a new firmware chip. 
D 


Contact the manufacturer of the printer, and they will send you the firmware upgrade 
ona DVD. 
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Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answer compares to the authors’, refer to 
Appendix B. 


Your network has several inkjet printers in use. A user is complaining that their docu- 
ments are consistently printing with extra smudges along the lines of print on one of them. 
What steps would you take to clean the printer? 


CompTIA® A+® Complete Study Guide, Fourth Edition 
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THE FOLLOWING COMPTIA A+ 220-1001 
EXAM OBJECTIVES ARE COVERED IN THIS 
CHAPTER: 


y 2.2 Compare and contrast common networking hard- 
ware devices. 


a Routers 
a Switches 
= Managed 
a Unmanaged 
a Access points 
a Cloud-based network controller 
a Firewall 
a Network interface card 
= Repeater 
a Hub 
a Cable/DSL modem 
= Bridge 
= Patch panel 
= Power over Ethernet (PoE) 
= Injectors 
a Switch 


a Ethernet over Power 


y 2.7 Compare and contrast Internet connection types, 
network types, and their features. 


=» Network Types 
a LAN 
a WAN 





=» PAN 
=» MAN 
a WMN 





Y 3.1 Explain basic cable types, features, and their 
purposes. 


= Network cables 
a Ethernet 
=» Cat5 
= Cat5e 
=» Cat6 
a Plenum 
= Shielded twisted pair 
= Unshielded twisted pair 
= 568A/B 
a Fiber 
a Coaxial 


= Speed and transmission limitations 


Identify common connector types. 
RJ-11 
RJ-45 
BNC 
RG-59 
RG-6 


Looking around most homes or offices today, it’s hard to 
imagine a world without networks. Nearly every place of busi- 
ness has some sort of network. Wireless home networks have 
ésplodeds in popularity in the last decade, and it seems that everywhere you go, you can see 
a dozen wireless networks from your smartphone, tablet, or laptop. 

It didn’t used to be that way. Even when not thinking about networks, we’re still likely 
connected to one via the ubiquitous Internet-enabled smartphones in our pockets and 
purses. We take for granted a lot of what we have gained in technology over the past few 
years, much less the past several decades. 

Thirty years ago, if you wanted to send a memo to everyone in your company, you 
had to use a photocopier and interoffice mail. Delivery to a remote office could take days. 
Today, one mistaken click of the Reply All button can result in instantaneous embarrass- 
ment. Email is an example of one form of communication that became available with the 
introduction and growth of networks. 

This chapter focuses on the basic concepts of how a network works, including the way 
it sends information, the hardware used, and the common types of networks you might 
encounter. It used to be that in order to be a PC technician, you needed to focus on only 
one individual (but large) computer at a time. In today’s environment, though, you will in 
all likelihood need to understand combinations of hardware, software, and network infra- 
structure in order to be successful. 





If the material in this chapter interests you, you might consider studying 

TE for, and eventually taking, CompTIA’s Network+ exam. It is a non-company- 
specific networking certification similar to A+ but for network-related 
topics. You can study for it using Sybex’s CompTIA Network+ Study Guide, 


by Todd Lammle (Sybex, May 8, 2018) materials, available at your favorite 
online bookseller. 


Understanding Networking Principles 


Stand-alone personal computers, first introduced in the late 1970s, gave users the ability to 
create documents, spreadsheets, and other types of data and save them for future use. For 
the small-business user or home-computer enthusiast, this was great. For larger companies, 
however, it was not enough. Larger companies had greater needs to share information 
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between offices and sometimes over great distances. Stand-alone computers were insuffi- 
cient for the following reasons: 


= Their small hard-drive capacities were insufficient. 
a To print, each computer required a printer attached locally. 


a Sharing documents was cumbersome. People grew tired of having to save to a floppy 
and then take that disk to the recipient. (This procedure was called sneakernet.) 


= There was no email. Instead, there was interoffice mail, which was slow and sometimes 
unreliable. 


To address these problems, networks were born. A network links two or more comput- 
ers together to communicate and share resources. Their success was a revelation to the 
computer industry as well as to businesses. Now departments could be linked internally to 
offer better performance and increase efficiency. 

You have probably heard the term networking in a social or business context, where 
people come together and exchange names for future contact and access to more resources. 
The same is true with a computer network. A computer network enables computers to 
link to each other’s resources. For example, in a network, every computer does not need a 
printer connected locally in order to print. Instead, you can connect a printer to one com- 
puter, or you can connect it directly to the network and allow all the other computers to 
access it. Because they allow users to share resources, networks can increase productivity as 
well as decrease cash outlay for new hardware and software. 

In the following sections, we will discuss the fundamentals of networking as well as the 
types of networks that you are likely to encounter. 


Understanding Networking Fundamentals 


In many cases, networking today has become a relatively simple plug-and-play process. 
Wireless network cards can automatically detect and join networks, and then you’re sec- 
onds away from surfing the web or sending email. Of course, not all networks are that 
simple. Getting your network running may require a lot of configuration, and one messed- 
up setting can cause the whole thing to fail. 

Just as there is a lot of information you should know about how to configure your net- 
work, there is a lot of background information you should understand about how networks 
work. The following sections cover the fundamentals, and armed with this information, 
you can then move on to how to make it work right. 


Network Types 


The local area network (LAN) was created to connect computers in a single office or building. 
Expanding upon that, a wide area network (WAN) includes networks outside the local envi- 
ronment and can also distribute resources across great distances. Generally, it’s safe to think of 
a WAN as multiple, disbursed LANs connected together. Today, LANs exist in many homes 
(wireless networks) and nearly all businesses. WANs are fairly common too, as businesses 
embrace mobility and more of them span greater distances. Historically, only larger corpora- 
tions used WANs, but many smaller companies with remote locations now use them as well. 
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Having two types of network categories just didn’t feel like enough, so the industry 
introduced three more terms: the personal area network, the metropolitan area network, 
and the wireless mesh network. The personal area network (PAN) is a very small-scale net- 
work designed around one person within a very limited boundary area. The term generally 
refers to networks that use Bluetooth technology. On a larger scale is the metropolitan area 
network (MAN), which is bigger than a LAN but not quite as big as a WAN. The most 
recent designation created is the wireless mesh network (WMN). As the name indicates, it’s 
a wireless network, and it uses what’s known as a mesh topology. We’ll cover both of those 
concepts in more detail later in this chapter. 

It is important to understand these concepts as a service professional because when 
you’re repairing computers, you are likely to come in contact with problems that are associ- 
ated with the computer’s connection to a network. Understanding the basic structure of the 
network can often help you solve a problem. 


LANs 


The 1970s brought us the minicomputer, which was a smaller version of large mainframe 
computers. Whereas the mainframe used centralized processing (all programs ran on the 
same computer), the minicomputer used distributed processing to access programs across 
other computers. As depicted in Figure 6.1, distributed processing allows a user at one com- 
puter to use a program on another computer as a backend to process and store information. 
The user’s computer is the frontend, where data entry and minor processing functions are 
performed. This arrangement allowed programs to be distributed across computers rather 
than be centralized. This was also the first time network cables rather than phone lines 
were used to connect computers. 


FIGURE 6.1 Distributed processing 

















hee 


Data entry (frontend) 





























Data processing and storage (backend) 


By the 1980s, offices were beginning to buy PCs in large numbers. Portables were also 
introduced, allowing computing to become mobile. Neither PCs nor portables, however, 
were efficient in sharing information. As timeliness and security became more important, 
floppy disks were just not cutting it. Offices needed to find a way to implement a better 
means to share and access resources. This led to the introduction of the first type of PC local 
area network (LAN): ShareNet by Novell, which had both hardware and software compo- 
nents. LANs simply link computers in order to share resources within a closed environment. 
The first simple LANs were constructed a lot like the LAN shown in Figure 6.2. 
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FIGURE 6.2 Asimple LAN 


I] 


After the introduction of ShareNet, more LANs sprouted. The earliest LANs could not 
cover large distances. Most of them could only stretch across a single floor of the office and 
could support no more than 30 computers. Furthermore, they were still very rudimentary 
and only a few software programs supported them. The first software programs that ran 
on a LAN were not capable of being used by more than one user at a time. (This constraint 
was known as file locking.) Nowadays, multiple users often concurrently access a program 
or file. Most of the time, the only limitations will be restrictions at the record level if two 
users are trying to modify a database record at the same time. 


WANs 


By the late 1980s, networks were expanding to cover large geographical areas and were 
supporting thousands of users. Wide area networks (WANs), first implemented with main- 
frames at massive government expense, started attracting PC users as networks went to this 
new level. Employees of businesses with offices across the country communicated as though 
they were only desks apart. Soon the whole world saw a change in the way of doing busi- 
ness, across not only a few miles but across countries. Whereas LANs are limited to single 
buildings, WANs can span buildings, states, countries, and even continental boundaries. 
Figure 6.3 shows an example of a simple WAN. 


FIGURE 6.3 A simple WAN 
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The networks of today and tomorrow are no longer limited by the inability of LANs to 
cover distance and handle mobility. WANs play an important role in the future develop- 
ment of corporate networks worldwide. 


PANs 


The term PAN is most commonly associated with Bluetooth networks. In 1998, a con- 
sortium of companies formed the Bluetooth Special Interest Group (SIG) and formally 
adopted the name Bluetooth for its technology. The name comes from a tenth-century 
Danish king named Harald Blatand, known as Harold Bluetooth in English. (One can 
only imagine how he got that name.) King Blatand had successfully unified warring fac- 
tions in the areas of Norway, Sweden, and Denmark. The makers of Bluetooth were try- 
ing to unite disparate technology industries, namely computing, mobile communications, 
and the auto industry. 


EP Although the most common use of a PAN is in association with Bluetooth, 
‘Qi a PAN can also be created with other technologies, such as infrared. 


Current membership in the Bluetooth SIG includes Microsoft, Intel, Apple, IBM, 
Toshiba, and several cell phone manufacturers. The technical specification IEEE 802.15.1 
describes a wireless personal area network (WPAN) based on Bluetooth version 1.1. 

The first Bluetooth device on the market was an Ericsson headset and cell phone adapter, 
which arrived on the scene in 2000. While mobile phones and accessories are still the most 
common type of Bluetooth device, you will find many more, including wireless keyboards, 
mice, and printers. Figure 6.4 shows a Bluetooth USB adapter. 


FIGURE 6.4 Bluetooth USB adapter 
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We cover Bluetooth in more detail in Chapter 8, “Installing Wireless and 
TE SOHO Networks.” Also, if you want to learn more about Bluetooth, you can 


visit www.bLuetooth.com. 


One of the defining features of a Bluetooth WPAN is its temporary nature. With tradi- 
tional Wi-Fi, you need a central communication point, such as a wireless router or access 
point to connect more than two devices together. (This is referred to as infrastructure.) 
Bluetooth networks are formed on an ad hoc basis, meaning that whenever two Bluetooth 
devices get close enough to each other, they can communicate directly with each other—no 
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central communication point is required. This dynamically created network is called a 
piconet. A Bluetooth-enabled device can communicate with up to seven other devices in 
one piconet. Two or more piconets can be linked together in a scatternet. In a scatternet, 
one or more devices would serve as a bridge between the piconets. 


MANs 


For those networks that are larger than a LAN but confined to a relatively small geographi- 
cal area, there is the term metropolitan area network (MAN). A MAN is generally defined 
as a network that spans a city or a large campus. For example, if a city decides to install 
wireless hotspots in various places, that network could be considered a MAN. 

One of the questions a lot of people ask is, “Is there really a difference between a MAN 
and a WAN?” There is definitely some gray area here; in many cases they are virtually iden- 
tical. Perhaps the biggest difference is who has responsibility for managing the connectivity. 
Ina MAN, a central IT organization, such as the campus or city IT staff, is responsible. 
Ina WAN, it’s implied that you will be using publicly available communication lines, and 
there will be a phone company or other service provider involved. 


WMNs 


Wireless networks are everywhere today. If you use your smartphone, tablet, or laptop to 
look for wireless networks, chances are you will find several. Wireless clients on a network 
typically access the network through a wireless access point (WAP). The WAP may connect 
wirelessly to another connectivity device, such as a wireless router, but more likely uses a 
wired connection to a router or switch. (We’ll talk about all of these devices later in the 
chapter.) 

The key defining factor of a mesh network topology is that it has multiple redundant 
connections. If one fails, another is available to take its place. Therefore, a wireless mesh 
network is one that uses wireless but has multiple redundant connections to help ensure 
that communication runs smoothly. 

While mobility is a key feature of wireless networking, the key infrastructure that wire- 
less clients connect to is generally not mobile. It makes it a lot harder to connect to a hot 
spot if you don’t know where it will be today! 

In order to implement a WMN, the access points and other wireless infrastructure must 
support it. A WMN is then managed through a cloud-based network controller, which 
allows the administrator to enable, configure, and monitor the network remotely. 


EP In addition to LANs, WANs, and others, the A+ exam 220-1001 objective 

OTE 2.7 covers Internet connection types. We cover these in Chapter 8. There, 
we show you the details of each type of connection and factors to consider 
when choosing one for yourself or a client. 
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Primary Network Components 


Technically speaking, two or more computers connected together constitute a network. But 
networks are rarely that simple. When you’re looking at the devices or resources available 
on a network, there are three types of components of which you should be aware: 


=» Servers 
a Clients or workstations 


a Resources 


EP Every network requires two more items to tie these three components 
‘i together: a network operating system (NOS) and some kind of shared 
medium (wired or wireless connectivity). These components are covered 
later in their own sections. 








Blurring the Lines 


In the 1980s and 1990s, LANs and WANs were often differentiated by their connection 
speeds. For example, if you had a 10 Mbps or faster connection to other computers, you 
were often considered to be on a LAN. WANs were often connected to each other by very 
expensive T1 connections, which have a maximum bandwidth of 1.544 Mbps. 


As with all other technologies, networking capacity has exploded. In today’s office net- 
work, wired connections slower than 100 Mbps are considered archaic. Connections of 1 
Gbps are fairly common. WAN connectivity, although still slower than LAN connectivity, 
can easily be several times faster than the T1. Because of the speed increases in WAN 
connectivity, the old practice of categorizing your network based on connection speed is 
outdated. 


Today, the most common way to classify a network is based on geographical distance. If 
your network is in one central location, whether that is one office, one floor of an office 
building, or maybe even one entire building, it’s usually considered a LAN. If your net- 
work is spread out among multiple distant locations, it’s a WAN. 





Servers 


Servers come in many shapes and sizes. They are a core component of the network, provid- 
ing a link to the resources necessary to perform any task. The link that the server provides 
could be to a resource existing on the server itself or to a resource on a client computer. The 
server is the critical enabler, offering directions to the client computers regarding where to 
go to get what they need. 
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Servers offer networks the capability of centralizing the control of resources and secu- 
rity, thereby reducing administrative difficulties. They can be used to distribute processes 
for balancing the load on computers and can thus increase speed and performance. They 
can also compartmentalize files for improved reliability. That way, if one server goes down, 
not all of the files are lost. 

Servers can perform several different critical roles on a network. For example, a 
server that provides files to the users on the network is called a file server. Likewise, 
one that hosts printing services for users is called a print server. Yet another example is 
a network attached storage (NAS) device that we discussed in Chapter 4, “Custom PC 
Configurations.” Servers can be used for other tasks as well, such as authentication, remote 
access services, administration, email, and so on. Networks can include multipurpose and 
single-purpose servers. A multipurpose server can be, for example, both a file server and a 
print server at the same time. If the server is a single-purpose server, it is a file server only 
or a print server only. Another distinction we use in categorizing servers is whether they are 
dedicated or nondedicated: 


Dedicated Servers A dedicated server is assigned to provide specific applications or ser- 
vices for the network and nothing else. Because a dedicated server specializes in only a few 
tasks, it requires fewer resources than a nondedicated server might require from the com- 
puter that is hosting it. This savings may translate to efficiency and can thus be considered 
as having a beneficial impact on network performance. A web server is an example of a 
dedicated server: It is dedicated to the task of serving up web pages and nothing else. 


Nondedicated Servers Nondedicated servers are assigned to provide one or more net- 
work services and local access. A nondedicated server is expected to be slightly more 
flexible in its day-to-day use than a dedicated server. Nondedicated servers can be used to 
direct network traffic and perform administrative actions, but they also are often used 

to serve as a frontend for the administrator to work with other applications or services 

or to perform services for more than one network. For example, a dedicated web server 
might serve out one or more websites, whereas a nondedicated web server serves out 
websites but might also function as a print server on the local network or as the adminis- 
trator’s workstation. 


The nondedicated server is not what some would consider a true server, because it can act 
as a workstation as well as a server. The workgroup server at your office is an example of a 
nondedicated server. It might be a combination file, print, and email server. Plus, because of 
its nature, a nondedicated server could also function well in a peer-to-peer environment. It 
could be used as a workstation in addition to being a file, print, and email server. 


We will talk in more depth about server roles in Chapter 9, “Network 
OTE Services, Virtualization, and Cloud Computing.” 


Many networks use both dedicated and nondedicated servers to incorporate the best of 
both worlds, offering improved network performance with the dedicated servers and flex- 
ibility with the nondedicated servers. 
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Workstations 


Workstations are the computers on which the network users do their work, performing 
activities such as word processing, database design, graphic design, email, and other office 
or personal tasks. Workstations are basically everyday computers, except for the fact that 
they are connected to a network that offers additional resources. Workstations can range 
from diskless computer systems to desktops or laptops. In network terms, workstations are 
also known as client computers. Examples include thin clients, thick clients, virtualization 
workstations, and graphic/ CAD/CAM workstations, which you learned about in Chapter 4. 
As clients, they are allowed to communicate with the servers in the network to use the 
network’s resources. 

It takes several items to make a workstation into a network client. You must install a 
network interface card (NIC), a special expansion card that allows the PC to talk ona 
network. You must connect it to a cabling system that connects to other computers (unless 
your NIC supports wireless networking). And you must install special software, called 
client software, which allows the computer to talk to the servers and request resources from 
them. Once all this has been accomplished, the computer is “on the network.” 


Network client software comes with all operating systems today. When 
TE you configure your computer to participate in the network, the operating 


system utilizes this software. 


To the client, the server may be nothing more than just another drive letter. However, 
because it is in a network environment, the client can use the server as a doorway to more 
storage or more applications or to communicate with other computers or other networks. 
To users, being on a network changes a few things: 


= They can store more information because they can store data on other computers on 
the network. 


= They can share and receive information from other users, perhaps even collaborating 
on the same document. 


= They can use programs that would be too large or complex for their computer to use 
by itself. 


=a They can use hardware not attached directly to their computer, such as a printer. 








E Real World Scenario 


Is That a Server or a Workstation? 


This is one of the things that author Quentin Docter does when teaching novice techni- 
cians. In the room, there will be a standard-looking mini-tower desktop computer. He 
points to it and asks, “Is that a server or a workstation?” A lot of techs will look at it and 
say it’s a workstation because it is a desktop computer. The real answer is, “It depends.” 





320 Chapter 6 = Networking Fundamentals 








Although many people have a perception that servers are ultra-fancy, rack-mounted 
devices, that isn’t necessarily true. It’s true that servers typically need more powerful 
hardware than do workstations because of their role on the network, but that doesn’t 
have to be the case. (Granted, having servers that are less powerful than your worksta- 
tions doesn’t make logical sense.) What really differentiates a workstation from a server 
is what operating system it has installed and what role it plays on the network. 


For example, if that system has Windows Server 2016 installed on it, you can be pretty 
sure that it’s a server. If it has Windows 7 or Windows 10, it’s more than likely going to be 
aclient, but not always. Computers with operating systems such as Windows 10 can be 
both clients on the network and nondedicated servers, as would be the case if you share 
your local printer with others on the network. 


The moral of the story? Don’t assume a computer's role simply by looking at it. You need 
to understand what is on it and its role on the network to make that determination. 





Network Resources 


We now have the server to share the resources and the workstation to use them, but what 
about the resources themselves? A resource (as far as the network is concerned) is any item 
that can be used on a network. Resources can include a broad range of items, but the fol- 
lowing items are among the most important: 


a Printers and other peripherals 
= Disk storage and file access 
= Applications 


When only a few printers (and all the associated consumables) have to be purchased for 
the entire office, the costs are dramatically lower than the costs for supplying printers at 
every workstation. 

Networks also give users more storage space to store their files. Client computers can’t 
always handle the overhead involved in storing large files (for example, database files) 
because they are already heavily involved in users’ day-to-day work activities. Because 
servers in a network can be dedicated to only certain functions, a server can be allocated 
to store all of the larger files that are used every day, freeing up disk space on client com- 
puters. In addition, if users store their files on a server, the administrator can back up the 
server periodically to ensure that if something happens to a user’s files, those files can be 
recovered. 

Files that all users need to access (such as emergency contact lists and company policies) 
can also be stored on a server. Having one copy of these files in a central location saves disk 
space, as opposed to storing the files locally on everyone’s system. 

Applications (programs) no longer need to be on every computer in the office. If the 
server is capable of handling the overhead that an application requires, the application can 
reside on the server and be used by workstations through a network connection. 
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DPO The sharing of applications over a network requires a special arrangement 
‘Qi with the application vendor, who may wish to set the price of the applica- 
tion according to the number of users who will be using it. The arrange- 
ment allowing multiple users to use a single installation of an application is 
called a site license. 








Being on a Network Brings Responsibilities 


You are part of acommunity when you are on a network, which means that you need to take 
responsibility for your actions. First, a network is only as secure as the users who use it. You 
cannot randomly delete files or move documents from server to server. You do not own your 
email, so anyone in your company’s management team can choose to read it. In addition, 
sending something to the printer does not necessarily mean that it will print immediately— 
your document may not be the first in line to be printed at the shared printer. Plus, if your 
workstation has also been set up as a nondedicated server, you cannot turn it off. 





Network Operating Systems 


PCs use a disk operating system that controls the file system and how the applications com- 
municate with the hard disk. Networks use a network operating system (NOS) to control 
the communication with resources and the flow of data across the network. The NOS runs 
on the server. Some of the more popular NOSs are Linux, Microsoft’s Windows Server 
series (Server 2019, Server 2016, and so on), and macOS Server. Several other companies 
offer network operating systems as well. 


Network Resource Access 


We have discussed two major components of a typical network—servers and workstations— 
and we’ve also talked briefly about network resources. Let’s dive in a bit deeper on how 
those resources are accessed on a network. 

There are generally two resource access models: peer-to-peer and client-server. It is 
important to choose the appropriate model. How do you decide which type of resource 
model is needed? You must first think about the following questions: 


a What is the size of the organization? 

=a How much security does the company require? 

a What software or hardware does the resource require? 

a How much administration does it need? 

a How much will it cost? 

=a Will this resource meet the needs of the organization today and in the future? 


a Will additional training be needed? 
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Networks cannot just be put together at the drop of a hat. A lot of planning is 
required before implementation of a network to ensure that whatever design is chosen 
will be effective and efficient, and not just for today but for the future as well. The fore- 
thought of the designer will lead to the best network with the least amount of admin- 
istrative overhead. In each network, it is important that a plan be developed to answer 
the previous questions. The answers will help the designer choose the type of resource 
model to use. 


Peer-to-Peer Networks 


In a peer-to-peer network, the computers act as both service providers and service request- 
ors. An example of a peer-to-peer resource model is shown in Figure 6.5. 


FIGURE 6.5 The peer-to-peer resource model 





The peer-to-peer model is great for small, simple, inexpensive networks. This model can 
be set up almost instantly, with little extra hardware required. Many versions of Windows 
(Windows 10, Windows 8, and others) as well as Linux and macOS are popular operating 
system environments that support the peer-to-peer resource model. Peer-to-peer networks 
are also referred to as workgroups. 

Generally speaking, there is no centralized administration or control in the peer- 
to-peer resource model. Every station has unique control over the resources that the 
computer owns, and each station must be administered separately. However, this very 
lack of centralized control can make administering the network difficult; for the same 
reason, the network isn’t very secure. Each user needs to manage separate passwords for 
each computer on which they wish to access resources, as well as set up and manage the 
shared resources on their own computer. Moreover, because each computer is acting as 
both a workstation and server, it may not be easy to locate resources. The person who is 
in charge of a file may have moved it without anyone’s knowledge. Also, the users who 
work under this arrangement need more training because they are not only users but also 
administrators. 

Will this type of network meet the needs of the organization today and in the future? 
Peer-to-peer resource models are generally considered the right choice for small companies 
that don’t expect future growth. Small companies that expect growth, on the other hand, 
should not choose this type of model. 


PP A rule of thumb is that if you have no more than 10 computers and 


A: centralized security is not a key priority, a workgroup may be a good 
choice for you. 
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Client-Server Resource Model 


The client-server model (also known as server-based model) is better than the peer-to-peer 
model for large networks (say, more than 10 computers) that need a more secure environ- 
ment and centralized control. Server-based networks use one or more dedicated, centralized 
servers. All administrative functions and resource sharing are performed from this point. 
This makes it easier to share resources, perform backups, and support an almost unlimited 
number of users. 

This model also offers better security than the peer-to-peer model. However, the server 
needs more hardware than a typical workstation/server computer in a peer-to-peer resource 
model. In addition, it requires specialized software (the NOS) to manage the server’s role 
in the environment. With the addition of a server and the NOS, server-based networks can 
easily cost more than peer-to-peer resource models. However, for large networks, it’s the 
only choice. An example of a client-server resource model is shown in Figure 6.6. 


FIGURE 6.6 The client-server resource model 
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Server-based networks are often known as domains. The key characteristic of a server- 
based network is that security is centrally administered. When you log into the network, 
the login request is passed to the server responsible for security, sometimes known as a 
domain controller. (Microsoft uses the term domain controller, whereas other vendors of 
server products do not.) This is different from the peer-to-peer model, where each individ- 
ual workstation validates users. In a peer-to-peer model, if the user jsmith wants to be able 
to log into different workstations, she needs to have a user account set up on each machine. 
This can quickly become an administrative nightmare! In a domain, all user accounts are 
stored on the server. User jsmith needs only one account and can log into any of the work- 
stations in the domain. 

Client-server resource models are the desired models for companies that are continually 
growing, need to support a large environment, or need centralized security. Server-based 
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networks offer the flexibility to add more resources and clients almost indefinitely into the 
future. Hardware costs may be higher, but with the centralized administration, managing 
resources becomes less time consuming. Also, only a few administrators need to be trained, 
and users are responsible for only their own work environment. 


P If you are looking for an inexpensive, simple network with little setup 
A: required, and there is no need for the company to grow in the future, then 
the peer-to-peer network is the way to go. If you are looking for a net- 
work to support many users (more than 10 computers), strong security, 
and centralized administration, consider the server-based network your 
only choice. 


Whatever you decide, always take the time to plan your network before installing it. A 
network is not something you can just throw together. You don’t want to find out a few 
months down the road that the type of network you chose does not meet the needs of the 
company—this could be a time-consuming and costly mistake. 


Network Topologies 


A topology is a way of laying out the network. When you plan and install a network, you 
need to choose the right topology for your situation. Each type differs from the others by 
its cost, ease of installation, fault tolerance (how the topology handles problems such as 
cable breaks), and ease of reconfiguration (such as adding a new workstation to the existing 
network). 

There are five primary topologies: 


= Bus 

= Star 

= Ring 

= Mesh 

= Hybrid 


Each topology has advantages and disadvantages. Table 6.1 summarizes the advantages 
and disadvantages of each topology, and then we will go into more detail about each one. 


TABLE 6.1 Topologies—advantages and disadvantages 


Topology Advantages Disadvantages 





Bus Cheap. Easy to install Difficult to reconfigure. A break in 
the bus disables the entire network. 


Star Cheap. Very easy to install and recon- More expensive than bus 
figure. More resilient to a single cable 
failure 
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Topology Advantages Disadvantages 

Ring Efficient. Easy to install Reconfiguration is difficult. Very 
expensive 

Mesh Best fault tolerance Reconfiguration is extremely 


difficult, extremely expensive, and 
very complex. 


Hybrid Gives a combination of the best Complex (less so than mesh, 
features of each topology used however) 


Bus Topology 


A bus topology is the simplest. It consists of a single cable that runs to every workstation, 
as shown in Figure 6.7. This topology uses the least amount of cabling. Each computer 
shares the same data and address path. With a bus topology, messages pass through the 
trunk, and each workstation checks to see if a message is addressed to it. If the address of 
the message matches the workstation’s address, the network adapter retrieves it. If not, the 
message is ignored. 


FIGURE 6.7 The bus topology 
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Cable systems that use the bus topology are easy to install. You run a cable from the first 
computer to the last computer. All of the remaining computers attach to the cable some- 
where in between. Because of the simplicity of installation, and because of the low cost of 
the cable, bus topology cabling systems are the cheapest to install. 

Although the bus topology uses the least amount of cabling, it is difficult to add a work- 
station. If you want to add another workstation, you have to reroute the cable completely 
and possibly run two additional lengths of it. Also, if any one of the cables breaks, the 
entire network is disrupted. Therefore, such a system is expensive to maintain and can be 
difficult to troubleshoot. You will rarely run across physical bus networks in use today. 
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Star Topology 


A star topology branches each network device off a central device called a hub or a switch, 
making it easy to add a new workstation. If a workstation goes down, it does not affect the 
entire network; if the central device goes down, the entire network goes with it. Because 

of this, the hub (or switch) is called a single point of failure. Figure 6.8 shows a simple star 
network. 


FIGURE 6.8 The star topology 





Star topologies are very easy to install. A cable is run from each workstation to the 
switch. The switch is placed in a central location in the office (for example, a utility closet). 
Star topologies are more expensive to install than bus networks because several more cables 
need to be installed, plus the switches. But the ease of reconfiguration and fault tolerance 
(one cable failing does not bring down the entire network) far outweigh the drawbacks. 
This is the most commonly installed network topology in use today. 


Although the switch is the central portion of a star topology, some older 
TE networks use a device known as a hub instead of a switch. Switches are 
more advanced than hubs, and they provide better performance than hubs 


for only a small price increase. Colloquially, though, many administrators 
use the terms hub and switch interchangeably. 


Ring Topology 


In a ring topology, each computer connects to two other computers, joining them in a 
circle and creating a unidirectional path where messages move from workstation to work- 
station. Each entity participating in the ring reads a message and then regenerates it and 
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hands it to its neighbor on a different network cable. See Figure 6.9 for an example of a 
ring topology. 


FIGURE 6.9 The ring topology 


The ring makes it difficult to add new computers. Unlike a star topology network, a ring 
topology network will go down if one entity is removed from the ring. Physical ring topol- 
ogy systems rarely exist anymore, mainly because the hardware involved was fairly expen- 
sive and the fault tolerance was very low. 


You might have heard of an older network architecture called Token Ring. 

A: Contrary to its name, it does not use a physical ring. It actually uses a 
physical star topology, but the traffic flows in a logical ring from one 
computer to the next. 


Mesh Topology 


The mesh topology is the most complex in terms of physical design. In this topology, each 
device is connected to every other device (see Figure 6.10). This topology is rarely found 

in wired LANs, mainly because of the complexity of the cabling. If there are x comput- 

ers, there will be (x x ( x — 1)) + 2 cables in the network. For example, if you have five 
computers in a mesh network, it will use (5 x (5 — 1)) + 2 = 10 cables. This complexity is 
compounded when you add another workstation. For example, your 5-computer, 10-cable 
network will jump to 15 cables if you add just one more computer. Imagine how the person 
doing the cabling would feel if you told them they had to cable 50 computers in a mesh 
network—they’d have to come up with (50 x (50 — 1)) + 2 = 1,225 cables! (Not to mention 
figuring out how to connect them all.) 


328 Chapter 6 = Networking Fundamentals 


FIGURE 6.10 The mesh topology 
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Because of its design, the physical mesh topology is expensive to install and maintain. 
Cables must be run from each device to every other device. The advantage you gain is high 
fault tolerance. With a mesh topology, there will always be a way to get the data from 
source to destination. The data may not be able to take the direct route, but it can take 
an alternate, indirect route. For this reason, the mesh topology is often used to connect 
multiple sites across WAN links. It uses devices called routers to search multiple routes 
through the mesh and determine the best path. However, the mesh topology does become 
inefficient with five or more entities because of the number of connections that need to be 
maintained. 


Hybrid Topology 
The hybrid topology is simply a mix of the other topologies. It would be impossible to 
illustrate it because there are many combinations. In fact, most networks today are not 
only hybrid but heterogeneous. (They include a mix of components of different types and 
brands.) The hybrid network may be more expensive than some types of network topolo- 
gies, but it takes the best features of all the other topologies and exploits them. 

Table 6.1, earlier in this chapter, summarizes the advantages and disadvantages of each 
type of network topology. 


Rules of Communication 


Regardless of the type of network you choose to implement, the computers on that network 
need to know how to talk to each other. To facilitate communication across a network, 
computers use a common language called a protocol. We’ll cover protocols more in 
Chapter 7, “Introduction to TCP/IP,” but essentially they are languages much like English 
is a language. Within each language, there are rules that need to be followed so that all 
computers understand the right communication behavior. 


Understanding Networking Principles 329 


To use a human example, within English there are grammar rules. If you put a bunch 
of English words together in a way that doesn’t make sense, no one will understand you. If 
you just decide to omit verbs from your language, you’re going to be challenged to get your 
point across. And if everyone talks at the same time, the conversation can be hard 
to follow. 

Computers need standards to follow to keep their communication clear. Different stan- 
dards are used to describe the rules that computers need to follow to communicate with 
each other. The most important communication framework, and the backbone of all net- 
working, is the OSI model. 


P The OSI model is not specifically listed in the CompTIA A+ exam objec- 
A: tives. However, it’s a critical piece of networking knowledge and a frame- 
work with which all technicians should be familiar. 


OSI Model 


The International Organization for Standardization (ISO) published the Open Systems 
Interconnection (OSI) model in 1984 to provide a common way of describing network 
protocols. The ISO put together a seven-layer model providing a relationship between the 
stages of communication, with each layer adding to the layer above or below it. 


P This OSI model is a theoretical model governing computer communica- 
A: tion. Even though at one point an “OSI protocol” was developed, it never 
gained wide acceptance. You will never find a network that is running the 
“OSI protocol.” 


Here’s how the theory behind the OSI model works: As a transmission takes place, the 
higher layers pass data through the lower layers. As the data passes through a layer, that 
layer tacks its information (also called a header) onto the beginning of the information 
being transmitted until it reaches the bottom layer. A layer may also add a trailer to the end 
of the data. The bottom layer sends the information out on the wire (or in the air, in the 
case of wireless). 

At the receiving end, the bottom layer receives and reads the information in the header, 
removes the header and any associated trailer related to its layer, and then passes the 
remainder to the next highest layer. This procedure continues until the topmost layer 
receives the data that the sending computer sent. 

The OSI model layers are listed here from top to bottom, with descriptions of what each 
of the layers is responsible for: 


7—Application layer The Application layer allows access to network services. This is the 
layer at which file services, print services, and other applications operate. 
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6—Presentation layer This layer determines the “look,” or format, of the data. The 
Presentation layer performs protocol conversion and manages data compression, data trans- 
lation, and encryption. The character set information also is determined at this level. (The 
character set determines which numbers represent which alphanumeric characters.) 


5—Session layer This layer allows applications on different computers to establish, 
maintain, and end a session. A session is one virtual conversation. For example, all of the 
procedures needed to transfer a single file make up one session. Once the session is over, a 
new process begins. This layer enables network procedures, such as identifying passwords, 
logins, and network monitoring. 


4—Transport layer The Transport layer controls the data flow and troubleshoots any 
problems with transmitting or receiving datagrams. It also takes large messages and 
segments them into smaller ones and takes smaller segments and combines them into a 
single, larger message, depending on which way the traffic is flowing. Finally, the TCP 
protocol (one of the two options at this layer) has the important job of verifying that the 
destination host has received all packets, providing error checking and reliable end-to-end 
communications. 


3—Network layer The Network layer is responsible for logical addressing of messages. At 
this layer, the data is organized into chunks called packets. The Network layer is something 
like the traffic cop. It is able to judge the best network path for the data based on network 
conditions, priority, and other variables. This layer manages traffic through packet switch- 
ing, routing, and controlling congestion of data. 


2—Data Link layer This layer arranges data into chunks called frames. Included in these 
chunks is control information indicating the beginning and end of the datastream. The 
Data Link layer is very important because it makes transmission easier and more manage- 
able, and it allows for error checking within the data frames. The Data Link layer also 
describes the unique physical address (also known as the MAC address) for each NIC. The 
Data Link layer is actually subdivided into two sections: Media Access Control (MAC) and 
Logical Link Control (LLC). 


1—Physical layer The Physical layer describes how the data gets transmitted over a com- 
munication medium. This layer defines how long each piece of data is and the translation 
of each into the electrical pulses or light impulses that are sent over the wires, or the radio 
waves that are sent through the air. It decides whether data travels unidirectionally or 
bidirectionally across the hardware. It also relates electrical, optical, mechanical, and 
functional interfaces to the cable. 


Figure 6.11 shows the complete OSI model. Note the relationship of each layer to the 
others and the function of each layer. 
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FIGURE 6.11 The OSI model 


Open Systems Interconnect (OSI) Model 


Session layer 
Responsible for establishing and maintaining a communications 


T “session.” 


Transport layer 
Responsible for providing reliable end-to-end communications. 
Includes most of the error control and flow control. 


Network layer 
Responsible for logical network addressing. Some error control 
and flow control is performed at this level. 





A helpful mnemonic device to remember the OSI layers in order is “All 
TE People Seem To Need Data Processing.” 


IEEE 802 Standards 


Continuing with our theme of communication, it’s time to introduce one final group of 
standards. You’ve already learned that a protocol is like a language; think of the IEEE 802 
standards as syntax, or the rules that govern who communicates, when they do it, and how 
they do it. 
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The Institute of Electrical and Electronics Engineers (IEEE) formed a subcommittee to 
create standards for network types. These standards specify certain types of networks, 
although not every network protocol is covered by the IEEE 802 committee specifications. 
This model contains several standards. The ones commonly in use today are 802.3 CSMA/ 
CD (Ethernet) LAN and 802.11 Wireless networks. The IEEE 802 standards were designed 
primarily for enhancements to the bottom three layers of the OSI model. The IEEE 802 
standard breaks the Data Link layer into two sublayers: a Logical Link Control (LLC) 
sublayer and a Media Access Control (MAC) sublayer. The Logical Link Control sublayer 
manages data link communications. The Media Access Control sublayer watches out for 
data collisions and manages physical addresses, also referred to as MAC addresses. 

You’ve most likely heard of 802.11ac or 802.11n wireless networking. The rules for 
communicating with all versions of 802.11 are defined by the IEEE standard. Another very 
well-known standard is 802.3 CSMA/CD. You might know it by its more popular name, 
Ethernet. 

The original 802.3 CSMA/CD standard defines a bus topology network that uses a 
50-ohm coaxial baseband cable and carries transmissions at 10 Mbps. This standard 
groups data bits into frames and uses the Carrier Sense Multiple Access with Collision 
Detection (CSMA/CD) cable access method to put data on the cable. Currently, the 802.3 
standard has been amended to include speeds up to 10 Gbps. 

Breaking the CSMA/CD acronym apart may help illustrate how it works. 


CS First, there is the Carrier Sense (CS) part, which means that computers on the network 
are listening to the wire at all times. 


MA Multiple Access (MA) means that multiple computers have access to the line at the 
same time. This is analogous to having five people on a conference call. Everyone is lis- 
tening, and everyone in theory can try to talk at the same time. Of course, when more 
than one person talks at once, there is a communication error. In CSMA/CD, when two 
machines transmit at the same time, a data collision takes place and the intended recipients 
receive none of the data. 


CD This is where the Collision Detection (CD) portion of the acronym comes in; the colli- 
sion is detected and each sender knows they need to send again. Each sender then waits for 
a short, random period of time and tries to transmit again. This process repeats until trans- 
mission takes place successfully. 


The CSMA/CD technology is considered a contention-based access method. 

The only major downside to 802.3 is that with large networks (more than 100 computers 
on the same segment), the number of collisions increases to the point where more collisions 
than transmissions are taking place. 


Other examples of contention methods exist, such as Carrier Sense Mul- 

‘gr tiple Access with Collision Avoidance (CSMA/CA). Whereas CSMA/CD tries 
to fix collisions after they happen, CSMA/CA tries to avoid them in the first 
place by actively listening and only transmitting when the channel is clear. 
Wireless Ethernet uses CSMA/CA. 
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Identifying Common Network Hardware 


We have looked at the types of networks, network topologies, and the way communica- 
tions are handled. That’s all of the logical stuff. To really get computers to talk to each 
other requires hardware. Every computer on the network needs to have a network adapter 
of some type. In many cases, you also need some sort of cable to hook them together. 
(Wireless networking is the exception, but at the backend of a wireless network there are 
still components wired together.) And finally, you might also need connectivity devices to 
attach several computers or networks to each other. 


Network Interface Cards 


The network interface card (NIC), also referred to as a network adapter card, provides the 
physical interface between computer and cabling. It prepares data, sends data, and controls 
the flow of data. It can also receive and translate data into bytes for the CPU to understand. 
NICs come in many shapes and sizes. 

Different NICs are distinguished by the PC bus type and the network for which they are 
used. The following sections describe the role of NICs and how to evaluate them. 


Compatibility 
The first thing you need to determine is whether the NIC will fit the bus type of your PC. 
If you have more than one type of bus in your PC (for example, a combination PCI/PCI 
Express), use a NIC that fits into the fastest type (the PCI Express, in this case). This is 
especially important in servers because the NIC can quickly become a bottleneck if this 
guideline isn’t followed. 

More and more computers are using NICs that have USB interfaces. For the rare laptop 
computer that doesn’t otherwise have a NIC built into it, these small portable cards are 
very handy. 


P A USB network card can also be handy for troubleshooting. If a laptop isn’t 
‘GQ connecting to the network properly with its built-in card, you may be able 
to use the USB NIC to see if it’s an issue with the card or perhaps a soft- 
ware problem. 


Network Interface Card Performance 


The most important goal of the NIC is to optimize network performance and minimize the 
amount of time needed to transfer data packets across the network. The key is to ensure 
that you get the fastest card that you can for the type of network that you’re on. For exam- 
ple, if your wireless network supports 802.11g/n/ac, make sure to get an 802.11ac card 
because it’s the fastest. 
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Sending and Controlling Data 

In order for two computers to send and receive data, the cards must agree on several things: 
=a The maximum size of the data frames 

= The amount of data sent before giving confirmation 

= The time needed between transmissions 

= The amount of time to wait before sending confirmation 

= The speed at which data transmits 


If the cards can agree, the data is sent successfully. If the cards cannot agree, the data is 
not sent. 

To send data on the network successfully, all NICs need to use the same media access 
method (such as CSMA/CD) and be connected to the same piece of cable. This usually isn’t 
a problem, because the vast majority of network cards sold today are Ethernet. 

In addition, NICs can send data using either full-duplex or half-duplex mode. Half-duplex 
communication means that between the sender and receiver, only one of them can transmit at 
any one time. In full-duplex communication, a computer can send and receive data simulta- 
neously. The main advantage of full-duplex over half-duplex communication is performance. 
NICs (Gigabit Ethernet NICs) can operate twice as fast (1 Gbps) in full-duplex mode as they 
do normally in half-duplex mode (500 Mbps). In addition, collisions are avoided, which 
speeds up performance as well. Configuring the network adapter’s duplexing setting is done 
from the Advanced tab of the NIC’s properties, as shown in Figure 6.12. 


FIGURE 6.12 ANIC’s Speed & Duplex setting 


Intel(R) Ethernet Connection (2) 1219-V Properties x 


General Advanced Driver Details Events Power Management 


The following properties are available for this network adapter. Click 

the property you want to change on the left, and then select its value 

on the right. 

Property: Value: 

Receive Buffers a Auto Negotiation M 





System Idle Power Saver 

TCP Checksum Offload (IPv4) 

TCP Checksum Offload (IPv6) 
Transmit Buffers 

UDP Checksum Offload (IPv4) 

UDP Checksum Offload (IPv6) 

Wait for Link 

Wake on Link Settings 

Wake on Magic Packet 

Wake on Pattem Match y 
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DPO Normally, you aren't going to have to worry about how your NIC sends or 
‘GQ controls data. Just make sure to get the fastest NIC that is compatible with 
your network. Do know that the negotiations discussed here are happening 
in the background, though. 


NIC Configuration 


Each card must have a unique hardware address, called a Media Access Control address or 
MAC address. If two NICs on the same network have the same hardware address, neither 
one will be able to communicate. For this reason, the IEEE has established a standard for 
hardware addresses and assigns blocks of these addresses to NIC manufacturers, who then 
hard-wire the addresses into the cards. 

MAC addresses are 48 bits long and written in hexadecimal, such as B6-15-53-8F- 
29-6B. An example is shown in Figure 6.13 from the output of the ipconfig /all com- 
mand executed at the command prompt. 


FIGURE 6.13 Physical (MAC) address 


E Command Prompt = o x 
JC: \Users\Q>ipconfig /all A 


Windows IP Configuration 


Host Name. ....... .. . . E DESKTOP-EF@DRK1 
Primary Dns Suffix: >< eanna 

Node: TYPE o w sc som oe a a ee a YOLA 

IP Routing Enabled. ....... : No 

WINS Proxy Enabled. ....... : No 

DNS Suffix Search List. . . . . . : home 


Ethernet adapter Ethernet: 


: Media disconnected 






amily Controller 











Although it is possible for NIC manufacturers to produce multiple NICs 
4 TE with the same MAC address, it happens very rarely. If you do encounter 


this type of problem, contact the hardware manufacturer. 
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NIC Drivers 


In order for the computer to use the NIC, it is very important to install the proper device 
drivers. These drivers are pieces of software that communicate directly with the operating 
system, specifically the network redirector and adapter interface. Drivers are specific to 
each NIC and operating system, and they operate in the Media Access Control (MAC) sub- 
layer of the Data Link layer of the OSI model. 

To see which version the driver is, you need to look at the device’s properties. There are 
several ways to do this. A common one is to open Device Manager (click Start, type Device, 
and click Device Manager under Best match), and find the device, as shown in Figure 6.14. 


FIGURE 6.14 Device Manager 





i Device Manager = o x 
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> GB Computer 
> =æ Digital Media Devices 
> æ Disk drives 
> E Display adapters 
> a DVD/CD-ROM drives 
> Gi Human Interface Devices 
> @ IEEE 1394 host controllers 
> ae Imaging devices 
> & Keyboards 
> @ Mice and other pointing devices 
> GB Monitors 
v g Network adapters 
® Linksys AE2500 
EP Realtek PCle GBE Family Controller v 








Right-click the device, click Properties, and then go to the Driver tab, as shown in 
Figure 6.15. Here you can see a lot of information about the driver, update it, or roll it back 
if you installed a new one and it fails for some reason. You can also update the driver by 
right-clicking the device in Device Manager and choosing Update driver from the popup 
menu. 
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FIGURE 6.15 NIC properties Driver tab 





Linksys AE2500 Properties x 
General Advanced Driver Details Events Power Management 
= Linksys AE2500 
Driver Provider: Linksys, LLC 
Driver Date: 12/31/2014 


Driver Version: 6.32.145.11 
Digital Signer: Microsoft Windows Hardware Compatibility 
Publisher 


View details about the installed driver files 
Update Driver Update the driver for this device. 


P if the device fails after updating the driver, roll 
Fe) EES Bt back to the previously installed driver. 


Disable Device Disable the device. 
Uninstall Device Uninstall the device from the system (Advanced). 


OK Cancel 











The best place to get drivers is always the manufacturer’s website. When 

s TE you click Update Driver, Windows will ask you if you want to search for the 
driver on the Internet or provide a location for it. The best course of action 
is to download the driver first, and then tell Windows where you put it. 


Cables and Connectors 


When the data is passing through the OSI model and reaches the Physical layer, it must find 
its way onto the medium that is used to transfer data physically from computer to com- 
puter. This medium is called the cable (or in the case of wireless networks, the air). It is the 
NIC’s role to prepare the data for transmission, but it is the cable’s role to move the data 
properly to its intended destination. The following sections discuss the three main types of 
physical cabling: coaxial, twisted-pair, and fiber-optic. (Wireless communication is covered 
in Chapter 8.) 
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Coaxial Cable 


Coaxial cable (or coax) contains a center conductor core made of copper, which is sur- 
rounded by a plastic jacket with a braided shield over it (as shown in Figure 6.16). Either 
Teflon or a plastic coating covers this metal shield. 


FIGURE 6.16 Coaxial cable 


Wire mesh conductor 


Center wire 





Inner insulation 
Outer insulation 


Common network cables are covered with a plastic called polyvinyl chloride (PVC). 
While PVC is flexible, fairly durable, and inexpensive, it has a nasty side effect in that it 
produces poisonous gas when burned. An alternative is a Teflon-type covering that is fre- 
quently referred to as a plenum-rated coating. That simply means that the coating does 
not produce toxic gas when burned and is rated for use in the ventilation plenum areas in 
a building that circulate breathable air, such as air conditioning and heating systems. This 
type of cable is more expensive, but it may be mandated by electrical code whenever cable 
is hidden in walls or ceilings. 


Plenum rating can apply to all types of network cabling. 
ITE 


Coax Cable Specifications 


Coaxial cable is available in various specifications that are rated according to the Radio 
Guide (RG) system, which was originally developed by the US military. The thicker the 
copper, the farther a signal can travel—and with that comes a higher cost and a less- 
flexible cable. 

When coax cable was popular for networking, there were two standards that had fairly 
high use: RG-8 (thicknet) and RG-58A/U (thinnet). Thicknet had a maximum segment 
distance of 500 meters and was used primarily for network backbones. Thinnet was more 
often used in a conventional physical bus. A thinnet segment could span 185 meters. Both 
thicknet and thinnet had impedance of 50 ohms. Table 6.2 shows the different types of RG 
cabling and their uses. The ones that are included on the A+ exam objectives are RG-6 and 
RG-59. 
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TABLE 6.2 Coax RG types 





RG# Popular Name Ethernet Implementation Type of Cable 
RG-6 Satellite/cable TV, cable modems N/A Solid copper 
RG-8 Thicknet 10Base5 Solid copper 
RG-58 U N/A None Solid copper 
RG-58 A/U Thinnet 10Base2 Stranded copper 
RG-59 Cable television N/A Solid copper 








Explaining Ethernet Naming Standards 


In Table 6.2, you will notice two terms that might be new to you: 10Base5 and 10Base2. 
These are Ethernet naming standards. The number at the beginning tells you the maxi- 
mum speed that the standard supports, which is 10 Mbps in this case. The word Base 
refers to the type of transmission, either baseband (one signal at a time per cable) or 
broadband (multiple signals at the same time on one cable). Legend has it that the 5 and 
the 2 refer to the approximate maximum transmission distance (in hundreds of meters) 
for each specification. Later in the chapter, you will see 70BaseT, which refers to twisted- 
pair cabling. 





Coaxial networking has all but gone the way of the dinosaur. The only two coaxial cable 
types used today are RG-6 and RG-59. Of the two, RG-6 has a thicker core (1.0 mm), can run 
longer distances (up to 304 meters, or 1000 feet), and support digital signals. RG-59 (0.762 
mm core) is considered adequate for analog cable TV but not digital and has a maximum dis- 
tance of about 228 meters (750 feet). The maximum speed for each depends on the quality of 
the cable and the standard on which it’s being used. Both have impedance of 75 ohms. 


Coax Connector Types 


Thicknet was a bear to use. Not only was it highly inflexible, but you also needed to use a 
connector called a vampire tap. A vampire tap is so named because a metal tooth sinks 
into the cable, thus making the connection with the inner conductor. The tap is connected 
to an external transceiver that in turn has a 15-pin AUI connector (also called a DIX or 
DB-15 connector) to which you attach a cable that connects to the station. The transceiver 
is shown in Figure 6.17. On the right side, you will see the thicknet cable running through 
the portion of the unit that contains the vampire tap. DIX got its name from the companies 
that worked on this format—Digital, Intel, and Xerox. 
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FIGURE 6.17 Thicknet transceiver and cable inside a vampire tap 





Thicknet transceiver licensed Under CC BY-Sa 2.5 via Wikimedia Commons. http: //commons.wikimedia. org/ 
wiki/File:ThicknetTransceiver.jpg#/media/File:ThicknetTransceiver.jpg 


Thinnet coax was much easier to use. Generally, thinnet cables used a BNC connector 
(see Figure 6.18) to attach to a T-shaped connector that attached to the workstation. The 
other side of the T-connector would either continue on with another thinnet segment or be 
capped off with a terminator. It is beyond the scope of this book to settle the long-standing 
argument over the meaning of the abbreviation BNC. We have heard Bayonet Connector, 
Bayonet Nut Connector, and British Naval Connector—among others. What is relevant is 
that the BNC connector locks securely with a quarter-twist motion. 


FIGURE 6.18 Male and female BNC connectors, T-connector, and terminator 
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Another type of connector that you will see in use with coax is a splitter. As its name 
implies, a splitter takes a single signal (say that three times fast) and splits it into multiple 
replicas of the same signal. You might use this for cable TV—one line may run into your 
house, but the signal ultimately needs to get split for three televisions. This type of configu- 
ration will work for cable TV or cable Internet. Figure 6.19 shows a one-to-two coax split- 
ter. You can also buy splitters that split one input into three or more outputs. 


FIGURE 6.19 A coax splitter 





Keep in mind that a coax signal is designed to go from one sender to one receiver, so split- 
ting it can cause some issues. Splitting the signal causes it to weaken, meaning that signal 
quality could be lower, and it might not travel the same distance as a non-split signal. To 
avoid problems, don’t over-split the cable, and purchase a good quality or amplified splitter. 

The last type of coax connector we will cover is called an F-connector (shown in 
Figure 6.20), and it is used with cable TV. The exposed end of the copper cable is pushed 
into the receptacle, and the connector is threaded so that it can screw into place. 


FIGURE 6.20 AnF-connector 
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Twisted-Pair Cable 


Twisted-pair is the most popular type of cabling to use because of its flexibility and low 
cost. It consists of several pairs of wire twisted around each other within an insulated 
jacket, as shown in Figure 6.21. 


FIGURE 6.21 Unshielded twisted-pair cable 





There are two different types of twisted-pair cables: shielded twisted-pair (STP) and 
unshielded twisted-pair (UTP). Both types of cable have two or four pairs of twisted wires 
going through them. The difference is that STP has an extra layer of braided foil shield- 
ing surrounding the wires to decrease electrical interference, as shown in Figure 6.22. (In 
Figure 6.22, the individual wire pairs are shielded as well.) UTP has a PVC or plenum 
coating but no outer foil shield to protect it from interference. In the real world, UTP is the 
most common networking cable type used, whereas STP is used infrequently. 


FIGURE 6.22 Shielded twisted-pair cable 
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DPO You will often hear people refer to UTP cables as Ethernet cables. As you 
‘Qi learned earlier in this chapter, Ethernet is an access method based on 
the IEEE 802.3 standard and not related to a specific cable type. So while 
technically it’s incorrect, there’s no harm in using the term to refer to the 
cable. 


Twisted-Pair Cable Specifications 


There aren’t any STP standards that you really need to know about, either for the test or 
real-life situations. UTP is a different animal. It comes in several grades to offer different 
levels of performance and protection against electrical interference: 


Category 1 contains two twisted pairs. It is for voice-only transmissions, and it is in 
many legacy phone systems today. 


Category 2 is the lowest-grade cable that can have four pairs of wires. (Every other 
CAT rating since CAT-2 has four pairs.) It can handle data transmission at speeds up 
to 4 Mbps. 


Category 3 is able to transmit data at speeds up to 10 Mbps. It was popular for 
10BaseT installations before CAT-5 came out. 


Category 4 is able to transmit data at speeds up to 16 Mbps. 
Category 5 is able to transmit data at speeds up to 100 Mbps. 


Category 5e is able to transmit data at speeds up to 1 Gbps. The enhancement over 
CAT-5S is that the four twisted pairs of copper wire are physically separated and con- 
tain more twists per foot. This provides maximum interference protection. 


Category 6 is able to transmit data at speeds up to 10 Gbps, but only up to a distance 
of 55 meters. Its four twisted pairs of copper wire are oriented differently than in 
CAT-Se. This is the lowest grade of cable you should ever use as a backbone to connect 
different parts of a network together, such as those on different floors of a building. 


Category 6a can also handle 10 Gbps speed, but at longer distances (up to 100 meters) 
than CAT-6 can. 


Category 7 is an incremental upgrade over CAT-6e. Its most notable feature is that 
every wire pair is shielded, which provides better resistance to crosstalk and external 
noise. It can handle 10 Gbps at up to 100 meters. You might hear it also called Class F 
cabling. 


DPO CompTIA (and many others) usually shortens the word category to CAT 

‘gi and use the form CAT-5 to refer to Category 5, for example. This is a 
common way to refer to these categories, and you can feel free to use 
these terms interchangeably. If you are buying cable today, you shouldn't 
buy anything older than CAT-5e. 
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Before the CAT-6a standard was finalized, several cable vendors started 

OTE selling CAT-6e cable. Much like CAT-5e was an enhanced version of CAT-5, 
CAT-6e was supposed to be an enhanced version of CAT-6. The thing is, 
an official CAT-6e specification was never officially established; if you buy 
CAT-6e, there is no guarantee of the type of performance that you will get. 
The official standard is CAT-6a. 


The standard maximum transmission distance for UTP is 100 meters (328 feet). Note, 
however, that if you want to run 10GBaseT over CAT-6, you won’t get that much distance— 
about 55 meters under ideal conditions. 


Twisted-Pair Connector Types 


Twisted-pair cabling uses a connector type called an RJ (registered jack) connector. You are 
probably familiar with RJ connectors. Most landline phones connect with an RJ-11 connec- 
tor. The connector used with UTP cable is called RJ-45. The RJ-11 has room for two pairs 
(four wires), and the RJ-45 has room for four pairs (eight wires). 

In almost every case, UTP uses RJ connectors; a crimper is used to attach an RJ con- 
nector to a cable. Higher-quality crimping tools have interchangeable dies for both 
types of connectors. (Crimpers are discussed in Chapter 14, “Hardware and Network 
Troubleshooting.”) Figure 6.23 shows an RJ-11 connector and an RJ-45 connector. 


FIGURE 6.23 RJ-11 and RJ-45 connectors 
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You will also find RJ-45 splitters (often called Ethernet splitters) in the marketplace. The 
idea is similar to a coax splitter, but functionally they are very different. Coax signals are 
carried over one wire, while twisted pair uses either two pairs of wires (for 100 Mbps or 
slower connections) or all four pairs of wires (for Gigabit Ethernet and faster). An Ethernet 
splitter will take the incoming signal on two pairs and then split it, so on the output end 
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it produces two sets of signals using two pairs each. Because of this, Ethernet splitters are 
limited to 100 Mbps connections. 


P It is not recommended that you use Ethernet splitters on a network. If you 
A: need to connect multiple computers together using UTP, use a hub or a 
switch. We talk about both of these devices later in this chapter. 


Wiring Standards 


Twisted-pair cables are unique in today’s network environment in that they use multiple 
physical wires. Those eight wires need to be in the right places in the RJ-45 connector or 
it’s very likely that the cable will not work properly. To ensure consistency in the industry, 
two standards have been developed: 568A and 568B. 

Older implementations using UTP used only two pairs of wires, and those two pairs 
were matched to pins 1, 2, 3, and 6 in the connector. Newer applications such as Voice over 
IP and Gigabit Ethernet use all four pairs of wires, so you need to make sure that they’re all 
where they’re supposed to be. 

If you’re creating a regular network patch cable to connect a computer to a hub or 
switch, both sides need to have the same pinout. For that, follow either the 568A standard 
shown in Figure 6.24 or the 568B standard shown in Figure 6.25. Although there are no 
differences in terms of how the standards perform, some companies prefer one to the other. 


FIGURE 6.24 568A standard 













































































Pin | Pair | Wire Color 

1 3 i white/green 
2 3 2 N green 

3 2 1 white/orange 
4 1 2 | QED blue 

5 1 1 | Q= white/blue 

6 2 2 Q | orange 

7 4 1 white/brown 
8 4 2 gJ brown 





If you are going to create a cable to connect a computer to another computer directly, or 
yov’re going to make a connection from hub to hub, switch to switch, hub to switch, or a 
computer directly to a router, then you need what’s called a crossover cable. In a crossover 
cable, pin 1 to pin 3 and pin 2 to pin 6 are crossed on one side of the cable only. This is to 
get the “send” pins matched up with the “receive” pins on the other side, and vice versa. 
For easier visualization, look at Figure 6.25. 
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FIGURE 6.25 _ 568B standard 


















































Pin | Pair | Wire Color 

1 2 1 white/orange 
2 2 2 Q ) orange 

3 3 1 white/green 
4 1 2 blue 

5 1 1 | Qj) white/blue 

6 3 2 a green 

7 4 1 white/brown 
8 4 2 m brown 





























The key thing to remember is that a patch (straight-through) cable is the same on both 
ends. A crossover cable is different on each end. You should know the order of the colors 
for both standards. 


Fiber-Optic Cable 


Fiber-optic cabling has been called one of the best advances in cabling. It consists of a thin, 
flexible glass or plastic fiber surrounded by a rubberized outer coating (see Figure 6.26). It 
provides transmission speeds from 100 Mbps to 10 Gbps and a maximum distance of sev- 
eral miles. Because it uses pulses of light instead of electric voltages to transmit data, it is 
immune to electrical interference and to wiretapping. 


FIGURE 6.26 Fiber-optic cable 





Optical fiber cable by Buy_on_turbosquid_optical.jpg: Cable master derivative work: Srleffler (talk) - Buy_on_ 
turbosquid_optical.jpg http: //commons.wikimedia.org/wiki/File:Optical_fiber_cable.jpg#/media/ 
File:Optical_fiber_cable.jpg 


Fiber-optic cable is still not as popular as UTP for local area networks, however, because 
of its high cost of installation. Fiber-optic cabling is great for networks that need extremely 
fast transmission rates or transmissions over long distances or in networks that have had 
problems with electrical interference in the past. Fiber is also becoming more common as 
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backbones to the telecommunication system, and in many places fiber-optic cables can be 
used to deliver high-speed Internet connections to businesses and homes. We’ll talk more 
about this in Chapter 8. 


Fiber-Optic Cable Specifications 


Fiber-optic cable comes in two varieties: single-mode or multimode. The term mode refers 
to the bundles of light that enter the fiber-optic cable. Single-mode fiber (SMF) cable uses 
only a single mode (or path) of light to propagate through the fiber cable, whereas 
multimode fiber (MMF) allows multiple modes of light to propagate simultaneously. In 
multimode fiber-optic cable, the light bounces off the cable walls as it travels through the 
cable, which causes the signal to weaken more quickly. 

Multimode fiber is most often used as horizontal cable. It permits multiple modes of 
light to propagate through the cable, which shortens cable distances but delivers more avail- 
able bandwidth. Devices that use MMF cable typically use light-emitting diodes (LEDs) to 
generate the light that travels through the cable; however, lasers with multimode fiber-optic 
cable are now being used in higher-bandwidth network devices, such as Gigabit Ethernet. 
MMF can transmit up to 10 Gbps for up to 550 meters (1,804 feet, or just over one-third of 
a mile), depending on the standard used. 

Single-mode fiber cable is commonly used as backbone cabling. It is also usually the 
cable type used in phone systems. Light travels through single-mode fiber-optic cable using 
only a single mode, meaning that it travels straight down the fiber and does not bounce off 
the cable walls. Because only a single mode of light travels through the cable, single-mode 
fiber-optic cable supports lower bandwidth at longer distances than does multimode fiber- 
optic cable. Devices that use single-mode fiber-optic cable typically use lasers to generate 
the light that travels through the cable. SMF can transmit up to 10 Gbps for up to 40 kilo- 
meters (25.85 miles), depending on the standard used. 

We have talked about several different types of cables, and it’s possible that you will be 
asked to know maximum distances and transmission speeds on the A+ exam. Table 6.3 
summarizes the most common cable types, the specifications with which they are used, and 
their characteristics. 


TABLE 6.3 Common cable types and characteristics 





Ethernet Maximum Maximum 
Cabletype Specification Speed Distance Notes 
RG-6 coax 5 i 304 meters Digital cable/satellite 
television 
RG-59 coax * £ 228 meters Analog cable TV 
CAT-5 UTP 100BaseT 100 Mbps 100 meters 100 Mbps and less use two 
or STP pairs of wires. 
CAT-5e UTP 1000BaseT 1 Gbps 100 meters 1 Gbps and higher use four 


pairs of wires. 
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TABLE 6.3 Common cable types and characteristics (continued) 





Ethernet Maximum Maximum 
Cabletype Specification Speed Distance Notes 
CAT-6 UTP 10GBaseT 10 Gbps 55 meters Can support 1 Gbps up to 100 
meters 
CAT-6a UTP 10GBaseT 10 Gbps 100 meters 
CAT-7 UTP 10GBaseT 10 Gbps 100 meters Every wire pair is individually 
shielded. 


MMF fiber 1000BaseLX or 1 Gbps 550 meters For fiber, maximum length 
1000BaseSX depends on fiber size and 
quality. 


MMF fiber 10GBaseSR or 10 Gbps 300 meters 
10GBaseSW 


SMF fiber 10GBaseER or 10 Gbps 40 kilometers 
10GBaseEW 


*RG-6 and RG-59 coax cables can be used with many different specifications, and the maximum speed depends 
on cable quality and specification. 


Fiber-Optic Connector Types 


There are literally dozens of fiber-optic connectors out there because it seemed that every 
producer wanted its proprietary design to become “the standard.” Three of the most com- 
monly used ones are ST, SC, and LC. 

The straight tip (ST) fiber-optic connector, developed by AT&T, is probably the most 
widely used fiber-optic connector. It uses a BNC-style attachment mechanism that makes 
connections and disconnections fairly easy. The ease of use of the ST is one of the attributes 
that make this connector so popular. Figure 6.27 shows ST connectors. 


FIGURE 6.27 ST connectors 
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The subscriber connector (SC), also sometimes known as a square connector, is shown 
in Figure 6.28. SCs are latched connectors, making it virtually impossible for you to pull 
out the connector without releasing its latch, usually by pressing a button or release. SCs 
work with either single-mode or multimode optical fibers. They aren’t as popular as ST 
connectors for LAN connections. 


FIGURE 6.28 AsampleSC 





The last type of connector with which you need to be familiar is the local connector 
(LC), which was developed by Lucent Technologies. It is a mini form factor (MFF) connec- 
tor, especially popular for use with Fibre-Channel adapters, fast storage area networks, and 
Gigabit Ethernet adapters (see Figure 6.29). 


FIGURE 6.29 LC fiber connector 





The prices of network cables differ dramatically between copper and fiber cables. 
Exercise 6.1 asks you to investigate the difference for yourself. 





Pricing Network Cables 


1. Visit a major electronics retailer website (such as www. frys.com or an online retailer 
of your choice). 


2. Search for a CAT-6 patch cable. 


3. Price the difference between a 7-foot, 25-foot, and 50-foot cable. 
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EXERCISE 6.1 (continued) 


4. Search for the same lengths of CAT-7 patch cables. 


Note the price difference. (At the time of writing, CAT-7 cables were about twice as 
expensive as CAT-6 cables.) 


5. Search for fiber-optic cables. 


Notice, first, that most of them are much shorter in length than commercially available 
UTP cables. What is the price difference? Do you notice price differences between fiber- 
optic cables with different types of connectors? 


Networking Components 


Network cabling can link one computer to another, but most networks are far grander in 
scale than two simple machines. There are a variety of networking devices that provide 
connectivity to the network, make the network bigger, and offer auxiliary services to 
end users. 

In the following sections, we’re going to classify additional networking components into 
two broad categories: connectivity devices and auxiliary devices. 


Connectivity Devices 


We all know that if you want to be part of a computer network, you need to attach to that 
network somehow. Using network cables is one way to accomplish this, but not everyone is 
in a position to just plug a cable in and go. In addition, if you want to grow your network 
beyond a few simple connections, you need to use a special class of networking devices 
known as connectivity devices. These devices allow communications to break the bound- 
aries of local networks and really provide the backbone for nearly all computer networks, 
regardless of size. 

There are several categories of connectivity devices. These connectivity devices make 
it possible for users to connect to networks and to lengthen networks to almost unlim- 
ited distances. We will now discuss the most important and frequently used connectivity 
devices. 


Modems 


If you want to connect to a network or the Internet using plain old phone lines and a dial- 
up connection, a modem is the device you'll need. Modems got their name because they 
modulate and demodulate (mo-dem) digital signals that computers use into analog signals 
that can be passed over telephone lines. In the early to mid-1990s, modems were practically 
the only device available to get onto the Internet. Many companies also used them to allow 
users who were not in the office to dial into the local network. 

While modems did provide flexibility, you needed to be near a phone line, and speed was 
an issue. The fastest modems transferred data at 56 Kbps. At the time that felt lightning 
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quick, but fortunately our species has moved well beyond that technology. It’s horrifically 
slow by today’s standards and therefore rarely used. 


Cable/DSL Modems 


The traditional modem is essentially obsolete—most homes and many businesses now 
access the Internet through the use of a cable modem or digital subscriber line (DSL) 
modem. The primary difference between the two is the infrastructure they connect to. 
Cable modems use television cable lines, and DSL modems use telephone lines. 

Both cable and DSL modems are digital, and therefore aren’t technically modems 
because they don’t modulate and demodulate analog signals. We’ll cover cable Internet and 
DSL technologies in more detail in Chapter 8. 


Access Points 


Technically speaking, an access point is any point that allows a user on to a network. The 
term is commonly used in reference to a wireless access point, which lets users connect to 
your network via an 802.11 technology. We’ll get deeper into wireless access points and 
how to configure them in Chapter 8. 


Repeaters and Extenders 


A repeater, or extender, is a small, powered device that receives a signal, amplifies it, and 
sends it on its way. The whole purpose of a repeater is to extend the functional distance 

of a cable run. For example, you know that UTP is limited to 100 meters, but what if you 
need to make a cable run that is 160 meters long? (One answer could be to use fiber, but 
pretend that’s not an option.) You could run two lengths of cable with a repeater in the cen- 
ter, and it would work. Repeaters and extenders work at the Physical layer (Layer 1) of the 
OSI model. They don’t examine the data or make any changes to it—they just take what 
they receive and send it along its merry way. 


Hubs 


A hub is a device used to link several computers together. Hubs are very simple devices that 
possess no real intelligence. They simply repeat any signal that comes in on one port and 
copy it to the other ports (a process that is also called broadcasting). You’ll sometimes hear 
them referred to as multiport repeaters. They work at Layer 1 of the OSI model, just as 
repeaters do. 

There are two types of hubs: active and passive. Passive hubs connect all ports together 
electrically but do not have their own power source. Active hubs use electronics to amplify 
and clean up the signal before it is broadcast to the other ports. Active hubs can therefore 
be used to extend the length of a network, whereas passive hubs cannot. 


Patch Panels 


A patch panel is essentially a large hub that is rack mounted. It houses multiple cable 
connections but possesses no network intelligence. Its sole purpose is to connect cables 
together. Short patch cables are used to plug into the front-panel connectors, and there are 
longer, more permanent cables on the back. Figure 6.30 shows three rack-mounted devices. 
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The top one is a 24-port patch panel. Underneath that is a 24-port switch, and then a Dell 
server is shown. 


FIGURE 6.30 A patch panel, switch, and server 





Bridges 

Bridges operate in the Data Link layer (Layer 2) of the OSI model. They join similar topolo- 
gies, and they are used to divide network segments into multiple collision domains. Bridges 

isolate network traffic, preventing unwanted traffic from entering a segment when there are 
no recipients on that segment. 

For example, with 100 people on one Ethernet segment, performance will be mediocre 
because of the design of Ethernet and the number of workstations that are fighting to trans- 
mit. If you use a bridge to divide the segment into two segments of 50 workstations each, 
the traffic will be much lower on either side, and performance will improve. 

Bridges are not able to distinguish one protocol from another because higher levels of the 
OSI model are not available to them. If a bridge is aware of the destination MAC address, it 
can forward packets to the correct segment; otherwise, it forwards the packets to all segments. 


Because bridges work at the Data Link layer, they are aware of only hard- 
4 TE ware (MAC) addresses. They are not aware of and do not deal with IP 
addresses. 


Bridges are more intelligent than repeaters, but they are unable to move data across mul- 
tiple networks simultaneously. 
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The main disadvantage of bridges is that they forward broadcast packets. Broadcasts are 
addressed to all computers, so the bridge just does its job and forwards the packets. Bridges 
also cannot perform intelligent path selection, meaning that the path from the sender to the 
destination will always be the same regardless of network conditions. To stop broadcasts or 
perform intelligent path selection, you need a router. 


Switches 


Switches work at Layer 2, as do bridges, and they provide centralized connectivity, just like 
hubs. They often look similar to hubs, so it’s easy to confuse them. There are big perfor- 
mance differences, though. Hubs pass along all traffic, but switches examine the Layer 2 
header of the incoming packet and forward it properly to the right port and only that port. 
This greatly reduces overhead and thus improves performance because there is essentially 

a virtual connection between sender and receiver. The only downside is that switches for- 
ward broadcasts because they are addressed to everyone. 


P If it helps you to remember their functions, a hub is essentially a multiport 
‘GQ repeater, whereas a switch functions like a multiport bridge and, in some 
cases, a multiport router. 


Switches come in two varieties: unmanaged and managed. We’ve already explained the 
functionality of an unmanaged switch—it connects two or more computers, and passes 
along all traffic sent to a MAC address to its port. A managed switch adds the ability to 
configure ports, manage traffic, and monitor traffic for issues. For management, the switch 
will use a network protocol, such as Simple Network Management Protocol (SNMP). 
(We’ll talk about SNMP in depth in Chapter 7.) Managed switches cost more but provide 
features such as quality of service (QoS), redundancy, port mirroring, and virtual LANs 
(VLANs). Here’s a description of each: 


QoS QoS allows administrators to prioritize certain network traffic by assigning a higher 
priority to it. Higher priority traffic may come from a specific server or specific application. 
This is used a lot with Voice over IP (VoIP)—telephone calls over a computer network—to 

ensure that the voice data gets through and the connection doesn’t sound garbled. 


Redundancy Redundancy in networking terms means having multiple paths to get data 
from point A to point B. Administrators can use multiple switches to provide redundant 
paths, which add a layer of fault tolerance to the network. Managed switches use the 
Spanning Tree Protocol (STP) to implement redundancy. 


Port Mirroring This is a troubleshooting feature that is used in conjunction with a net- 
work monitor. A port can be configured to mirror another port. When traffic is sent to one, 
it’s also sent to the mirror. A network monitor attached to the mirrored port can then ana- 
lyze the traffic, without taking the network or device on the original port offline. 


VLANs Ina virtual LAN (VLAN), computers attached to the same physical switch can 
be segmented into multiple logical networks. This reduces network traffic on each virtual 
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LAN, because the traffic is isolated from other virtual LANs. Computers on one virtual 
LAN can still communicate with those on another virtual LAN, if the switch is configured 
properly. VLANs can also be completely isolated from each other, adding an additional 
level of security. 


Nearly every hub or switch that you will see has one or more status indicator lights on it. 
If there is a connection to a port of the switch, a light either above the connector or on an 
LED panel elsewhere on the device will light up. If traffic is crossing the port, the light may 
flash, or there may be a secondary light that will light up. Many devices can also detect a 
problem in the connection. If a normal connection produces a green light, a bad connection 
might produce an amber light. 


Routers 


Routers are highly intelligent devices that connect multiple network types and determine 
the best path for sending data. They can route packets across multiple networks and use 
routing tables to store network addresses to determine the best destination. Routers operate 
at the Network layer (Layer 3) of the OSI model. Because of this, they make their decisions 
on what to do with traffic based on logical addresses, such as an IP address. 

Routers have a few key functions: 


= They connect multiple networks to each other, which none of the other devices we have 
discussed do. 


= Routers do not forward broadcasts. (Switches and bridges break up collision domains, 
whereas routers break up broadcast domains.) 


= Routers are normally used to connect one LAN to another. Typically, when a WAN is 
set up, at least two routers are used. 


In the last several years, wireless routers have become all the rage for small business 
and home networks. They possess all the functionality of routers historically associated 
with networking, but they are relatively inexpensive. We’ll talk more about these routers in 
Chapter 8. 


Auxiliary Devices 


The devices we just talked about are specialized to provide connectivity. This next group of 
devices adds in features outside of connectivity that can help network users, specifically by 
protecting them from malicious attacks, providing network connections over power lines, 
and providing power over Ethernet cables. 


Firewall 


A firewall is a hardware or software solution that serves as your network’s security guard. 
They’re probably the most important devices on networks that are connected to the 
Internet. Firewalls can protect you in two ways: They protect your network resources from 
hackers lurking in the dark corners of the Internet, and they can simultaneously prevent 
computers on your network from accessing undesirable content on the Internet. At a basic 
level, firewalls filter packets based on rules defined by the network administrator. 
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Firewalls can be stand-alone “black boxes,” software installed on a server or router, or 
some combination of hardware and software. Most firewalls will have at least two network 
connections: one to the Internet, or public side, and one to the internal network, or private 
side. Some firewalls have a third network port for a second semi-internal network. This 
port is used to connect servers that can be considered both public and private, such as web 
and email servers. This intermediary network is known as a demilitarized zone (DMZ). 


P A DMZ is a semi-public network segment located between a perimeter 
A: router and an internal router on your network. It is used for web servers, 
FTP servers, and email relay servers. 


Firewalls can be network based, in that they protect a group of computers (or an entire 
network), or they can be host based. A host-based firewall (such as Windows Firewall) pro- 
tects only the individual computer on which it’s installed. 

A firewall is configured to allow only packets that pass specific security restrictions to 
get through. By default, most firewalls are configured as default deny, which means that 
all traffic is blocked unless specifically authorized by the administrator. The basic method 
of configuring firewalls is to use an access control list (ACL). The ACL is the set of rules 
that determines which traffic gets through the firewall and which traffic is blocked. ACLs 
are typically configured to block traffic by IP address, port number, domain name, or some 
combination of all three. 


We'll cover firewalls in more depth in Chapter 8 when we show you how to 
A TE set up a network. 


Cloud-Based Network Controller 


The wireless telecommunication services field is expanding rapidly and includes support 
for wireless networking in addition to voice communication. One of the key components 
in this space is called a cloud-based network controller. A cloud-based network controller 
allows an administrator to remotely manage cloud-capable network infrastructure, includ- 
ing access points, switches, and routers. With these devices, the administrator can create a 
wireless mesh network (WMN) and manage it from anywhere. 

To make a WMN work, first purchase hardware that supports cloud-based manage- 
ment. Install the hardware (say, an access point) just like any other access point, and 
connect devices. Then, with an app on a laptop, tablet, or smartphone, manage and moni- 
tor the device. Several companies specialize in this field, including OpenMesh (and the 
CloudTrax app), Ruckus, Riverbed Xirrus, and Mimosa. 


Ethernet over Power 


Occasionally, you will find yourself in a spot where it’s not possible to run cables for a net- 
work connection and wireless is a problem as well. For example, perhaps you are installing 
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a device that only has a wired RJ-45 port but you can’t get a cable to it. Ethernet over 
Power can help make that connection by using electrical outlets; an adapter is shown in 
Figure 6.31. 


FIGURE 6.31 Ethernet over Power adapter 





For Ethernet over Power to work, both devices must be on the same electrical circuit, 
such as would be the case for a house or a small building. To connect the devices, plug both 
in and then press a button on the side of each device. They will search the electrical circuit 
for the signal from the other and negotiate the connection. As you can see in Figure 6.31, 
an Ethernet cable also connects to the device. You can plug that cable into a device directly 
or into a connectivity device, such as a hub or a switch. 


Power over Ethernet 


If you can run an Ethernet signal over power lines, why can’t you run electricity over net- 
work cables? As it turns out, you can—with Power over Ethernet (PoE). This technology is 
extremely useful in situations where you need a wireless access point in a relatively remote 
location that does not have any power outlets. For it to work, the access point and the 
device it plugs into (such as a switch) both need to support PoE. In a configuration such as 
this, the switch would be considered an endspan PoE device, because it’s at the end of the 
network connection. If the switch in question doesn’t support PoE, you can get a device 
that sits between the switch and the access point (called a midspan device) whose sole pur- 
pose is to supply power via the Ethernet connection. Appropriately, these midspan devices 
are called Power over Ethernet injectors. 
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Summary 


In this chapter, we covered a broad variety of networking topics. This chapter contains 
everything that you need to get you ready for the networking questions on the A+ 220-1001 
exam. At the same time, the A+ exam (and consequently this chapter) barely scratches the 
surface of the things that you can learn about networking. If making computers talk to 
each other effectively is an area of interest to you, we suggest that you consider studying for 
the CompTIA Network+ exam after you pass your A+ tests. 

First, we started with networking fundamentals. Much of the discussion of fundamen- 
tals was about understanding the concepts behind networking so that you know how to 
set them up. Topics included LANs versus WANs; clients, servers, and resources; network 
operating systems; peer-to-peer and server-based resource models; network topologies, such 
as bus, star, and ring; and theoretical networking models and standards, such as the OSI 
model and IEEE standards. 

Next, you learned about hardware devices used in networking. Each computer needs a 
network adapter (NIC) of some sort to connect to the network. On a wired network, cables 
are required, and there are several different types, including coaxial, STP, UTP, and fiber- 
optic. Each cable type has its own specific connector. 

Finally, we discussed various types of network connectivity hardware and auxiliary 
devices and their use. Some users may need a modem, cable modem, DSL modem, or access 
point to get onto the network. All wired computers will plug into a connectivity device, 
such as a hub or a switch, which in turn is connected to another connectivity device, which 
may be a bridge or a router. Other devices on the network, such as firewalls, cloud-based 
network controllers, Ethernet over Power, and PoE injectors provide additional services. 


Exam Essentials 


Know the difference between workgroups and domains. A workgroup is often referred to 
as a peer-to-peer network, and there is no centralized administration. A domain is a server- 
based network; the server (often called a domain controller) manages user accounts and 
security for the network. Workgroups are best suited for networks with 10 or fewer com- 
puters and low security requirements. 


Know the difference between a LAN, WAN, PAN, MAN, and WMN. ALAN isa local 
area network, which typically means a network in one centralized location. A WAN is 

a wide area network, which means several LANs in remote locations connected to each 
other. A PAN is a small Bluetooth network. A network that spans an area such as a city 
or a campus isa MAN. A WMN isa wireless mesh network that may be managed with a 
cloud-based network controller. 
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Understand the difference between a patch (straight-through) cable and a crossover cable. 
Patch cables are used to connect hosts to a switch or a hub. Crossover cables switch pins 1 
and 3 and 2 and 6 on one end. They are used to connect hubs to hubs, switches to switches, 
hosts to hosts, and hosts to routers. 


Know what a plenum cable is used for. Plenum cables do not release toxic gas when 
burned and therefore are required in spaces that circulate air (plenums) within buildings. 


Know what hubs, switches, and routers are. These are all network connectivity devices. 
Hubs and switches are used to connect several computers or groups of computers to each 
other. Routers are more complex devices that are often used to connect network segments 
or networks to each other. 


Know which types of cables are used in networking and the connectors for each. 
Common network cables include coaxial, STP, UTP (Category 5/Se, and Category 6), and 
fiber-optic. Coax cables use BNC connectors; STP and UTP cables use RJ-45 connectors; 
and fiber-optic cables uses ST, SC, and LC connectors. You may also be tested on phone 
connectors, which are called RJ-11 connectors. 


Understand network topologies. Network topologies are bus, star, ring, mesh, and 


hybrid. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. 


is immune to electromagnetic or radio-frequency interference. 





Twisted-pair cabling 
CSMA/CD 


Broadband coaxial cabling 


90 B >} 


Fiber-optic cabling 


Which of the following is a type of connector used with coaxial cable? 
A. RG-6 


B. RG-59 
C. BNC 
D. SC 


You need to put a connector on the end of an Ethernet crossover cable. The existing end has a 
white and green colored wire at pin 1. What color do you need to make pin 1 on the new end? 


A. White/green 
B. Green 

C. White/orange 
D. Orange 


is the type of media access method used by NICs that listen to or 
sense the cable to check for traffic and send only when they hear that no one else is transmitting. 





A. Token passing 
B. CSMA/CD 

C. CSMA/CA 

D. Demand priority 


What is the lowest grade of UTP that is rated for 100 Mbps transmission? 
A. CAT-S 


B. CAT-Se 
C. CAT-6 
D. CAT-6a 


A physical star topology consists of several workstations that branch off a central device 
called a 





A. NIC 
B. Bridge 
C. Router 
D. Hub 
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10. 


11. 


12. 
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Of all the network cabling options, offers the longest possible 
segment length. 


A. Unshielded twisted-pair 
B. Coaxial 

C. Fiber-optic 

D. Shielded twisted-pair 


What devices transfer packets across multiple networks and use tables to store network 
addresses to determine the best destination? 


A. Routers 
B. Bridges 
C. Hubs 

D. Switches 


Which of the following networking hardware devices is capable of creating VLANs? 

A. Firewall 

B. Repeater 

C. Unmanaged switch 

D. Managed switch 

Which of the following wireless communication standards is often described in terms of a 
wireless personal area network? 

A. Bluetooth 


B. Infrared 
C. Cellular 
D. Ethernet 


Which of the following statements are not associated with a star network? (Choose all that 
apply.) 

A. A single cable break can cause complete network disruption. 

B. All devices connect to a central device. 

C. It uses a single backbone computer to connect all network devices. 

D. It uses a dual-ring configuration. 

If you are going to run a network cable in the space above the drop ceiling in your office, 
which type of cable should you use? 

A. Plenum 

B. PVC 

C. Coaxial 

D. Fiber-optic 


13. 


14. 


15. 


16. 


17. 


18. 
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Which of the following connector types is an MFF connector? 


A. BNC 
B. ST 
Cc. SC 
D. LC 


Which Ethernet specification would you be running if you needed to make a connection of 
10 Gbps over a distance of 5 kilometers? 


A. 10GBaseER 
B. 10GBaseT 

C. 10GBaseSR 
D. 10GBaseLR 


You have been asked to configure a full mesh network with seven computers. How many 
connections will this require? 


A. 6 
B. 7 
Cc. 21 
D. 42 


You are installing a network at a friend’s house, and it’s impossible to run a network cable 
from one point in the house to another. He does not want to use wireless networking. 
Which of the following is the best option to get network connectivity between the two 
points? 


A. Power over Ethernet injector 
B. Power over Ethernet switch 
C. Ethernet over Power 

D. Bridge 


What type of device will block unwanted traffic from your network using a set of rules 
called an ACL? 


A. Router 
B. Firewall 
C. Bridge 
D. NAS 


Which type of coaxial cable is recommended for digital television cable signals? 
A. RG-6 


B. RG-8 
C. RG-58 
D. RG-59 
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19. Which of the following devices work with MAC addresses to determine what to do with 
network traffic? (Choose two.) 


A. Hub 

B. Router 
C. Bridge 
D. Switch 


20. Transmitting at 10 Gbps, how far can signals on an MMF cable travel? 
A. 100 meters 
B. 550 meters 
C. 1 kilometer 
D. 40 kilometers 


Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answer compares to the authors’, refer 
to Appendix B. 

Draw three examples of physical network topologies and explain how each works. 


CompTIA® A+® Complete Study Guide, Fourth Edition 
By Quentin Docter and Jon Buhagiar 
Copyright © 2019 by John Wiley & Sons, Inc. 


Introduction to 
TCP/IP 





THE FOLLOWING COMPTIA A+ 220-1001 
EXAM OBJECTIVES ARE COVERED IN THIS 
CHAPTER: 





y 21 Compare and contrast TCP and UDP ports, protocols, 
and their purposes. 





= Ports and protocols 

= 21—FTP 

= 22—SSH 

= 23—Telnet 

a 25—SMTP 

a 53—DNS 

= 80—HTTP 

a 110—POP3 

= 143—IMAP 

a 443—HTTPS 

= 3389—RDP 

= 137-139—NetBIOS/NetBT 

a 445—SMB/CIFS 

a 427—SLP 

= 548—AFP 

= 67/68—DHCP 

= 389—LDAP 

a 161/162—SNMP 
=» TCP vs. UDP 





y 2.6 Explain common network configuration concepts. 
= IP addressing 
= Static 
a Dynamic 
= APIPA 
a Link local 
=» DNS 
= DHCP 
a Reservations 
= IPv4 vs. IPv6 
a Subnet mask 
=» Gateway 
a VPN 
a VLAN 
= NAT 





Networking protocols are a lot like human languages in that 
they are the language that computers speak when talking to 
BERLE oS each other. If computers don’t speak the same language, they 
won't be able to communicate. To complicate matters, there are dozens of different lan- 
guages out there that computers can use. Just like humans, computers can understand and 
use multiple languages. Imagine that you are on the street and someone comes up to you 
and speaks in Spanish. If you know Spanish, you will likely reply in kind. It doesn’t matter 
if both of you know English as well because you’ve already established that you can com- 
municate. On the other hand, it’s going to be a pretty quick conversation if you don’t know 
Spanish. This same concept applies to computers that are trying to communicate. They 
must have a network protocol in common in order for the conversation to be successful. 

Throughout the years, hundreds of network protocols have been developed. As the use 
of networking exploded, various companies developed their own networking hardware, 
software, and proprietary protocols. Some were incorporated as an integral part of the 
network operating system, such as Banyan VINES. One-time networking giant Novell 
had IPX/SPX. Microsoft developed NetBEUI. Apple created AppleTalk. Others included 
DECnet, SNA, and XNS. While a few achieved long-term success, most have faded into 
oblivion. The one protocol suite that has survived is TCP/IP. While it has some structural 
advantages, such as its modularity, it didn’t necessarily succeed because it was inherently 
superior to other protocols. It succeeded because it is the protocol of the Internet. 

This chapter focuses on the TCP/IP protocol suite. It is the protocol suite used on the 
Internet, but it’s also the protocol suite used by the vast majority of home and business net- 
works today. We’ll start by taking a quick look at the history of TCP/IP and the model on 
which it’s based. Then we’ll dive deeper into TCP/IP structure and the individual protocols 
it comprises. From there, we’ll spend some time on IP addressing, including IPv4 and IPv6. 
Entire books have been written on TCP/IP—so there’s no way we could cover it entirely 
in one chapter. Instead, we’ll give you the foundation that you need to understand it well, 
work effectively with it in the field, and pass the A+ exam. 





Understanding TCP/IP 


As we mentioned in the introduction, computers use a protocol as a common language 

for communication. A protocol is a set of rules that govern communications, much like a 
language in human terms. Of the myriad protocols out there, the key ones to understand 
are the protocols in the TCP/IP suite, which is a collection of different protocols that work 
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together to deliver connectivity. Consequently, they’re the only ones listed on the A+ exam 
objectives. In the following sections, we’ll start with a look at its overall structure and then 
move into key protocols within the suite. 


TCP/IP Structure 


The Transmission Control Protocol/Internet Protocol (TCP/IP) suite is the most popular 
network protocol in use today, thanks mostly to the rise of the Internet. While the protocol 
suite is named after two of its hardest-working protocols, Transmission Control Protocol 
(TCP) and Internet Protocol (IP), TCP/IP actually contains dozens of protocols working 
together to help computers communicate with one another. 

TCP/IP is robust and flexible. For example, if you want to ensure that the packets are 
delivered from one computer to another, TCP/IP can do that. If speed is more important 
than guaranteed delivery, then TCP/IP can ensure that too. The protocol can work on 
disparate operating systems, such as UNIX, Linux, macOS, Windows, iOS, and Android. 
It can also support a variety of programs, applications, and required network functions. 
Much of its flexibility comes from its modular nature. 

You’re familiar with the seven-layer OSI model that we discussed in Chapter 6, 
“Networking Fundamentals.” Every protocol that’s created needs to accomplish the tasks 
(or at least the key tasks) outlined in that model. The structure of TCP/IP is based on a sim- 
ilar model created by the United States Department of Defense—that is, the Department of 
Defense (DoD) model. The DoD model (sometimes referred to as the TCP/IP model) has 
four layers that map to the seven OSI layers, as shown in Figure 7.1. 


FIGURE 7.1 The DoD and OSI models 


DoD Model OSI Model 


Application 


Process/ 
Application 


Data Link 





Network 
Access 


Physical 





The overall functionality between these two models is virtually identical; the layers 
just have different names. For example, the Process/Application layer of the DoD model is 
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designed to combine the functionality of the top three layers of the OSI model. Therefore, 
any protocol designed against the Process/Application layer would need to be able to per- 
form all the functions associated with the Application, Presentation, and Session layers in 
the OSI model. 

TCP/IP’s modular nature and common protocols are shown in Figure 7.2. 


FIGURE 7.2 TCP/IP protocol suite 
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The majority of TCP/IP protocols are located at the Process/Application layer. These 
include some protocols with which you may already be familiar, such as Hypertext Transfer 
Protocol (HTTP), File Transfer Protocol (FTP), Simple Mail Transfer Protocol (SMTP), 
Post Office Protocol (POP), and others. 

At the Host-to-Host layer, there are only two protocols: TCP and User Datagram 
Protocol (UDP). Most applications will use one or the other to transmit data, although 
some can use both but will do so for different tasks. 

The most important protocol at the Internet layer is IP. This is the backbone of TCP/IP. 
Other protocols at this layer work in conjunction with IP, such as Internet Control Message 
Protocol (ICMP) and Address Resolution Protocol (ARP). 

You'll notice that the Network Access layer doesn’t have any protocols, as such. This 
layer describes the type of network access method that you are using, such as Ethernet, 
Wi-Fi, or others. 


Process/Application Layer Protocols 


As we mentioned in the previous section, most of the protocols within the TCP/IP suite 
are at the Process/Application layer. This is the layer of differentiation and flexibility. For 
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example, if you want to browse the Internet, the HTTP protocol is designed for that. FTP 
is optimized for file downloads, and Simple Mail Transfer Protocol (SMTP) is used for 
sending email. 

Before we get into the protocols themselves, let’s take a quick look into a few key points 
on the TCP/IP suite’s flexibility. There are literally dozens of protocols at the Process/ 
Application layer, and they have been created over time as networking needs arose. Take 
HTTP, for example. The first official version was developed in 1991, nearly 20 years after 
TCP/IP was first implemented. Before this protocol was created, there weren’t any effective 
client-server request-response protocols at this layer. HTTP let the client (web browser) ask 
the web server for a page, and the web server would return it. Going one step further, there 
was a need for secure transactions over HT TP—hence, the creation of HTTPS in 1994. As 
new applications are developed or new networking needs are discovered, developers can 
build an application or protocol that fits into this layer to provide the needed functionality. 
They just need to make sure that the protocol delivers what it needs to and can communi- 
cate with the layers below it. The following sections describe some of the more common 
Process/Application protocols—and the ones listed in the A+ exam objectives. 


AFP 


The Apple Filing Protocol (AFP) was developed in the 1980s for use with the AppleTalk 
network protocol. AppleTalk was a proprietary networking protocol developed by Apple 
for use on Macintosh computers, but it’s fallen out of use today. AFP is a file transfer pro- 
tocol similar to FTP and Server Message Block (SMB), which are discussed later in this 
section. It was the default file transfer protocol on Mac OS until Apple changed to SMB2 in 
2013. Converting to the industry-standard SMB protocol helped enhance interoperability 
between Macs and PCs. 


PP Mac users can choose which file transfer protocol to use within macOS. 
A: For example, both AFP and SMB can be used, and SMB used only with 
Windows users. The setting is changed under the Apple menu > System 
Preferences > Sharing. Choose file sharing, then Options. 


CIFS 


Common Internet File System (CIFS) is a Microsoft-developed enhancement of the SMB 
protocol, which was also developed by Microsoft. The intent behind CIFS is that it can be 
used to share files and printers between computers, regardless of the operating system that 
they run. It’s been the default file and print sharing protocol on Windows-based computers 
since Windows 2000. 


DHCP 

Dynamic Host Configuration Protocol (DHCP) dynamically assigns IP addresses and 
other IP configuration information to network clients. Configuring your network clients to 
receive their IP addresses from a DHCP server reduces network administration headaches. 
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We'll cover the mechanics of how DHCP works later in this chapter when we talk about IP 
addressing. 


DNS 


You probably use Domain Name System (DNS) every day whether you realize it or not. Its 
purpose is to resolve hostnames to IP addresses. For example, let’s say that you open your 
web browser and type in a Uniform Resource Locator (URL) such as http: //www.wiley 
.com. Your computer needs to know the IP address of the server that hosts that website in 
order for you to connect to it. Through a DNS server, your computer resolves the URL to 
an IP address so communication can happen. DNS as a service is discussed in more detail 
later in this chapter. 


P You will find some debate about what DNS stands for. The official name, 
‘Qi according to the Internet Engineering Task Force (IETF) is Domain Name 
System. However, CompTIA lists Domain Name Service and Domain Name 
Server as full names for the acronym. Regardless, the important thing to 
remember is what DNS does, which is resolves hostnames to IP addresses. 


FTP 


The File Transfer Protocol (FTP) is optimized to do what it says it does—transfer files. 
This includes both uploading and downloading files from one host to another. FTP is both 
a protocol and an application. Specifically, FTP lets you copy files, list and manipulate 
directories, and view file contents. You can’t use it to execute applications remotely. 

Whenever a user attempts to access an FTP site, they will be asked to log in. If it’s a 
public site, you can often just use the login name anonymous and then provide your email 
address as the password. Of course, there’s no rule saying that you have to give your real 
email address if you don’t want to. If the FTP site is secured, you will need a legitimate 
login name and password to access it. If you are using a browser such as Chrome, Firefox, 
Internet Explorer, or Edge to connect via FTP, the correct syntax in the address window is 
ftp: //username: password@ftp. ftpsite.com. 

The big downside to FTP is that it’s unsecure. It transmits usernames and passwords in 
plain text. If a potential hacker is monitoring network traffic, this information will come 
through quite clearly. Be aware of this when using FTP, and make sure the FTP password is 
something not used to log into any other services. 


In Windows XP and later, you can type a URL such as the one in the FTP 
4 TE example into the Run box to connect as well. 


HTTP 


The most commonly used Process/Application layer protocol is HTTP. It manages the commu- 
nication between a web server and client, and lets you connect to and view all the content that 
you enjoy on the Internet. All the information transmitted by HTTP is plain text, which means 
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that it’s not secure. Therefore, it’s not a good choice for transmitting sensitive or personal infor- 
mation, such as usernames and passwords, or for transmitting banking information. 


HTTPS 


To encrypt traffic between a web server and client securely, Hypertext Transfer Protocol 
Secure (HTTPS) can be used. HTTPS connections are secured using either Secure Sockets 
Layer (SSL) or Transport Layer Security (TLS). 

From the client side, the most common issue that you will encounter when HTTPS is in 
use on a website is that users may not know the proper context. To access most websites, 
you use http:// in the address bar. To get to a site using HTTPS, you need to use https: // 
instead. 

From the client (web browser) side, users will know that the site is secure because the 
browser will display a small padlock icon next to the address name. 








G Real World Scenario 


How Secure Is It? 


You have probably heard before that you should not enter personal information (such as 
a credit card number) into an unsecure website. But what does that really mean? 


First, know what to look for. If you are entering information into a website form and the 
address of the site begins with just http: //, you're just asking for someone to steal 
the information! The HTTP protocol transmits data in plain text, meaning that there is 
no encryption at all between your computer and the server. On the other hand, HTTPS 
encrypts the data transmissions as they cross the wire. 


To use HTTPS, the website needs to obtain an SSL certificate from a reputable certificate 
authority, which verifies the identity of the website. So the good news is that if you are 
accessing a site with https: // in the header, you know that the site is what it says it is 
(and not a fake site or Trojan horse) and that transmissions between your computer and 
that site are encrypted. Once the data is on the website's server, though, HTTPS is no lon- 
ger relevant and other protection methods are needed to keep your data secure. 





Occasionally, you might visit a website that uses HTTPS and get a pop-up 

4 TE error message saying that the certificate has expired or could not be vali- 
dated. This is most likely a case of the certificate legitimately expiring, but 
it could be that it’s a Trojan horse website. Proceed with caution! 


IMAP 


Internet Message Access Protocol (IMAP) is a secure protocol designed to download email. 
Its current version is version 4, or IMAP4. It’s the client-side email management protocol of 
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choice, having replaced the unsecure POP3. Most current email clients, such as Microsoft 
Outlook and Gmail, are configured to be able to use either IMAP4 or POP3. 

IMAP4 has some definite advantages over POP3. First, IMAP4 works in connected and 
disconnected modes. With POP3, the client makes a connection to the email server, down- 
loads the email, and then terminates the connection. IMAP4 allows the client to remain 
connected to the email server after the download, meaning that as soon as another email 
enters the inbox, IMAP4 notifies the email client, which can then download it. Second, 
it also lets you store the email on the server, as opposed to POP3, which requires you to 
download it. Third, IMAP4 allows multiple clients to be simultaneously connected to the 
same inbox. This can be useful for smartphone users who have both Outlook on their 
workstation and their smartphone email client operational at the same time or for cases 
where multiple users monitor the same mailbox, such as on a customer service account. 
IMAP4 allows each connected user or client to see changes made to messages on the server 
in real time. 


LDAP 


The Lightweight Directory Access Protocol (LDAP) is a directory services protocol based 
on the X.500 standard. LDAP is designed to access information stored in an information 
directory typically known as an LDAP directory or LDAP database. 

On your network, you probably have a lot of information, such as employee phone 
books and email addresses, client contact lists, and infrastructure and configuration data 
for the network and network applications. This information might not get updated fre- 
quently, but you might need to access it from anywhere on the network, or you might have 
a network application that needs access to this data. LDAP provides you with the access, 
regardless of the client platform from which you’re working. You can also use access con- 
trol lists (ACLs) to set up who can read and change entries in the database using LDAP. A 
common analogy is that LDAP provides access to and the structure behind your network’s 
phone book. 


NetBIOS/NetBT 


Network Basic Input/Output System (NetBIOS) is an application programming interface 
(API) that allows computers to communicate with each other over the network. It works at 
Layer 5 of the OSI model. Consequently, it needs to work with another network protocol to 
handle the functions of Layer 4 and below. NetBIOS running over TCP/IP is called NetBT, 
or NBT. Specifically, NetBIOS provides three services: 


= Naming service, for name registration and resolution 
= Datagram distribution service, for connectionless communication 
a Session management service, for connection-oriented communication 


For many years, Microsoft network clients were configured with a NetBIOS name, 
which was their network name. To communicate with another computer on the network, 
the NetBIOS name would need to be resolved (matched) to an IP address. This was done 
with a WINS (Windows Internet Name Service) server or LMHOSTS file, and could not be 
performed across any routed connection (which includes the Internet). 
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If you’re familiar with hostnames, they were somewhat analogous and could be one in 
the same or totally different. (If you’re not familiar with hostnames and DNS, we cover it 
later in this chapter.) The big differences are that hostnames are resolved with a DNS server 
(or HOSTS file) and can work across the Internet. WINS was far inferior to DNS for name 
resolution, so Microsoft ended up adopting DNS like the rest of the industry. 


POP3 


For a long time, Post Office Protocol 3 (POP3) had been the preferred protocol for down- 
loading email. It’s being replaced by IMAP4 because IMAP4 includes security and more 
features than POP3. 


RDP 


Developed by Microsoft, the Remote Desktop Protocol (RDP) allows users to connect to 
remote computers and run programs on them. When you use RDP, you see the desktop of 
the computer you’ve signed into on your screen. It’s like you’re really there, even though 
you're not. 

When you use RDP, the computer at which you are seated is the client and the com- 
puter you’re logging into is the server. RDP client software is available for Windows, 
Linux, macOS, iOS, and Android. Microsoft’s RDP client software is called Remote 
Desktop Connection. The server uses its own video driver to create video output and 
sends the output to the client using RDP. Conversely, all keyboard and mouse input from 
the client is encrypted and sent to the server for processing. RDP also supports sound, 
drive, port, and network printer redirection. In a nutshell, this means that if you could 
see, hear, or do it sitting at the remote computer, you could see, hear, or do it at the RDP 
client too. 

Services using this protocol can be great for telecommuters. It’s also very handy for tech- 
nical support folks, who can log into and assume control over a remote computer. It’s a lot 
easier to troubleshoot and fix problems when you can see what’s going on and “drive.” 


SLP 


The Service Location Protocol (SLP) is a non-proprietary protocol designed to help locate 
resources on a network. Without protocols such as SLP (and SMB), users wanting to access 
networked resources need to enter the hostname or IP address of the machine that provides 
the resource. SLP makes the resources visible and therefore easy to connect to. 

SLP was developed by the Internet Engineering Task Force (IETF), so it’s considered an 
industry standard. The advantage is that it can be used with non-Microsoft operating sys- 
tems, such as macOS and Linux. 


SMB 


Server Message Block (SMB) is a protocol originally developed by IBM but then enhanced 
by Microsoft, IBM, Intel, and others. It’s used to provide shared access to files, printers, 
and other network resources and is primarily implemented by Microsoft systems. In a way, 
it can function a bit like FTP only with a few more options, such as the ability to con- 

nect to printers, and more management commands. It’s also known for its ability to make 
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network resources easily visible through various Windows network apps (such as Network 
in File Explorer). 


SMTP 


We've already looked at a few protocols that are for downloading or receiving email. 
Simple Mail Transfer Protocol (SMTP) is the protocol most commonly used to send email 
messages. Because it’s designed to send only, it’s referred to as a push protocol. SMTP is the 
protocol used to send email from mail server to mail server as well as from a mail server 

to an email client. An email client locates its email server by querying the DNS server for a 
mail exchange (MX) record. After the server is located, SMTP is used to push the message 
to the email server, which will then process the message for delivery. 


SNMP 


Simple Network Management Protocol (SNMP) gathers and manages network perfor- 
mance information. 

On your network, you might have several connectivity devices, such as routers and 
switches. A management device called an SNMP server can be set up to collect data from 
these devices (called agents) and ensure that your network is operating properly. Although 
SNMP is mostly used to monitor connectivity devices, many other network devices are 
SNMP-compatible as well. The most current version is SNMPv3. 


SSH 


Secure Shell (SSH) can be used to set up a secure Telnet session for remote logins or for 
remotely executing programs and transferring files. Because it’s secure, it was originally 
designed to be a replacement for the unsecure telnet command. A common client interface 
using SSH is called OpenSSH (www. openssh. com). 


Telnet 


It seems as though Telnet has been around since the beginning of time as a terminal emula- 
tion protocol. Someone using Telnet can log into another machine and “see” the remote 
computer in a window on their screen. Although this vision is text only, the user can man- 
age files on that remote machine just as if they were logged in locally. 

The problem with telnet and other unsecure remote management interfaces (such as 
rcp [remote copy] and ftp) is that the data they transmit, including passwords, is sent in 
plain text. Anyone eavesdropping on the line can intercept the packets and thus obtain 
usernames and passwords. SSH overcomes this by encrypting the traffic, including user- 
names and passwords. 


Host-to-Host Layer Protocols 


After the myriad protocols at the Process/Application layer, the simplicity of the Host-to- 
Host layer is welcome. At this layer there are two alternatives within the TCP/IP suite: TCP 
and UDP. The major difference between the two is that TCP guarantees packet delivery 
through the use of a virtual circuit and data acknowledgements and UDP does not. Because 
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of this, TCP is often referred to as connection-oriented, whereas UDP is connectionless. 
Because UDP is connectionless, it does tend to be somewhat faster, but we’re talking about 
milliseconds here. 

Another key concept to understand about TCP and UDP is the use of port numbers. 
Imagine a web server that is managing connections from incoming users who are viewing 
web content and others who are downloading files. TCP and UDP use port numbers to 
keep track of these conversations and make sure that the data gets to the right application 
and right end user. Conversely, when a client makes a request of a server, it needs to do so 
on a specific port to make sure that the right application on the server hears the request. 
For example, web servers are listening for HTTP requests on port 80, so web browsers 
need to make their requests on that port. 

A good analogy for understanding port numbers is to think of cable or satellite televi- 
sion. In this analogy, the IP address is your house. The cable company needs to know where 
to send the data. But once the data is in your house, which channel are you going to receive 
it on? If you want sports, that might be on one channel, but weather is on a different chan- 
nel, and the cooking show is on yet another. Those channels are analogous to ports. You 
know that if you want a cooking show, you need to turn to channel 923 (or whatever). 
Similarly, the client computer on a network knows that if it needs to ask a question in 
HTTP, it needs to do it on port 80. 

There are 65,536 ports, numbered from 0 to 65535. Ports 0 through 1023 are called the 
well-known ports and are assigned to commonly used services, and 1024 through 49151 
are called the registered ports. Anything from 49152 to 65535 is free to be used by applica- 
tion vendors. Fortunately, you don’t need to memorize them all. 


PP TCP/IP applications combine the host's IP address with the port number in 
4 TE order to communicate. This combination is known as a socket. 


Table 7.1 shows the ports used by some of the more common protocols. You should 
know each of these for the A+ exam. 


TABLE 7.1 Common port numbers 





Service Protocol Port(s) 
FTP TCP 20, 21 
SSH TCP 22 
Telnet TCP 23 


SMTP TCP 25 
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Service Protocol Port(s) 
DNS TCP/UDP 53 
DHCP UDP 67, 68 
HTTP TCP 80 
POP3 TCP 110 
NetBIOS/NetBT TCP 137-139 
IMAP4 TCP 143 
SNMP UDP 161, 162 
LDAP TCP 389 

SLP TCP 427 
HTTPS TCP 443 
SMB/CIFS TCP 445 
AFP TCP 548 
RDP TCP 3389 


A complete list of registered port numbers can be found at ww. iana.org and several 
other sites, such as Wikipedia. 


Internet Layer Protocols 


At the Internet layer, there’s one key protocol and a few helpful support protocols. The 
main workhorse of TCP/IP is the Internet Protocol (IP), and it can be found at this layer. 
IP is responsible for managing logical network addresses and ultimately getting data from 
point A to point B, even if there are dozens of points in between. We cover IP addressing 
more in the next section. 

There are three support protocols you should be aware of at this layer as well. Internet 
Control Message Protocol (ICMP) is responsible for delivering error messages. If you’re 
familiar with the ping utility, you’ll know that it utilizes ICMP to send and receive pack- 
ets. Address Resolution Protocol (ARP) resolves logical IP addresses to physical MAC 
addresses built into network cards. Reverse ARP (RARP) resolves MAC addresses to IP 
addresses. 
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Understanding IP Addressing 


To communicate on a TCP/IP network, each device needs to have a unique IP address. 

Any device with an IP address is referred to as a host. This can include servers, worksta- 
tions, printers, routers, and other devices. If you can assign it an IP address, it’s a host. As 
an administrator, you can assign the host’s IP configuration information manually, or you 
can have it automatically assigned by a DHCP server. On the client, this is done through 
the network adapter’s TCP/IP properties. You’ll see in Figure 7.3 that the system is set to 
receive information from a DHCP server. We’ll look at how to configure this in more depth 
in Chapter 8, “Installing Wireless and SOHO Networks.” 


FIGURE 7.3 TCP/IP Properties 





Internet Protocol Version 4 (TCP/IPv4) Properties x 


General Alternate Configuration 
You can get IP settings assigned automatically if your network supports 


this capability. Otherwise, you need to ask your network administrator 
for the appropriate IP settings. 


©@ Obtain an IP address automatically 
O Use the following IP address: 

















@ Obtain DNS server address automatically 
(O Use the following DNS server addresses: 




















Validate settings upon exit Advanced. 


[oc] ce 











PP This section will cover IPv4. IPv6 will be covered in its own separate 
‘i section. 


An IPv4 address is a 32-bit hierarchical address that identifies a host on the network. It’s 
typically written in dotted-decimal notation, such as 192.168.10.55. Each of the numbers 
in this example represents 8 bits (or 1 byte) of the address, also known as an octet. The 
same address written in binary (how the computer thinks about it) would be 11000000 
10101000 00001010 00110111. As you can see, the dotted-decimal version is a much more 
convenient way to write these numbers. 

The addresses are said to be hierarchical, as opposed to “flat,” because the numbers at 
the beginning of the address identify groups of computers that belong to the same network. 
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Because of the hierarchical address structure, we’re able to do really cool things, such as 
route packets between local networks and on the Internet. 

A great example of hierarchical addressing is your street address. Let’s say that you live 
in apartment 4B at 123 Main Street, Anytown, Kansas, USA. If someone sent you a letter 
via snail mail, the hierarchy of your address helps the postal service and carrier deliver it to 
the right place. First and broadest is USA. Kansas helps narrow it down a bit, and Anytown 
narrows it down more. Eventually we get to your street, the right number on your street, 
and then the right apartment. If the address space were flat (for example, Kansas didn’t 
mean anything more specific than Main Street), or you could use any name you wanted for 
your state, it would be really hard to get the letter to the right spot. 

Take this analogy back to IP addresses. They’re set up to organize networks logically 
in order to make delivery between them possible and then to identify an individual node 
within a network. If this structure weren’t in place, a huge, multi-network space like the 
Internet probably wouldn’t be possible. It would simply be too unwieldy to manage. 


_ Another example of a hierarchical addressing scheme is telephone num- 
‘Qo bers. The first three digits, the area code, group all telephone numbers 
with that area code into one logical network. The second grouping of three 
numbers defines a local calling area, and the last grouping of numbers is 
the unique identifier within that local calling area. 


A Quick Binary Tutorial 


As we mentioned earlier, each IP address is written in four octets in dotted-decimal nota- 
tion, but each octet represents 8 bits. A binary bit is a value with two possible states: on 
equals 1 and off equals 0. If the bit is turned on, it has a decimal value based upon its posi- 
tion within the octet. An off bit always equals zero. Take a look at Figure 7.4, which will 
help illustrate what we mean. 


FIGURE 7.4 Binary values 














Position in octet 8 7 6 5 4 3 2 1 
Bit on 1 1 1 1 1 1 1 1 
Has the decimal | 498 | 64 32 16 8 4 2 1 
value of... 

Mathematically 27 26 2° 2 28 2 21 20 
































If all the bits in an octet are off, or 00000000, the corresponding decimal value is 0. If 
all bits in an octet are on, you would have 11111111, which is 255 in decimal. 


When you're working with IPv4 addressing, all numbers will be between 0 
TE and 255. 
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Where it starts to get more entertaining is when you have combinations of zeroes and 
ones. For example, 10000001 is equal to 129 (128 + 1), and 00101010 is equal to 42 (32 + 
8 +2). 

As you work with IPv4 addresses, you’ll see certain patterns emerge. For example, you 
may be able to count quickly from left to right in an octet pattern, such as 128, 192, 224, 
240, 248, 252, 254, and 255. That’s what you get if you have (starting from the left) 1, 2, 
3, and so forth up to 8 bits on in sequence in the octet. 

It’s beyond the scope of this book to get into too much detail on binary-to-decimal con- 
version, but this primer should get you started. 


PP If you want more information on binary, here are two helpful resources. 


Pn A network binary math lesson can be found at https://learningnetwork 
.cisco.com/blogs/vip-perspectives/2014/05/15/ 
network-binary-math-explained, and a binary to decimal converter is at 
https: //www.rapidtables.com/convert/number /decimal-to-binary 
shtml. 


Parts of the IP Address 


Each IP address is made up of two components: the network ID and the host ID. The net- 
work portion of the address always comes before the host portion. Because of the way IP 
addresses are structured, the network portion does not have to be a specific fixed length. In 
other words, some computers will use 8 of the 32 bits for the network portion and the other 
24 for the host portion, while other computers might use 24 bits for the network portion 
and the remaining 8 bits for the host portion. Here are a few rules that you should know 
about when working with IP addresses: 


= All host addresses on a network must be unique. 


= Ona routed network (such as the Internet), all network addresses must be unique 
as well. 


= Neither the network ID nor the host ID can be set to all Os. A host ID portion of all Os 
means “this network.” 


= Neither the network ID nor the host ID can be set to all 1s. A host ID portion of all 1s 
means “all hosts on this network,” commonly known as a broadcast address. 


Computers are able to differentiate where the network ID ends and the host address 
begins through the use of a subnet mask. This is a value written just like an IP address and 
may look something like 255.255.255.0. Any bit that is set to a 1 in the subnet mask makes 
the corresponding bit in the IP address part of the network ID (regardless of whether the 
bit in the IP address is on or off). When setting bits to 1 in a subnet mask, you always have 
to turn them on sequentially from left to right, so that the bits representing the network 
address are always contiguous and come first. The rest of the address will be the host ID. 
The number 255 is the highest number you will ever see in IP addressing, and it means that 
all bits in the octet are set to 1. 
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Here’s an example based on two numbers that we have used in this chapter. Look at the 
IP address of 192.168.10.55. Let’s assume that the subnet mask in use with this address 
is 255.255.255.0. This indicates that the first three octets are the network portion of the 
address and the last octet is the host portion; therefore, the network portion of this ID is 
192.168.10 and the host portion is 55. If the subnet mask were 255.255.0.0, the computer 
would see its network address as 192.168 and its host address as 10.55. As you can see, the 
subnet mask can make the exact same address appear as though it’s on a different network. 
If you’re ever dealing with network communication issues, the IP address and subnet mask 
are among the first things to check. 


PP To communicate using IPv4, each computer is required to have an IP 

A: address and correct subnet mask. A third component, called a default 
gateway, identifies the IP address of the device that will allow the host to 
connect outside of the local network. This is typically your router, and it’s 
required if you want to communicate with computers outside of your local 
network. An example configuration is shown in Figure 7.5. 


FIGURE 7.5 Manual TCP/IP configuration with an IP address, subnet mask, and default 
gateway 





Internet Protocol Version 4 (TCP/IPv4) Properties x 
General 


You can get IP settings assigned automatically if your network supports 
this capability. Otherwise, you need to ask your network administrator 
for the appropriate IP settings. 


© Obtain an IP address automatically 











@ Use the following IP address: 

IP address: 192 . 168. 1 .105 
Subnet mask: [ 255.255.255. 0 | 
Default gateway: 192.168. 1 . 1 





Obtain DNS server address automatically 
@ Use the following DNS server addresses: 
Preferred DNS server: 








Alternate DNS server: 











[Validate settings upon exit Aa 








IPv4 Address Classes 


The designers of TCP/IP designated classes of networks based on the first three bits of the 
IP address. As you will see, classes differ in how many networks of each class can exist and 
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the number of unique hosts that each network can accommodate. Here are some character- 
istics of the three classes of addresses that you will commonly deal with: 


Class A Class A networks are defined as those with the first bit set as 0 (decimal values from 
0 to 127) and are designed for very large networks. The default network portion for Class A 
networks is the first 8 bits, leaving 24 bits for host identification. Because the network portion 
is only 8 bits long (and 0 and 127 are reserved), there are only 126 Class A network addresses 
available. The remaining 24 bits of the address allow each Class A network to hold as many 
as 16,777,214 hosts. Examples of Class A networks include the networks for telecommunica- 
tions giants Level 3 Communications and AT&T and organizations such as General Electric, 
IBM, Hewlett-Packard, Apple, Xerox, Ford, and the United States Department of Defense. 
All possible Class A networks are in use; no more are available. 


P The number of networks available is determined by the formula 2 ", where 
‘Qi n represents the number of bits being used. In the Class A example, 7 bits 
are available by default (because the first one is always set as 0 by design), 
so there are 2’ networks available, which is 128. However, the network 
addresses of 0 and 127 are also reserved, so it’s really 126. 


The number of hosts available is determined by the formula 2 "- 2, 
because a host address of all Os or all 1s is not allowed. Remember, all Os 
means “this network” and all 1s are broadcast addresses. So, in a default 
Class A network, there can be 2%% - 2 hosts, or 16,777,214. 


Class B Class B networks always have the first two bits set at 10 (decimal values from 128 
to 191) and are designed for medium-sized networks. The default network portion for Class 
B networks is the first 16 bits, leaving 16 bits for host identification. This allows for 16,384 
(214) networks, each with as many as 65,534 (2'° — 2) hosts attached. Examples of Class B 
networks include the networks of Microsoft, ExxonMobil, and Purdue University. Class B 
networks are generally regarded as unavailable, but address-conservation techniques have 
made some of these addresses available from time to time over the years. 


Class C Class C networks have the first three bits set at 110 (decimal values from 192 to 
223) and are designed for smaller networks. The default network portion for Class C net- 
works is the first 24 bits, leaving 8 bits for host identification. This allows for 2,097,152 (27!) 
networks, but each network can have a maximum of only 254 (28 — 2) hosts. Most compa- 
nies have Class C network addresses. A few class C networks are still available. 


P The address assignment examples in this chapter refer to addresses that 
‘Qi are used on the Internet. For example, Apple has the network address of 
17.0.0.0. No one else on the Internet can use addresses in that network’s 
range. But if you are using IP addresses on an internal network that never 
connects to the Internet, you are free to use whatever addresses you 
would like. 
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Table 7.2 shows the IPv4 classes, their ranges, and their default subnet masks. 


TABLE 7.2 _ |Pv4 address classes 





Class First Octet Default Subnet Mask Comments 

A 1-127 255.0.0.0 For very large networks; 127 reserved 
for the loopback address 

B 128-191 255.255.0.0 For medium-sized networks 

G 192-223 255.255.255.0 For smaller networks with fewer hosts 

D 224-239 N/A Reserved for multicasts (sending mes- 


sages to multiple systems) 


E 240-255 N/A Reserved for testing 
P The network addresses 0 and 127 are reserved and not available for use. 
P Specifically, the address 127.0.0.1, called the loopback address, is used for 
A: troubleshooting network adapters. We'll talk more about this in Chapter 14, 


“Hardware and Network Troubleshooting.” 


The IP address can be written in shorthand to show how many bits are being used for 
the network portion of the address. For example, you might see something like 10.0.0.0/8. 
The /8 on the end indicates that the first 8 bits are the network portion of the address, and 
the other 24 are the host portion. Another example is 192.168.1.0/24, which is a Class C 
network with a default subnet mask. 


Classless Inter-Domain Routing 


The default subnet masks for each class of address are by no means the only subnet masks 
that can be used. In fact, if they were, it would severely limit the number of possible TCP/ 
IP networks available. To resolve this and provide additional addressing flexibility, there 
is classless inter-domain routing (CIDR). This is just a fancy of way of saying, “You don’t 
have to use the default subnet masks.” From a practical standpoint, CIDR minimizes the 
concept of IP address classes and primarily focuses on the number of bits that are used as 
part of the network address. 

Taking a look at the defaults can help illustrate how CIDR works. If you have a Class A 
default mask of 255.0.0.0, that is 11111111.00000000.00000000.00000000 in binary. A 
Class B default mask of 255.255.0.0 is 11111111.11111111.00000000.00000000 in binary. 
There’s no rule that says you have to use an entire octet of bits to represent the network 
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portion of the address. The only rule is that you have to add 1s in a subnet mask from left 
to right. What if you wanted to have a mask of 255.240.0.0 (11111111.11110000.0000000 
0.00000000); can you do that? The answer is yes, and that is essentially what CIDR does. 
Table 7.3 shows you every available subnet mask and its equivalent slash notation. 


TABLE 7.3 CIDR values 





Subnet Mask Notation 
255.0.0.0 /8 
255.128.0.0 /9 
255.192.0.0 /10 
255.224.0.0 /11 
255.240.0.0 /12 
255.248.0.0 /13 
255.252.0.0 /14 
255.254.0.0 /15 
255.255.0.0 /16 
255.255.128.0 /17 
255.255.192.0 /18 
255.255.224.0 /19 
255.255.240.0 /20 
255.255.248.0 /21 
255.255.252.0 /22 
255.255.254.0 /23 
255.255.255.0 /24 
255.255.255.128 /25 


255.255.255.192 /26 
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Subnet Mask Notation 
255.255.255.224 /27 
255.255.255.240 /28 
255.255.255.248 /29 
255.255.255.252 /30 


Earlier, we said that CIDR minimizes the impact of classes, but there are still some 
restrictions. The /8 through /15 notations can be used only with Class A network 
addresses; /16 through /23 can be used with Class A and B network addresses; /24 through 
/30 can be used with Class A, B, and C network addresses. You can’t use anything more 
than /30, because you always need at least 2 bits for hosts. 

Now that you know that you can do it, the question is, why would you do it? The 
answer is that it provides you with the flexibility to configure your network. 

Here’s an example. Say that your default network address is 10.0.0.0/8. That means that 
you have 24 bits left for hosts on that one network, so you can have just over 16.7 million 
hosts. How realistic is it that one company will have that many hosts? It’s not realistic at all, 
and that doesn’t even bring up the issue that the network infrastructure wouldn’t be able to 
handle physically having that many hosts on one network. However, let’s say that you work 
for a large corporation with about 15 divisions and some of them have up to 3,000 hosts. 
That’s plausible. What you can do is to set up your network so that each division has its own 
smaller portion of the network (a subnet) big enough for its needs. To hold 3,000 hosts and 
have a bit of room for expansion, you need 12 bits (2! — 2 = 4,094), meaning that you have 
20 bits left over for the network address. Thus, your new configuration could be 10.0.0.0/20. 


DHCP and DNS 

Two critical TCP/IP services you need to be aware of are Dynamic Host Configuration 
Protocol (DHCP) and Domain Name System (DNS). Both are services that need to be 
installed on a server, and both provide key functionality to network clients. 

A DHCP server is configured to provide IP configuration information to clients automati- 
cally (dynamically), in what is called a lease. It’s called that because the information is not 
permanently granted to the client computer, and the client must periodically request a renewed 
lease or a new lease. The following configuration information is typically provided in a lease: 
= IP address 
= Subnet mask 
= Default gateway (the “door” to the outside world) 


a DNS server address 


DHCP servers can provide a lot more than the items on this list, but these are the 
most common. When a DHCP-configured client boots up, it sends out a broadcast on the 


384 Chapter 7 = Introduction to TCP/IP 


network (called a DHCP DISCOVER) requesting a DHCP server. The DHCP server ini- 
tially responds to the request and then fulfills the request by returning configuration infor- 
mation to the client. 

The alternative to DHCP, of course, is for an administrator to enter the IP configura- 
tion information manually for each host (like we did in Figure 7.5). This is called static IP 
addressing, and it is administratively intensive as compared to DHCP’s dynamic address- 
ing. Some hosts on the network need to have static IP addresses, such as routers, servers, 
printers, and perhaps some specific workstations. Computers need to access these devices 
consistently, and the best way to do that is to ensure that they’re where they are expected to 
be (from an address standpoint). If you use static IP addressing, be sure to exclude the static 
addresses from the range of addresses that the DHCP server can provide. Or, on the server, 
you can specify that certain hosts will always receive the same IP address, which is called a 
DHCP reservation. A reservation works by configuring the DHCP server to always assign 
the same address to a particular MAC address. From the DHCP client side, the process is 
the same as all other clients that obtain an address automatically, except that it will always 
receive the same address. 


-_ To use DHCP, all you need to do from the client side is configure it to obtain 

‘gr IP addressing information automatically, like what was shown in Figure 7.3. 
It’s usually as simple as clicking a radio button. No additional configuration 
is required, because the client broadcasts request messages searching for 
the DHCP server. 


DNS has one function on the network: to resolve hostnames to IP addresses. This 
sounds simple enough, but it has profound implications. 

Think about using the Internet. You open your browser, and in the address bar, you type 
the name of your favorite website, something like www. google.com, and press Enter. The 
first question your computer asks is, “Who is that?” Your machine requires an IP address 
to connect to the website. The DNS server provides the answer, “That is 64.233.177.106.” 
Now that your computer knows the address of the website you want, it’s able to traverse 
the Internet to find it. 


P Each DNS server has a database where it stores hostname-to-IP-address 
A: pairs. If the DNS server does not know the address of the host you are 
seeking, it has the ability to query other DNS servers to help answer the 
request. 


Think about the implications of that for just a minute. We all probably use Google sev- 
eral times a day, but in all honesty how many of us know its IP address? It’s certainly not 
something we are likely to have memorized. Much less, how could you possibly memorize 


Understanding TCP/IP 385 


the IP addresses of all the websites that you regularly visit? Because of DNS, it’s easy to find 
resources. Whether you want to find Coca-Cola, Toyota, Amazon, or thousands of other 
companies, it’s usually pretty easy to figure out how. Type in the name with a .com on the 
end of it, and you’re usually right. The only reason this is successful is because DNS is there 
to perform resolution of that name to the corresponding IP address. 

DNS works the same way on an intranet (a local network not attached to the Internet) as 
it does on the Internet. The only difference is that instead of helping you find ww. google 
.com, it may help you find Jenny’s print server or Joe’s file server. From a client-side perspec- 
tive, all you need to do is configure the host with the address of a legitimate DNS server 
and you should be good to go. 


Public vs. Private IP Addresses 


All the addresses that are used on the Internet are called public addresses. They must be 
purchased, and only one computer can use any given public address at one time. The prob- 
lem that presented itself was that the world was soon to run out of public IP addresses 
while the use of TCP/IP was growing. Additionally, the structure of IP addressing made it 
impossible to “create” or add any new addresses to the system. 

To address this, a solution was devised to allow for the use of TCP/IP without requir- 
ing the assignment of a public address. The solution was to use private addresses. Private 
addresses are not routable on the Internet. They were intended for use on private networks 
only. That private addresses weren’t intended for use on the Internet freed us from the 
requirement that all addresses be globally unique. This essentially created an infinite num- 
ber of IP addresses that companies could use within their own network walls. 

While this solution helped alleviate the problem of running out of addresses, it created a 
new one. The private addresses that all of these computers have aren’t globally unique, but 
they need to be in order to access the Internet. 

A service called Network Address Translation (NAT) was created to solve this problem. 
NAT runs on your router and handles the translation of private, nonroutable IP addresses 
into public IP addresses. There are three ranges reserved for private, nonroutable IP 
addresses, as shown in Table 7.4. 


TABLE 7.4 Private IP address ranges 





Class IP Address Range Default Subnet Mask Number of Hosts 
A 10.0.0.0-10.255.255.255 255.0.0.0 16.7 million 
B 172.16.0.0-172.31.255.255 255.240.0.0 1 million 


C 192.168.0.0-192.168.255.255 255.255.0.0 65,536 
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E Real World Scenario 


Private IP Addresses and Subnet Masks 


When you look at the default subnet masks for the private IP address ranges, you might 
think, “Wait a minute. Those masks aren't the same as the default subnet masks for the 
address class,” and you are correct. 


To understand how TCP/IP addresses work, it’s often helpful to start with the concept of 
address classes, because it helps you break the information into chunks, making it easier 
to understand. In the real world, though, most network administrators don’t think in 
terms of classes, and routers certainly don’t operate based on classes. Communication 
and routing on a network all happens in binary. Experienced network admins will think 
in terms like, “I am dealing with a 10.0.0.0/16 network.” They know the address and the 
length of the subnet mask. 


Earlier in this chapter, you learned about the concept of CIDR, which basically ignores the 
artificial boundaries of address classes. It uses a concept called variable length subnet 
masking (VLSM), which might sound complicated, but it just means that the length of the 
subnet mask determines the structure of the network. (And by structure, we mean the net- 
work addresses and the number of networks and hosts that you can have on a network.) 


How does this relate back to private IP address ranges? You'll notice that the Class 

A address range is 10.0.0.0/8, which has a “default” mask for a Class A address. 
172.16.0.0/12 is an address in the Class B range, but it does not use the “default” /16 mask. 
If it did use a/16 mask, then the administrator would have only the remaining 16 bits to 
use for additional subnets and hosts. As it is, the administrator has 20 bits to play with, 
which provides much greater flexibility in designing the network. The same concept 
applies to 192.168.0.0/16. The administrator has 16 free bits to create subnets and host 
ranges, whereas the “default” /24 mask would leave only 8 bits and not a lot of flexibility. 


There are three things that you should take away from this sidebar: 


= Know the subnet masks in Table 7.4 and understand that they are different from the 
default masks for that class of address. 


a Know that you are not limited to using the default masks or class rules. 


a It’s all about the binary. 





-_. The A+ exam may test you on the basics of IP addressing and subnetting, 
"i: 


which we have covered in this book. If you pursue more advanced certifica- 
tions, such as the CompTIA Network+ or the Cisco series of certifications, 
you will be expected to know IP addressing and subnetting in depth. If you 
are interested in learning more (after you pass the A+ exam, of course), 
check out CompTIA Network+ Study Guide, by Todd Lammle (Sybex, 2018). 
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These private addresses cannot be used on the Internet and cannot be routed 
externally. The fact that they are not routable on the Internet is actually an advantage 
because a network administrator can use them essentially to hide an entire network from 
the Internet. 

This is how it works: The network administrator sets up a NAT-enabled router, which 
functions as the default gateway to the Internet. The external interface of the router has a 
public IP address assigned to it that has been provided by the ISP, such as 155.120.100.1. 
The internal interface of the router will have an administrator-assigned private IP address 
within one of these ranges, such as 192.168.1.1. All computers on the internal network will 
then also need to be on the 192.168.1.0 network. To the outside world, any request com- 
ing from the internal network will appear to come from 155.120.100.1. The NAT router 
translates all incoming packets and sends them to the appropriate client. This type of setup 
is very common today. 


P By definition, NAT is actually a one-to-one private-to-public IP address 
A: translation protocol. There is a type of NAT called NAT Overload, also 
known as Port Address Translation (PAT), which allows for many private IP 
addresses to use one public IP address on the Internet. 


You may look at your own computer, which has an address in a private range, and won- 
der, “If it’s not routable on the Internet, then how am I on the Internet?” Remember, the 
NAT router technically makes the Internet request on your computer’s behalf, and the NAT 
router is using a public IP address. 


P Don’t make the mistake of thinking that your internal network can’t be 
‘go hacked if it is using private addresses through NAT. It can. Hackers just 
have to use more tools and try a little harder to uncover your internal struc- 
ture. Even if you're using NAT, you still need protective features such as 
firewalls and anti-malware software. 


Automatic Private IP Addressing 


Automatic Private IP Addressing (APIPA) is a TCP/IP standard used to automatically 
configure IP-based hosts that are unable to reach a DHCP server. APIPA addresses are in 
the 169.254.0.0-169.254.255.255 range, with a subnet mask of 255.255.0.0. If you see a 
computer that has an IP address beginning with 169.254, you know that it has configured 
itself. 

Typically, the only time that you will see this is when a computer is supposed to 
receive configuration information from a DHCP server but for some reason that server is 
unavailable. Even while configured with this address, the client will continue to broad- 
cast for a DHCP server so that it can be given a real address once the server becomes 
available. 

APIPA is also sometimes known as zero configuration networking or address 
autoconfiguration. Both of these terms are marketing efforts, created to remove the 
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perceived difficulty of configuring a TCP/IP network. While TCP/IP has generally been 
considered difficult to configure (compared to other protocols), APIPA can make it so that 
a TCP/IP network can run with no configuration at all! For example, say that you are set- 
ting up a small local area network that has no need to communicate with any networks 
outside of itself. To accomplish this, you can use APIPA to your advantage. Set the client 
computers to receive DHCP addresses automatically, but don’t set up a DHCP server. The 
clients will configure themselves and be able to communicate with each other using TCP/IP. 
The only downside is that this will create a little more broadcast traffic on your network. 
This solution is only really effective for a nonrouted network of fewer than 100 comput- 
ers. Considering that most networks today need Internet access, it’s unlikely that you'll run 
across a network configuration like this. 








S Real World Scenario 


Help! I Can't Get to the Internet! 


This is something that you will probably hear a lot: A user on your network calls and 
complains that they can’t get their email or get to the Internet. Everything was fine yester- 
day, but since this morning they have had no connectivity. Of course, they haven't done 
anything to or changed their computer at all! No one else on the network appears to be 
affected. 


If the computer is otherwise running normally, the first step should always be to run 

an ipconfig command to look at the IP address configured on the system. More often 
than not, the user will report back that their IP address is “169 dot 254 dot something dot 
something.” The last two somethings don’t really matter—it’s the first two numbers that 
should have your attention. APIPA. 


Knowing that the computer is a DHCP client, you know that it’s not connecting to the 
DHCP server for some reason. After getting to the workstation, check the easy stuff first. 
Are the cables plugged in (if it’s wired)? Are there lights on the NIC? Even if they appear 
to be plugged in, unplug and reconnect them. If that doesn’t work, try a different cable. 
Those simple steps will solve the vast majority of these types of problems. If not, then it’s 
on to more advanced troubleshooting steps! (More TCP/IP troubleshooting is covered in 
Chapter 14.) 





IPv6 


The present incarnation of TCP/IP that is used on the Internet was originally developed 
in 1973. Considering how fast technology evolves, it’s pretty amazing to think that the 
protocol still enjoys immense popularity over 40 years later. This version is known as 
IPv4. 
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There are a few problems with IPv4, though. One is that we’re quickly running out 
of available network addresses, and the other is that TCP/IP can be somewhat tricky to 
configure. 

If you’ve dealt with configuring custom subnet masks, you may nod your head at the 
configuration part, but you might be wondering how we can run out of addresses. After all, 
IPv4 has 32 bits of addressing space, which allows for nearly 4.3 billion addresses! With 
the way it’s structured, only about 250 million of those addresses are actually usable, and 
all of those are pretty much spoken for. 

A new version of TCP/IP has been developed, called IPv6. Instead of a 32-bit address, it 
provides for 128-bit addresses. That provides for 3.4 x 10°8 addresses, which theoretically 
should be more than enough that they will never run out globally. (Famous last words, 
right?) 

IPv6 also has many standard features that are optional (but useful) in IPv4. While the 
addresses may be more difficult to remember, the automatic configuration and enhanced 
flexibility make the new version sparkle compared to the old one. Best of all, it’s backward 
compatible with and can run on the computer at the same time as IPv4, so networks can 
migrate to IPv6 without a complete restructure. 


Understanding IPv6 Addressing 

Understanding the IPv6 addressing scheme is probably the most challenging part of the 
protocol enhancement. The first thing you’ll notice is that, of course, the address space 

is longer. The second is that IPv6 uses hexadecimal notation instead of the familiar dot- 


ted decimal of IPv4. Its 128-bit address structure looks something like what is shown in 
Figure 7.6. 


FIGURE 7.6 |IPv6 address 


2001:0db8:3c4d:0012:0000:0000:1234:56ab 
l l 





Global prefix Subnet Interface ID 


The new address is composed of eight 16-bit fields, each represented by four hexadeci- 
mal digits and separated by colons. The letters in an IPv6 address are not case sensitive. 
IPv6 uses three types of addresses: unicast, anycast, and multicast. A unicast address iden- 
tifies a single node on the network. An anycast address refers to one that has been assigned 
to multiple nodes. A packet addressed to an anycast address will be delivered to the clos- 
est node. Sometimes you will hear this referred to as one-to-nearest addressing. Finally, a 
multicast address is one used by multiple hosts, and is used to communicate to groups of 
computers. IPv6 does not employ broadcast addresses. Multicasts handle that functionality. 
Each network interface can be assigned one or more addresses. 

Just by looking at unicast and anycast addresses, it’s impossible to tell the difference 
between them. Their structure is the same; it’s their functionality that’s different. The first 
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four fields, or 64 bits, refer to the network and subnetwork. The last four fields are the 
interface ID, which is analogous to the host portion of the IPv4 address. Typically, the first 
56 bits within the address are the routing (or global) prefix, and the next 8 bits refer to the 
subnet ID. It’s also possible to have shorter routing prefixes though, such as 48 bits, mean- 
ing that the subnet ID will be longer. 

The Interface ID portion of the address can be created in one of four ways. It can be cre- 
ated automatically using the interface’s MAC address, procured from a DHCPv6 server, 
assigned randomly, or configured manually. 

Multicast addresses can take different forms. All multicast addresses use the first 8 bits 
as the prefix. 


Working with IPv6 Addresses 


In IPv4, the subnet mask determines the length of the network portion of the address. The 
network address was often written in an abbreviated form, such as 169.254.0.0/16. The 
/16 indicates that the first 16 bits are for the network portion and that corresponds to a 
subnet mask of 255.255.0.0. While IPv6 doesn’t use a subnet mask, the same convention 
for stating the network length holds true. An IPv6 network address could be written as 
2001:db8:3c4d::/48. The number after the slash indicates how many bits are in the routing 
prefix. 

Because the addresses are quite long, there are a few ways that you can write them 
in shorthand; in the world of IPv6, it’s all about eliminating extra zeroes. For example, 
take the address 2001:0db8:3c4d:0012:0000:0000:1234:56ab. The first common 
way to shorten it is to remove all of the leading zeroes. Thus it could also be written 
as 2001:db8:3c4d:12:0:0:1234:56ab. The second accepted shortcut is to replace con- 
secutive groups of zeroes with a double colon. So now the example address becomes 
2001:db8:3c4d:12::1234:56ab. It’s still long, but not quite as long as the original 
address. 


The double-colon shortcut can be used only once in an address. For exam- 

OTE ple, in the 2001:db8:3c4d:12::1234:56ab address, you can count the number 
of fields (six) and know that the double colon represents two fields of all 
zeroes. If, for example, you tried to write an address like 2001::1ab4::5468, 
you would have a big problem. You would know that there are five fields of 
zeroes, but you would have no way to identify where exactly the 1ab4 por- 
tion of the address falls in relation to the all-zero fields. 


A fairly common occurrence today is a mixed IPv4-IPv6 network. As mentioned ear- 
lier, IPv6 is backward compatible. In the address space, this is accomplished by setting the 
first 80 bits to 0, the next 16 bits all to 1, and the final 32 bits to the IPv4 address. In IPv6 
format, the IPv4 address looks something like ::ffff:c0a8:173. You will often see the same 
address written as ::ffff:192.168.1.115 to enable easy identification of the IPv4 address. 

There are a few more addresses you need to be familiar with. In IPv4, the 
autoconfiguration (APIPA) address range was 169.254.0.0/16. IPv6 accomplishes the 
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same task with the link local address fe80::/10. Every IPv6-enabled interface is required 
to have a link local address, and they are nonroutable. The IPv4 loopback address of 
127.0.0.1 has been replaced with ::1/128 (typically written as just ::1). Global addresses 
(for Internet use) are 2000::/3, and multicast addresses are FFOO::/8. Figure 7.7 shows 
the output of an ipconfig command, and you can see the IPv4 address configuration as 
well as the IPv6 link local address. Table 7.5 summarizes the IPv6 address ranges you 
should be familiar with. 


FIGURE 7.7 ipconfig output with IPv4 and IPv6 addresses 
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\C: \>ipconfig 


Windows IP Configuration 


Ethernet adapter Ethernet: 


Media: Skate oars. es meds eis) eh : Media disconnected 
Connection-specific DNS Suffix 


Wireless LAN adapter Local Area Connection* 9: 


Media State ......... . . 2: Media disconnected 
Connection-specific DNS Suffix 


Wireless LAN adapter Wi-Fi: 








Connection-specific DNS Suffix . : Home 

Link-local IPv6 Address . . . . . : fe80::3c06:76ff:c44:7e24%6 
TPVA-AGUPOESS. io os pie G 6 © ew woe eon tee 

Subnek MASK cos. wesw ew! ow ese) aoe: P55 255 LO 

Default Gateway... .... . . 2: 192.168.1.1 





TABLE 7.5 |Pv6 address ranges 


Address Use 





0:0:0:0:0:0:0:0 Equals ::, and is equivalent to 0.0.0.0 in IPv4. It usually means that the host 
is not configured. 


0:0:0:0:0:0:0:1 Also written as ::1. Equivalent to the loopback address of 127.0.0.1 in IPv4. 


2000::/3 Global unicast address range for use on the Internet. 
FCOO::/7 Unique local unicast address range. 
FE80::/10 Link local unicast range. 


FFOO::/8 Multicast range. 
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Understanding Virtual Networks 


As you learned earlier in this chapter, the subnet mask on an IPv4 network determines 
the network address. Said differently, it’s the mechanism by which networks are defined. 
Computers configured to be on different networks talk to each other through a router, 
which sends packets from one network to another. Therefore, the router is the physical 
device that divides logical networks from each other. In addition to physical and logical 
networks, one additional term you need to be familiar with is the virtual network. There 
are two types of virtual networks we’ll cover here: virtual local area networks and virtual 
private networks. 


Virtual Local Area Networks 


One of the limitations of typical routed network configurations is that computers on 

the same side of the router can’t easily be broken into multiple networks and still com- 
municate with each other. This is because if a sending computer knows that the destina- 
tion IP address is on another network, it sends its data directly to the router—its default 
gateway. Other computers on the physical segment will ignore the message because it’s 
not addressed to them. The router then takes a look at the real destination address and 
sends it out one of its ports, other than the one it came in on, to reach the destination 
network. 

The virtual local area network (VLAN) is designed to help segment physical networks 
into multiple logical (virtual) networks. You may recall from Chapter 6 that VLANs are 
created by using a managed switch. The switch uses Spanning Tree Protocol (STP) to man- 
age configurations and to ensure that there are no infinite network loops. (That’s when data 
gets sent out and bounces between two or more switches, never getting to a destination. 
Loops are bad.) A VLAN can provide the following benefits: 


Broadcast traffic is reduced. Physical network segments can be logically subdivided, 
reducing broadcast traffic and speeding network performance. 


Security is increased. Computers on the same physical network can be isolated from each 
other to provide an additional layer of security. For example, imagine that the Research 
and Development team is working on several secret projects. R&¢D computers can be placed 
on one virtual segment, and the rest of the company on others. Traffic to and from other 
R&D computers won’t be intermingled with other office traffic. 


Computers in multiple locations can belong to the same VLAN. This is one major 
thing that routers can’t do with subnetting. With multiple switches configured 
appropriately, computers at different physical locations can be configured to be on the 
same VLAN. 


Reconfiguring networks is easier. With VLANs, if someone moves physical desk 
locations, their VLAN membership can carry with them, so there is less network 
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reconfiguration needed. Similarly, if someone doesn’t move desk locations but changes 


jobs, they can be assigned to a new VLAN without needing to physically reconfigure the 
network. 


Figure 7.8 shows two potential VLAN configurations. In the first one, computers on one 


switch are assigned to different VLANs. In the second, the concept is extended to include 
multiple switches. 


FIGURE 7.8 Two VLAN configurations 
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One of the questions often asked is, “What’s the difference between a VLAN anda 
subnet?” First, let’s look at the key similarity—both are capable of breaking up broadcast 
domains on a network, which helps reduce network traffic. Also, if you are using both, the 
recommended configuration is that subnets and VLANs have a 1:1 relationship, one subnet 
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per VLAN. You can configure multiple subnets to be on one VLAN—it’s called a super 
scope—but it gets trickier to manage. 

Beyond separating broadcast domains, VLANs and subnets are almost entirely differ- 
ent. Recall that VLANs are implemented on switches, and routers are needed to subnet. 
Consequently, VLANs work at Layer 2 of the OSI model and deal with physical MAC 
addresses. Routers work at Layer 3, and work with logical IP addresses. 


Virtual Private Networks 


As networks grow beyond simple physical limitations (such as an office or a building) to 
include clients from all over the world, the need to secure data across public connections 
becomes paramount. One of the best methods of addressing this is to tunnel the data. 
Tunneling sends private data across a public network by placing (encapsulating) that data 
into other packets. Most tunnels are a virtual private network (VPN). A sample VPN is 
shown in Figure 7.9. 


FIGURE 7.9 AVPN 
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A VPN is a secure (private) network connection that occurs through a public network. 
The private network provides security over an otherwise unsecure environment. VPNs can 
be used to connect LANs together across the Internet or other public networks, or they 
can be used to connect individual users to a corporate network. This is a great option for 
users who work from home or travel for work. With a VPN, the remote end appears to 
be connected to the network as if it were connected locally. From the server side, a VPN 
requires dedicated hardware or a software package running on a server or router. Clients 
use specialized VPN client software to connect, most often over a broadband Internet 
link. Windows 10 comes with its own VPN client software (shown in Figure 7.10) acces- 
sible through Start > Settings > Network & Internet > VPN, as do some other operating 
systems, and many third-party options are also available. 
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FIGURE 7.10 Windows 10 VPN client 
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Summary 


In this chapter, you learned about the protocol suite used on the Internet, TCP/IP. It’s by far 
the most common protocol in worldwide use today. We started with TCP/IP structure. It’s 
a modular suite that follows the DoD model, with different protocols performing unique 
tasks at each layer. We looked at individual protocols and their functions at the Process/ 
Application, Host-to-Host, and Internet layers. We also discussed ports and well-known 
port numbers for common protocols. 

Next you learned about IP addressing. We started with a brief tutorial on converting 
binary numbers to decimal to make them easier to read. Then we looked at the differ- 
ent address classes, CIDR, DHCP and DNS, public vs. private IP addresses, APIPA, and 
NAT. Each of these services and concepts plays a unique role in managing TCP/IP on your 
network. 

Next, you learned about the next generation of TCP/IP, IPv6. We talked about the seem- 
ingly infinite number of addresses as well as the fact that addresses are written in hexadeci- 
mal, which might take some getting used to—even for experienced technicians. Finally, we 
looked at working with IPv6 addresses, including shorthand notation and special addresses 
to be aware of. 

We finished the chapter by looking at two types of virtual networks: VLANs and VPNs. 
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Exam Essentials 


Understand how IPv4 addressing works. IP addresses are 32-bit addresses written as four 
octets in dotted-decimal notation, such as 192.168.5.18. To communicate on an IP net- 
work, a host also needs a subnet mask, which may look something like 255.255.255.0. If 
the host needs to communicate outside the local network, it also needs a default gateway, 
which is normally the internal address of the router. 


Addresses can be static (manual) or dynamic (from a DHCP server). If a DHCP server is 
not available, a network client may use an APIPA address starting with 169.254. 


Understand how IPv6 addressing works. IPv6 addresses are 128-bit addresses writ- 
ten as eight fields of four hexadecimal characters, such as 2001:0db8:3c4d:0012: 
0000:0000:1234:56ab. Using shorthand conventions, this address can also be written as 
2001:db8:3c4d:12::1234:56ab. 


Addresses can be static or dynamic. APIPA does not exist in IPv6 but has been replaced by 
a link local address. 


Understand the differences between TCP and UDP. TCP is a connection-based protocol 
that attempts to guarantee delivery. UDP is connectionless, which makes it a bit faster, but 
it doesn’t guarantee packet delivery. 


Know what DHCP does. A DHCP server provides IP addresses and configuration infor- 
mation to network hosts. Clients that need to have the same address at all times can be 
configured using a reservation, which grants an address based on a MAC address. 


Know what DNS does. A DNS server resolves hostnames to IP addresses. 


Know common TCP/IP ports. Some common protocol and port pairings that you should 
know are FTP (20 and 21), SSH (22), Telnet (23), SMTP (25), DNS (53), HTTP (80), POP3 
(110), IMAP (143), HTTPS (443), DRP (3389), NetBIOS/NetBT (137-139), SMB/CIFS 
(445), SLP (427), AFP (548), DHCP (67/68), LDAP (389), and SNMP (161 and 162). 


Be able to identify IP address classes. Know how to identify Class A, B, and C IP 
addresses. Class A addresses will have a first octet in the 1 to 126 range. B is from 128 to 
191, and C is from 192 to 223. 


Know the private IP addresses ranges. Private IP addresses will be in one of three ranges: 
10.0.0.0/8, 172.16.0.0/16, or 192.168.0.0/16. 


Know about the APIPA range. IP addresses in the 169.254.0.0/16 range are APIPA 
addresses. 


Know the difference between unicast, anycast, and multicast in IPv6. Unicast addresses 
are for a single node on the network. Anycast can represent a small group of systems. An 
anycast message will be delivered to the closest node. Multicast messages are delivered to 
all computers within a group. 
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Recognize the special classes of IPv6 addresses. The loopback address is ::1. Global uni- 
cast addresses are in the 2000::/3 range. Unique local unicast addresses are in the FC00::/7 
range, link local addresses are FE80::/10, and FF00::/8 addresses are multicast. 


Know what NAT does. Network Address Translation (NAT) translates private, non- 
routable IP addresses into public IP addresses. It allows computers on a private network to 
access the Internet. 


Understand the differences between a VLAN anda VPN. A virtual local area network 
(VLAN) is a logical network configured through a managed switch. A virtual private net- 
work (VPN) is a secure point-to-point connection over a public network. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. 


You have just set up a network that will use the TCP/IP protocol, and you want client com- 
puters to obtain IP configuration information automatically. Which type of server do you 
need for this? 


A. DNS 
B. DHCP 
Cc. NAT 


D. IP configuration server 


Which of the following protocols was designed to access information stored in an informa- 
tion directory, such as employee phone books? 


A. FTP 

B. LDAP 

Cc. RDP 

D. CIFS 

Which TCP/IP protocol uses port 80? 
A. HTTP 

B. HTTPS 

C. Telnet 

D. POP3 


What is the maximum number of IPv6 addresses that can be assigned to one IPv6 interface? 
A. One (unicast) 

B. Two (unicast and anycast) 

C. Three (unicast, anycast, and multicast) 


D. None of the above 


Which of the following are valid examples of IPv6 addresses? (Choose all that apply.) 
A. 2001:0db8:3c4d:0012:0000:0000:1234:56ab 

B. . ::ffff:c0a8:173 

C. 2001:db8:3c4d:12::1234:56ab 

D. 2001::1ab4::5468 


Which of the following IP addresses would not be valid for a DNS server on the Internet? 
A. 10.25.11.33 

B. 18.33.66.254 

C. 155.118.63.11 

D. 192.186.12.2 


10. 


11. 


12. 
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The workstations on your network are configured to use a DHCP server. One of the work- 
stations can’t communicate with other computers. Its IP address is 169.254.1.18. What 
could be the problem? 


A. The subnet mask is wrong. 

B. It has a private IP address. 

C. The default gateway is wrong. 
D. It can’t reach the DHCP server. 


Which of the following protocols is responsible for sending email? 


A. IMAP4 
B. POP3 
C. SMTP 
D. SNMP 


What port does the RDP protocol work on? 


A. 53 
B. 143 
C. 389 
D. 3389 


Which two TCP/IP protocols work at the Host-to-Host layer of the DoD model? (Choose 
two.) 


A. IP 

B. ARP 
Cc. TCP 
D. UDP 


What are two advantages that TCP has over UDP? (Choose two.) 
A. Acknowledged delivery 

B. Faster delivery 

C. Lower overhead 

D. Virtual circuits 


Your friend is concerned about the security of making an online purchase. What should you 
tell her to look for in the address bar of the web browser? 


A. HTTP 
B. HTTPS 
C. SSH 

D. TLS 
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13. 


14. 


15. 


16. 


17. 


18. 
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You are manually configuring a TCP/IP host. Another administrator gives you the router’s 


IP address. What is the TCP/IP term for this? 
A. Default gateway 

B. Subnet mask 

C. DNS server 

D. DHCP server 


Your network is running IPv4. Which of the configuration options are mandatory for your 


host to communicate on the network? (Choose two.) 
A. IP address 

B. Subnet mask 

C. Default gateway 

D. DNS server address 


Which of the following protocols is used for secure delivery of email? 
A. SMTP 


B. SNMP 
C. POP3 
D. IMAP4 


Which of the following is the name of a secure point-to-point connection made over a pub- 


lic network? 


A. NAT 
B. APIPA 
C. VLAN 
D. VPN 


Which of the following protocols uses TCP port 23? 
A. Telnet 


B. SSH 
C. FTP 
D. DNS 


Which of the following is an IPv6 broadcast address? 
A. x1 


B. FE80:: 
C. FFOO:: 
D. ::FFFF 
E. None of the above 


19. 


20. 
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You are setting up a small network that will not connect to the Internet. You want comput- 
ers to be able to locate each other by using hostnames. What service will do this? 


A. DNS 


B. DHCP 
C. FTP 
D. APIPA 


Which of the following protocols is responsible for resolving IP addresses to hardware 
addresses? 


A. DNS 
B. DHCP 
C. ARP 
D. RARP 
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Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answers compare to the authors’, refer 
to Appendix B. 

Match the following protocols (services) below to their respective ports in the table: 


SMTP, FTP, AFP, RDP, Telnet, LDAP, DHCP, HTTPS, IMAP, NetBIOS/NetBT, 
POP3, SLP, DNS, SNMP, HTTP, SMB/CIFS, SSH 





Protocol (service) Port(s) 
20, 21 
22 
23 
25 

















53 

67, 68 
80 

110 
137-139 
143 

161, 162 
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Installing Wireless 
and SOHO Networks 





THE FOLLOWING COMPTIA A+ 220-1001 EXAM 
OBJECTIVES ARE COVERED IN THIS CHAPTER: 


v 2.3 Given a scenario, install and configure a basic wired/ 
wireless SOHO network. 


= Router/switch functionality 


= Access point settings 


= IP addressing 


a NIC configuration 


Wired 


Wireless 


= End-user device configuration 


= loT device configuration 


Thermostat 

Light switches 
Security cameras 
Door locks 


Voice-enabled, smart speaker/digital assistant 


a Cable/DSL modem configuration 


a Firewall settings 


DMZ 

Port forwarding 
NAT 

UPnP 
Whitelist/blacklist 
MAC filtering 


=» QoS 

a Wireless settings 
a Encryption 
a Channels 


= QoS 


y 2.4 Compare and contrast wireless networking 
protocols. 


a 802.11a 

a 802.11b 

= 802.11g 

=» 802.11n 

a 802.11ac 

= Frequencies 
= 2.4GHz 
a 5GHz 

a Channels 
a 1-11 

= Bluetooth 

= NFC 

= RFID 

a Zigbee 

a Z-Wave 

= 3G 

= 4G 

=» 5G 

= LTE 


vy 2.7 Compare and contrast Internet connection types, 
network types, and their features. 


= Internet Connection Types 


a Cable 








DSL 

Dial-up 

Fiber 

Satellite 

ISDN 

Cellular 

a Tethering 

a Mobile hotspot 


Line-of-sight wireless Internet service 


Over the last two chapters, we’ve talked a lot about 
foundational networking knowledge. We’ve discussed 
BEASTS theoretical networking models, physical topologies, cables and 
connectors, and connectivity devices. We also spent an entire chapter devoted to the most 
common protocol of all, TCP/IP. The one critical technology that we haven’t covered yet is 
wireless networking. 

Because of the unique technology of wireless networking and its huge popularity, it 
feels appropriate to talk about it as a separate entity. That said, it’s important to remember 
that wireless networking is just like wired networking, only without the wires. You still 
need to figure out how to get resources connected to each other and give the right people 
access while keeping the bad people at bay. You’re now just playing the game with slightly 
different rules and many new challenges. 

We'll start this chapter off with the last of our key networking “theory” discussions, 
this time on five categories of wireless networking standards. From there, we’ll move on 
to setting up and configuring small networks. This is really where the rubber meets the 
road. Understanding the theory and technical specifications of networking is fine, but the 
true value in all this knowledge comes in being able to make good recommendations and 
implement the right network for your client’s needs. 





Understanding Wireless Networking 
Technologies 


Wireless networking is so common today that it’s taken for granted. When first introduced, 
wireless networking was slow and unreliable, but it’s now fast and pretty stable, not to 
mention convenient. It seems like everywhere you go there are Internet cafés or fast-food 
restaurants with wireless hotspots. Nearly every mobile device sold today has Internet capa- 
bilities. No matter where you go, you’re likely just seconds away from being connected to 
the Internet. 

The most common term you'll hear thrown around referring to wireless networking 
today is Wi-Fi. While the term was originally coined as a marketing name for 802.11b, 
it’s now used as a nickname referring to the family of IEEE 802.11 standards. That fam- 
ily comprises the primary wireless networking technology in use today, but other wireless 
technologies are out there, too. We’ll break down wireless technologies into five groups: 
802.11, Bluetooth, cellular, home automation, and radio frequency. Each technology has its 
strengths and weaknesses and fills a computing role. 
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As a technician, it will fall to you to provide users with access to networks, the Internet, 
and other wireless resources. You must make sure that their computers and mobile devices 
can connect, that users can get their email, and that downtime is something that resides 
only in history books. To be able to make that a reality, you must understand as much as 
you can about wireless networking and the technologies discussed in the following sections. 


802.11 Networking Standards 


In the United States, wireless LAN (WLAN) standards are created and managed by the 
Institute of Electrical and Electronics Engineers (IEEE). The most commonly used WLAN 
standards are in the IEEE 802.11 family. Eventually, 802.11 will likely be made obsolete by 
newer standards, but that is some time off. IEEE 802.11 was ratified in 1997 and was the 
first standardized WLAN implementation. There are over 20 802.11 standards defined, but 
you will only hear a few commonly mentioned: 802.11a, b, g, n, and ac. As previously men- 
tioned, several wireless technologies are on the market, but 802.11 is the one currently best 
suited for WLANs. 

In concept, an 802.11 network is similar to an Ethernet network, only wireless. At the 
center of Ethernet networks is a connectivity device, such as a hub, switch, or router, and 
all computers are connected to it. Wireless networks are configured in a similar fashion, 
except that they use a wireless router or wireless access point instead of a wired connectiv- 
ity device. In order to connect to the wireless hub or router, the client needs to know the 
service-set identifier (SSID) of the network. SSID is a fancy term for the wireless network’s 
name. Wireless access points may connect to other wireless access points, but eventually 
they connect back to a wired connection with the rest of the network. 

802.11 networks use the Carrier Sense Multiple Access/Collision Avoidance (CSMA/ 
CA) access method instead of Ethernet’s Carrier Sense Multiple Access/Collision Detection 
(CSMA/CD). Packet collisions are generally avoided, but when they do happen, the sender 
will need to wait a random period of time (called a back-off time) before transmitting 
again. 

Since the original 802.11 standard’s publication in 1997, several upgrades and exten- 
sions have been released. The primary characteristics that define them are speed, maximum 
distance, frequency (which includes channels), and modulation technique. 

Speed and distance are networking concepts that you should be familiar with. 
Frequency is the audio range in which the technology broadcasts—fortunately the waves 
are far outside of the range of human hearing. Channels, which we will cover in more 
depth later, are sub-divisions within a frequency. Finally, there is modulation, which refers 
to how the computer converts digital information into signals that can be transmitted over 
the air. There are three types of wireless modulation used today: 


Frequency-Hopping Spread Spectrum Frequency-hopping spread spectrum (FHSS) 
accomplishes communication by hopping the transmission over a range of predefined fre- 
quencies. The changing, or hopping, is synchronized between both ends and appears to be 
a single transmission channel to both ends. 
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Direct-Sequence Spread Spectrum Direct-sequence spread spectrum (DSSS) accomplishes 
communication by adding the data that is to be transmitted to a higher-speed transmission. 
The higher-speed transmission contains redundant information to ensure data accuracy. 
Each packet can then be reconstructed in the event of a disruption. 


Orthogonal Frequency Division Multiplexing Orthogonal frequency division 
multiplexing (OFDM) accomplishes communication by breaking the data into subsignals 
and transmitting them simultaneously. These transmissions occur on different frequencies, 
or subbands. 


The mathematics and theories of these transmission technologies are beyond the scope 
of this book and far beyond the scope of this exam. Just know that they’re not compatible 
with each other. If the sending system is using FHSS and the receiving system is expecting 
DSSS (or OFDM), they won’t be able to talk to each other. With that, let’s dive into each of 
the 802.11 standards you need to know. 


802.11 


The original 802.11 standard was ratified in 1997 and defines WLANs transmitting at 
1 Mbps or 2 Mbps bandwidths using the 2.4 GHz frequency spectrum. The frequency- 
hopping spread spectrum (FHSS) and direct-sequence spread spectrum (DSSS) modulation 
techniques for data encoding were included in this standard. 

There were never any 802.11 (with no letter after the 11) devices released—it’s a stan- 
dards framework. All in-market versions of 802.11 have a letter after their name to desig- 
nate the technology. 


802.11a 


The 802.11a standard provides WLAN bandwidth of up to 54 Mbps in the 5 GHz fre- 
quency spectrum. The 802.11a standard also uses a more efficient encoding system, orthog- 
onal frequency division multiplexing (OFDM), rather than FHSS or DSSS. 

This standard was ratified in 1999, but devices didn’t hit the market until 2001. Thanks 
to its encoding system, it was significantly faster than 802.11b (discussed next) but never 
gained widespread popularity. They were ratified as standards right around the same time, 
but 802.11b devices beat it to market and were significantly cheaper. 


802.11b 


The 802.11b standard was ratified in 1999 as well, but device makers were much quicker 

to market, making this the de facto wireless networking standard for several years. 802.11b 
provides for bandwidths of up to 11 Mbps (with fallback rates of 5.5, 2, and 1 Mbps) in the 
2.4 GHz range. The 802.11b standard uses DSSS for data encoding. You will occasionally 
still see 802.11b devices in use, but they are becoming pretty rare. When you encounter them, 
encourage the users to upgrade to something faster. They will appreciate the increase in speed! 


PX The 802.11b and 802.11a standards are incompatible for two reasons: 
Qo" frequency and modulation. 802.11b operates in the 2.4 GHz frequency and 
uses DSSS. 802.11a runs at 5 GHz and uses OFDM. 
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802.11g 


Ratified in 2003, the 802.11g standard provides for bandwidths of 54 Mbps in the 

2.4 GHz frequency spectrum using OFDM or DSSS encoding. Because it operates in the 
same frequency and can use the same modulation as 802.11b, the two standards are com- 
patible. Because of the backward compatibility and speed upgrades, 802.11g replaced 
802.11b as the industry standard for several years, and it is still relatively popular today. 


Devices that can operate with both 802.11b and 802.11g standards are 
OTE labeled as 802.11b/g. 


As we mentioned, 802.11g devices are backward compatible with 802.11b devices, and 
both can be used on the same network. That was initially a huge selling point for 802.11g 
hardware and helped it gain popularity very quickly. However, there are some interoper- 
ability concerns of which you should be aware. 802.11b devices are not capable of under- 
standing OFDM transmissions; therefore, they are not able to tell when the 802.11g access 
point is free or busy. To counteract this problem, when an 802.11b device is associated 
with an 802.11g access point, the access point reverts back to DSSS modulation to provide 
backward compatibility. This means that all devices connected to that access point will run 
at a maximum of 11 Mbps. To optimize performance, administrators would upgrade to all 
802.11g devices and configure the access point to be G-only. 


M Today, both 802.11b and 802.11g are considered legacy devices. So to really 
P optimize performance for today's bandwidth-hungry devices, replace all 
legacy wireless devices (anything older than 802.11n) with 802.11ac devices. 


One additional concept to know about when working with 2.4 GHz wireless network- 
ing is channels. We’ve said before that 802.11b/g works in the 2.4 GHz range. Within this 
range, the Federal Communications Commission (FCC) has defined 14 different 22 MHz 
communication channels. This is analogous to a 14-lane audio wave highway, with each 
lane being 22 MHz wide. An illustration of this is shown in Figure 8.1. 


FIGURE 8.1 2.4 GHz communication channels 


Channels 


1 2 3 4 5 6 7 8 9 10 11 12 13 14 





2.402GHz |«— 22MHz ——>| 2.483GHz 


Although 14 channels have been defined for use in the United States, you’re allowed to 
configure your wireless networking devices only to the first 11. When you install a wire- 
less access point and wireless NICs, they will all auto-configure their channel, and this will 
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probably work okay for you. If you are experiencing interference, changing the channel 
might help. And if you have multiple, overlapping wireless access points, you will need to 
have non-overlapping channels to avoid communications problems. (We’ll talk about this 
more in the “Installing and Configuring SOHO Networks” section later in this chapter.) 
Two channels will not overlap if there are four channels between them. If you need to use 
three non-overlapping channels, your only choices are 1, 6, and 11. Notice in Figure 8.1 
that those three channels are highlighted. 


PPS There are many other commercial devices that transmit at the frequen- 
A: cies at which 802.11 operates. When this happens, there can be a lot of 
interference. Older Bluetooth devices, cordless phones, cell phones, other 
WLANs, and microwave ovens can all create interference problems for 
802.11 networks, particularly in the 2.4 GHz range. 


802.11n 


Continuing the evolution in Wi-Fi is 802.11, which was ratified in 2010. The standard 
claims to support bandwidth up to 600 Mbps, but in reality the typical throughput is about 
300-450 Mbps. That’s still pretty fast. It works in both the 2.4 GHz and 5 GHz ranges. 

802.11n achieves faster throughput in a couple of ways. Some of the enhancements 
include the use of 40 MHz channels, multiple-input multiple-output (MIMO), and channel 
bonding. Remember how 802.11g uses 22 MHz channels? 802.11n combines two chan- 
nels to double (basically) the throughput. Imagine being able to take two garden hoses and 
combine them into one bigger hose. That’s kind of what channel bonding does. MIMO 
means using multiple antennas rather than a single antenna to communicate information. 
(802.11n devices can support up to eight antennas, or four streams, because each antenna 
only sends or receives.) Channel bonding also allows the device to communicate simultane- 
ously at 2.4G Hz and 5 GHz and bond the data streams, which increases throughput. 

One big advantage of 802.11n is that it is backward compatible with 802.11a/b/g. This 
is because 802.11n is capable of simultaneously servicing 802.11b/g/n clients operating in 
the 2.4 GHz range as well as 802.11a/n clients operating in the 5 GHz range. 








Not As Much Freedom As You Might Think 


In the 5 GHz spectrum, there are 25 non-overlapping 20 MHz communications channels, 
24 of which can be used for Wi-Fi networks. On the surface, this sounds much better than 
the 3 non-overlapping channels available in the 2.4 GHz spectrum. 


To increase throughput, 802.11n (and 802.11ac, discussed in the next section) bond chan- 
nels together. When 20 MHz channels are bonded into 40 MHz channels, this reduces the 
number of non-overlapping channels to 12. To complicate matters further, weather, com- 
mercial, and military radar operate in the 5 GHz range as well, and Wi-Fi needs to avoid 
conflicting with them. 
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To avoid conflicts, wireless routers use a technology named dynamic frequency 
selection (DFS), which will detect radar interference and dynamically adjust to a 
different frequency range to avoid the problem. If your installation is in an area that 
does not receive interference from radar signals, you will have 12 non-overlapping 40 
MHz channels; otherwise, only 4 non-overlapping, non-DFS 40 MHz channels remain 
available for bonding. 


If you’re curious (and it’s highly unlikely that you will be tested on this), the four non- 
overlapping, non-DFS 40 MHz channels are numbered 36 and 40, 44 and 48, 149 and 
153, and 157, and 161. We explain this a bit more in the section on 802.11ac, and Figure 
8.2 illustrates what we just discussed. 


FIGURE 8.2 Channel availability in the 5 GHz spectrum 
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802.11lac 


Technology is always marching forward and getting faster and cheaper, and wireless net- 
working is no different. In January 2014, 802.11ac was approved as the newest Wi-Fi stan- 
dard. In many ways, it’s a more powerful version of 802.11n in that it carries over many 
of the same features while adding in only a few new ones. It’s the first commercial wireless 
standard that claims to offer the speed of Gigabit Ethernet. 

802.11n introduced channel bonding and MIMO, and 802.11ac takes those concepts 
further. Instead of bonding two channels, 802.11ac can bond up to eight for a 160 MHz 
bandwidth. This results in a 333-percent speed increase. And 802.11ac greatly enhances 
MIMO. First, it doubles the MIMO capabilities of 802.11n to eight streams, resulting in 
another 100 percent speed increase. Second, it introduces multi-user MIMO (MU-MIMO) 
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for up to four clients. MU-MIMO allows multiple users to use multiple antennae for com- 
munication simultaneously, whereas MIMO only allowed for one such connection at a time 
on a device. 

The theoretical maximum speed of 802.11ac is 6.9 Gbps, but most current devices can 
get to about 1.3 Gbps. Common maximum throughput is just under Gigabit Ethernet 
speeds, at around 800 Mbps. You might see devices in the marketplace that claim to offer 
speeds over 2 Gbps, but the reality is that you’re unlikely to get those speeds in anything 
less than pristine, laboratory-like conditions with all top-of-the-line hardware. In other 
words, it’s fast, but don’t count on it being that fast. 








Back to DFS 


Remember that Wi-Fi installations using the 5 GHz range need to steer clear of radar 
signals to avoid conflicts. Radar for airplanes and weather stations has priority over your 
Wi-Fi network. (Sorry!) 


802.11ac obtains its insanely fast performance mostly through channel bonding. If you 
will recall, 802.11n can bond 20 MHz channels into 40 MHz channels, whereas 802.11ac can 
take the same channels and bond them further into either 80 MHz or 160 MHz channels. 


Ignoring DFS for a moment, a maximum of six non-overlapping 80 MHz channels and two 
non-overlapping 160 MHz channels are available in the 5 GHz spectrum. You can’t ignore 
DFS, though, and it takes the maximum number of non-overlapping 80 MHz channels 
down to two and eliminates any possible 160 MHz channels. 


Why is this important to know? Well, mostly because it explains why you're probably 

not going to get gigabit speeds out of 802.11ac. And for companies or other organiza- 
tions that want to upgrade to 802.11ac, there are only two non-overlapping channels to 
use at 80 MHz. This makes it difficult (if not impossible) to deploy in anything other than 
a relatively small office. The other option is to use 40 MHz channels just like 802.11n, but 
then the performance boost of 802.11ac is small and not likely to justify the higher cost of 
equipment. Figure 8.2 illustrates the available channels in the 5 GHz frequency. The chan- 
nels in the UNII-1 and UNII-3 are the ones that are completely available for Wi-Fi network 
use. UNII-2 and UNII-2 Extended channels are the DFS ones. (UNII stands for Unlicensed 
National Information Infrastructure and is sometimes abbreviated as U-NII.) 





The most important new feature of 802.11ac is beamforming, which can allow for range 
increases by sending the wireless signal in the specific direction of the client, as opposed to 
broadcasting it omnidirectionally. Beamforming helps overcome the fact that the range for 
a 5 GHz signal is inherently shorter than one for a 2.4 GHz signal. Not all 802.11ac rout- 
ers support beamforming, however, so you might have some range limitations, depending 
on your hardware. And even if the router does support the technology, the maximum dis- 
tance still won’t be any more than what you will get out of 802.11n. 
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Table 8.1 summarizes the 802.11 standards we discussed here. You'll notice that 
802.11ac operates in the 5 GHz range and uses OFDM modulation, meaning that it is not 
backward compatible with 802.11b. That’s okay, though—as we said earlier, it’s prob- 
ably best to retire those old and slow devices anyway. Many 802.11ac wireless routers are 
branded as dual-band, meaning they can operate in the 2.4 GHz frequency as well for sup- 
port of older 802.11g and 802.11n devices. If you are running a mixed environment and 
want to upgrade to an 802.11ac router, check the specifications carefully to see what it 


supports. 


TABLE 8.1 802.11 standards 





Maximum 
Type Frequency Throughput Modulation Indoor Range Outdoor Range 
— 2.4 GHz 2 Mbps FHSS/DSSS 20 meters 100 meters 
a 5 GHz 54 Mbps OFDM 35 meters 120 meters 
b 2.4 GHz 11 Mbps DSSS 40 meters 140 meters 
g 2.4 GHz 54 Mbps DSSS/OFDM 40 meters 140 meters 
n 5 GHz/2.4 GHz 600 Mbps OFDM/DSSS 70 meters 250 meters 
ac 5 GHz 1.3 Gbps OFDM 35 meters 140 meters 


The ranges provided in Table 8.1 are approximate and may differ based on 
your environment. For example, thick walls and steel beams will dramati- 
cally reduce your range. In addition, the maximum data rates for 802.11n 
and 802.11ac can be debated. Some equipment (and experts) will quote the 
theoretical maximum, whereas others will give more realistic throughput 
numbers. This wasn’t an issue pre-802.11n, but the newer technologies 
use fancier techniques to achieve maximum speeds, and we don’t always 
have hardware that can produce the speeds that scientists can draw up on 
a whiteboard. 


Also keep in mind that when discussing ranges, the farther away from the 
WAP you get, the lower your connection speed will be. For example, to get 
54 Mbps out of your 802.11g router, you need to be within about 100 feet of 
it. At the far end of its range, your throughput will be only about 6 Mbps. 
Another key is how many clients are attached to the WAP. More clients 
means less bandwidth for each client. If you have ever used the Wi-Fi in an 
airport or a busy hotel, you know exactly what we mean. These principles 
hold true for all 802.11 technologies. 
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What's Next in Wi-Fi? 


As with all other computer technologies, Wi-Fi keeps getting faster. When 802.11b was 
first introduced, gigabit wireless speeds were nothing but a distant dream. Fifteen years 
and three versions later, 802.11ac made it a reality. So now that users are sucking up giga- 
bit wireless bandwidth, what’s next? 


The next iteration of the 802.11 standards will be 802.11ax, which is scheduled to be 
released in 2019. At the Computer and Electronics Show in 2018, 802.11ax devices were 
demonstrated showing off speeds of 11 Gbps. The new standard will use existing 2.4 GHz 
and 5 GHz spectrums, like its predecessors, but will also make use of additional bands 
between 1 GHz and 7 GHz. In addition, modulation enhancements will result in greater 
efficiency. The end result is a 10-gigabit connection through the air. 





802.11 Devices 


If you think about a standard wired network and the devices required to make the network 
work, you can easily determine what types of devices are needed for 802.11 networks. Just 
like a wired network, you need a wireless network card and some sort of central connectiv- 
ity device. 

Wireless network cards come in a variety of shapes and sizes, including PCI, PCIe, 
and USB. As for connectivity devices, the most common are wireless routers (as shown in 
Figure 8.3) and a type of switch called a wireless access point (WAP). WAPs look nearly 
identical to wireless routers and provide central connectivity like wireless routers, but they 
don’t have nearly as many features. The main one most people worry about is Internet con- 
nection sharing. You can share an Internet connection among several computers using a 
wireless router but not with a WAP. 


FIGURE 8.3 Wireless router 
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Most wireless routers and WAPs also have wired ports for RJ-45 connectors. The router 
shown in Figure 8.3 has four wired connections—in the figure you can’t see the ports, but 
you can see the port labels. The connected cable in this example is plugged into the port 
labeled Internet, which in this case goes to the DSL modem providing Internet access. We’ll 
talk much more about installing and configuring a wireless router in the “Configuring 
Wireless Routers and Access Points” section later in this chapter. 


Bluetooth Networking 


We introduced Bluetooth in Chapter 6, “Networking Fundamentals,” in the context of a 
wireless personal area network (PAN). It was released in 1998 and is an industry standard, 
much like 802.11. However, Bluetooth is not designed to be a WLAN and therefore does 
not directly compete with Wi-Fi. In other words, it’s not the right technology to use if you 
want to set up a wireless network for your office. It is, however, a great technology to use 
if you have wireless devices that you want your computer to be able to communicate with. 
Examples include smartphones, mice, keyboards, headsets, and printers. 

Nearly every laptop comes with built-in Wi-Fi capabilities, and most also come 
Bluetooth-enabled. If not, install a USB Bluetooth adapter to have it communicate with 
Bluetooth devices. It’s a safe bet to say that all smartphones and other mobile devices today 
support Bluetooth. 


Like 802.11b/g/n, Bluetooth uses the unlicensed 2.4 GHz range for com- 
TE munication. To avoid interference, Bluetooth can “signal hop” at different 
frequencies to avoid conflicts with devices using other technologies in 


the area. Thanks to technology improvements, interference with Wi-Fi is 
unlikely, but it can still occur. 


Bluetooth Versions 


Several Bluetooth standards have been introduced. Newer versions have increased speed 
and compatibility with technologies such as Wi-Fi, LTE, IPv6, and Internet of Things (IoT) 
devices, along with reduced power requirements and increased security. The newest version 
is Bluetooth v5, which was introduced in 2016. Table 8.2 provides a high-level overview of 
the major versions and some key features. 


TABLE 8.2 Bluetooth versions and features 





Basic Enhanced Data High Low Slot Availability 
Version Rate (BR) Rate (EDR) Speed (HS) Energy (LE) Masking (SAM) 
1.x X 
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TABLE 8.2 Bluetooth versions and features (continued) 





Basic Enhanced Data High Low Slot Availability 
Version Rate (BR) Rate (EDR) Speed (HS) Energy (LE) Masking (SAM) 
3.x X X X 
4.x X X X X 
5.x X X X X X 


Now let’s talk about what some of these features mean: 


Basic Rate (BR) All Bluetooth devices since version 1.0 have supported a basic data trans- 
fer rate of 1.0 Mbps. After overhead, actual data transfer is actually 721 Kbps. That is 
incredibly slow today, but it was sufficient for early keyboards, mice, and speakers. 


Enhanced Data Rate (EDR) Version 2.0 supported EDR, which delivered bit throughput 
of 3.0 Mbps. After overhead, it goes down to 2.1 Mbps. EDR consumes more power than 
BR consumes. 


High Speed (HS) With version 3.0 came the HS enhancement, which allowed Bluetooth 
to transmit over available 802.11 signals. This boosted the data transfer rate to 24 Mbps. 
Keep in mind, of course, that this requires Wi-Fi to be nearby, and using HS requires con- 
siderably more power than EDR. 


Low Energy (LE) Version 4.0 introduced a low energy mode, which sacrifices data trans- 
fer rate (270 Kbps) but maintains transmission distance while using less energy. Devices 
using LE will consume somewhere between one percent and 50 percent of power compared 
to a device operating in Classic mode. The primary intent was to make this compatible with 
IoT devices. Version 4.2 was the first to include specific features for IoT. 


PX Bluetooth devices operate in either Classic mode (BR/EDR) or low energy 

Qo" mode. Classic modes have higher data throughput but require more 
power. LE sacrifices throughput to save power. Computer peripherals are 
more likely to use Classic mode, whereas loT devices, Bluetooth beacons, 
and things like activity monitors will probably use LE. 


Slot Availability Masking (SAM) One potential issue with Bluetooth is interference on 

its communication channels—it uses the same unlicensed 2.4 GHz frequency that Wi-Fi 
does—and SAM is designed to help reduce problems. SAM can detect and prevent interfer- 
ence by switching bands within that frequency spectrum to help maintain throughput. 


Bluetooth v5 has several new features over its predecessor, v4.2. Along with introducing 
SAM, and better security, it is capable of doubling the throughput and achieving four times 
the maximum distance, up to about 240 meters (800 feet) outdoors with line of site, when 
in LE mode. That drops to about 40 meters (133 feet) indoors. (Remember, when distances 
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are stated, that’s the theoretical maximum under ideal conditions.) It can’t do both at once, 
though. It can increase throughput at a shorter distance, or it can go up to longer distances 
at a lower data rate. It’s the first version that truly challenges other IoT technologies in that 
space. All versions of Bluetooth are backward compatible with older versions. Of course, 
when using mixed versions, the maximum speed will be that of the older device. 

One of the key features of Bluetooth networks is their temporary nature. With Wi-Fi, 
you need a central communication point, such as a WAP or router. Bluetooth networks 
are formed on an ad hoc basis, meaning that whenever two Bluetooth devices get close 
enough to each other, they can communicate directly with each other. This dynamically 
created network is called a piconet. Bluetooth-enabled devices can communicate with up 
to seven other devices in one piconet. One device will be the master, and the others will be 
slaves. The master controls communication between the devices. Multiple piconets can be 
combined together to form a scatternet, and it’s possible for a master of one piconet to be a 
slave in another. In a scatternet, one of the Bluetooth devices serves as a bridge between the 
piconets. 


P Bluetooth devices can be configured to have an effectively permanent con- 
A: nection when they are within range of each other. This is convenient for 
smartphones and hands-free headsets or phones and automobile commu- 
nications systems. To do this, the devices need to be paired. We will cover 
the process of pairing Bluetooth devices in Chapter 11, “Understanding 
Mobile Devices.” 


Bluetooth Devices 


As mentioned earlier, Bluetooth devices have classically been computer and communica- 
tions peripherals—keyboards, mice, headsets, and printers being common. Of course, 
smartphones and other mobile devices support Bluetooth as well. With the newest versions, 
we may also see more IoT devices with Bluetooth capabilities as well. 

One such device is a Bluetooth beacon, which is a small hardware transmitter that uses 
Bluetooth LE. It’s broadcast only, and transmits its unique identifier to nearby Bluetooth- 
enabled devices, such as smartphones. It can be used to send information such as marketing 
materials or coupons to someone with a smartphone in the vicinity of a product, or as a 
short-range navigation system. 

There are four classes of Bluetooth devices, which differ in their maximum transmission 
range and power usage; the specifications are shown in Table 8.3. Most computer peripheral 
Bluetooth devices are Class 2 devices, which have a range of 10 meters (33 feet) and power 
usage of 2.5 mW. Most headsets are also Class 2, but some Class 1 headsets exist as well. 
Right now you might be confused, recalling from the standards discussion that Bluetooth 
v5 has a maximum range of 240 meters outdoors. That is for a Class 1 device running in LE 
mode only; devices running in classic BR or EDR modes will have shorter ranges. 


up. Remember that they are independent of each other. Most devices you 


When studying Bluetooth, it’s easy to get the versions and classes mixed 
P 
see will be Class 2, regardless of the Bluetooth version they support. 
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TABLE 8.3 Bluetooth device classes and specifications 





Class Distance Power usage 
1 100 meters 100 mW 

2 10 meters 2.5 mW 

3 1 meters 1 mW 

4 0.5 meters 0.5 mW 


Cellular Networking Standards 


Most of the networking technologies we cover in this chapter are relatively short range. 
Wi-Fi and Bluetooth signals can stretch a few hundred meters at best, and the standards we 
cover later are even more limited than that. Cellular technology is by far the longest-range 
of the wireless communications technologies available today. 

You’re probably at least somewhat familiar with cellular networking—it’s what smart- 
phones and older cellular (or cell) phones use. You might not have thought of it in terms of 
networking, but that’s really what it is. There’s a central access point, like a hub, which is 
the cellular network tower. Devices use radio signals to communicate with the tower. The 
tower, in turn, is connected via wires to a telecommunications backbone, which essentially 
talks to all the other commercial telecom networks in the world. It’s a huge network. 

For years, this network was pretty slow, especially by today’s standards. Originally, it 
had the bandwidth to carry only voice conversations, which consume little bandwidth. 
Then texting was supported, and, after several generations of enhancement, we’re now able 
to do things like stream movies or live sports on our smartphones via a cellular connection. 


Third Generation (3G) 


Two major cell standards dominated the industry for the formative years of the mobile 
phone evolution. The Global System for Mobile communications (GSM) was the most pop- 
ular, boasting over 1.5 billion users in 210 countries. The other standard was code-division 
multiple access (CDMA), which was developed by Qualcomm and available only in the 
United States. 

Both were third generation (3G) mobile technologies, and each had its advantages. GSM 
was introduced first, and when CDMA was launched, it was much faster than GSM. GSM 
eventually caught up, though, and the two ended up with relatively similar data rates. The 
biggest issue was that GSM and CDMA were not compatible with each other. Whatever 
technology you got was based on the provider you signed up with. Sprint and Verizon used 
CDMA, and AT&T and T-Mobile used GSM. That meant that if you had a CMDA phone 
through Verizon, you couldn’t switch (with that phone) to AT&T. And, your CDMA phone 
wouldn’t work outside the United States. 
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When 3G was first introduced in 1998, it specified a minimum data download rate of 
200 Kbps. Data rates increased over time, and some carriers claimed to deliver over 7 Mbps 
downloads—although technically that was with 3.5G. Really, data rates varied by carrier, 
the equipment installed in the area, the number of users connected to the tower, and the 
distance from the tower. 


P In case you're curious—this isn't a test objective—there was a 2G digital 
‘gr standard and a 1G analog standard as well. 1G was launched in 1979, and 
2G became commercially available in 1991. 


Fourth Generation (4G) 


In 2008, the next generation, appropriately named fourth generation (4G), made its 
appearance. To be specific, 4G refers to a generation of standards for mobile devices 

(such as phones and tablets) and telecommunication services that fulfill the International 
Mobile Telecommunications Advanced (IMT-Advanced) specifications as adopted by the 
International Telecommunication Union (ITU). In more practical terms, it’s simply the 
next-in-line standard for wireless telephone, Internet, video, and mobile TV that replaced 
3G. To meet IMT-Advanced standards, the service must provide peak data rates of at least 
100 Mbps for high-mobility communication (such as trains or cars) and 1 Gbps for low- 
mobility communication. One major difference between 4G and 3G is that 4G is designed 
to use IP instead of traditional telephone circuits. It’s designed to provide mobile broadband 
access. 

The first 4G devices that came on the market did not offer anything close to the speeds 
specified by the ITU. Mobile manufacturers branded them 4G anyway, and there wasn’t 
much the ITU could do to stop it. The result was that the world became inundated with 4G 
advertising. 

In the early days of 4G, there were two competing standards—WiMAX and Long-Term 
Evolution (LTE). WiMAX was the marketing name given to the IEEE 802.16 standard for 
wireless MAN technology. While it was initially promising and had higher speeds than its 
competing standard, LTE was what the mobile providers latched onto. And as already men- 
tioned, they advertised a lot. For years, whenever you turned on the TV, you couldn’t help 
but be bombarded with commercials from cell providers pitching the fastest or widest or 
whatever-est 4G LTE network. 

The biggest enhancement of 4G LTE over 3G is speed. Whereas with true 3G technol- 
ogy you were limited to about 500 Kbps downloads, some 4G LTE networks will give you 
download speeds of 10-20 Mbps and upload speeds of 3-10 Mbps. (The theoretical maxi- 
mum for LTE is 300 Mbps download and 75 Mbps upload.) The range of 4G LTE depends 
on the tower and obstructions in the way. The optimal cell size is about 3.1 miles (5 km) in 
rural areas, and you can get reasonable performance for about 19 miles (30 km). 


Fifth Generation (5G) 


New ITU mobile specifications come out about every 10 years, so it stands to reason that 
5G is starting to make an appearance. Even though the first 5G modem was announced in 
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2016, it took until late 2018 for cellular providers to test pilot 5G in several cities. Rollout 
is expected to begin in earnest in 2019, but it will likely take until 2020 for widespread 
adoption to occur. 

The fifth generation (5G) of cellular technology looks to be a massive improvement over 
4G—some users will be able to get sustained wireless speeds in excess of 1 Gbps. The theo- 
retical maximum peak download capacity is 20 Gbps, but, of course, that would require 
pristine conditions, which don’t occur in real life. 

The technical specifications for 5G divide it into three categories: 


a Enhanced Mobile Broadband (eMBB), which will be used for cellphones and mobile 
communication 


= Ultra Reliable Low Latency Communications (URLLC) for autonomous vehicles and 
industrial applications 


= Massive Machine Type Communications (nMTC) for sensors, which is designed to 
support IoT devices 


Initially the focus will be on eMBB and developing the infrastructure to support mobile 
devices for consumers. Two versions of eMBB will take hold: fixed wireless broadband in 
densely populated areas and LTE for everywhere else. 

Let’s start with LTE, because we’ve already talked about it some. 5G’s version of LTE 
is similar to 4G LTE, just with faster speeds. It will use existing LTE frequencies in the 
600 MHz to 6 GHz range. Early testing from Qualcomm showed that browsing speeds 
for 5G were seven to nine times faster than 4G (490 Mbps on average), and download 
speeds reached 100 Mbps for most users, compared to 8 Mbps on their 4G LTE network. 
So, in general, expect 5G LTE to be about seven to ten times faster than the 4G it will 
replace. 

The really exciting feature of eMBB is fixed wireless broadband. This technology uses 
millimeter wave bands (called mmWave) in the 24 GHz to 86 GHz range. With mmWave, 
5G users can expect gigabit speeds over a wireless connection. Qualcomm’s testing showed 
that their average user achieved browsing speeds of 1.4 Gbps and downloads of over 
400 Mbps. This great performance comes with a catch, though. (Doesn’t it always?) 

Very short radio waves such as the ones used in mmWave can carry a lot of data, but 
there are two inherent problems: 


= The first is distance. They’re limited to about half a mile. 


a The second is obstruction. mmWave can be blocked by just about anything, including 
walls, trees, and even a user’s hand. 


To overcome the first challenge, transmitters need to be placed very closely together. 
This shouldn’t be too much of a problem in urban areas, because 4G transmitters are 
already packed close together, and providers can simply attach a 5G one in the same place. 

The second challenge is a bit trickier. Engineers found a way to take advantage of signal 
bounce—the fact that signals blocked by buildings actually bounce off the buildings—to 
ultimately bounce the signal to the end user’s device. It slows down transmission speeds a 
bit, but it’s still a lot faster than current 4G technology. Due to the limitations, however, 
the fastest 5G connections will be available only in densely populated urban areas. 
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The promise of 5G performance is intoxicating. With it, users will be able to stream 8K 
movies over cellular connections with no delays, and it could also enable virtual reality and 
augmented reality over cell connections. 5G users in urban areas may never need to connect 
to a Wi-Fi network again, because their cellular connections will be just as fast. Wireless 
plans may truly become unlimited because of the bandwidth capacity that mmWave cre- 
ates. For these reasons, some experts are calling 5G a revolution, not an evolution. 


Home Automation Standards 


Some trends in personal computing come to define a generation. Going back far enough, 
the invention of the microprocessor certainly was one, as was the invention of the Pentium- 
class processor. The explosion of the Internet transformed how we communicate and share 
information. Wi-Fi revolutionized networking. More recent examples include cloud com- 
puting and now, the Internet of Things (IoT). 

Earlier in this chapter, you were introduced to Bluetooth and cellular, two standards 
that existed before IoT but now have recent revisions to support it. This section deals with 
two technologies that are specifically designed for IoT: Zigbee and Z-Wave. If you’ve gotten 
the sense that the IoT is kind of a big deal, you’re right. And it’s still relatively early in its 
consumer adoption, which means major innovations are still to come. 


Zigbee 


Zigbee is a short-range, low-power, wireless mesh technology developed in 2003 by a group 
of companies called the Zigbee Alliance. It’s based on the IEEE 802.15.4 standard for low- 
rate wireless personal area networks (LR-WPANS). Zigbee is designed primarily for home 
automation applications but can also be used in building automation, industrial applica- 
tions, and other wireless sensor networks. It’s not designed for a situation where there is 
high mobility among devices or where the devices are travelling at high speeds. 

There are three types of devices on a Zigbee network: 


=a The Zigbee Coordinator is the central device that plays a role of a server as well as a 
switch. It coordinates all devices on the Zigbee network, controls security, and can 
connect to other networks. 


=  Zigbee End Devices are the sensor or end node that talks to the Coordinator. 


=  Zigbee Routers can be end devices but also have the capability to pass along informa- 
tion from other end devices to the Coordinator. Functionally, this can extend the net- 
work beyond the transmission range of a single device. 


Devices supporting the Zigbee LightLink specification can form small ad 
A TE hoc networks, much like Bluetooth devices, and don’t require the services 
of a Coordinator. 


Transmissions occur in the 2.4 GHz range (although some devices can transmit at 
frequencies in the 800-900 MHz range at slower speeds), have a maximum distance of 
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about 10-20 meters, and top out at 250 Kbps. That’s not very fast, but understand that 
IoT devices generally don’t need to transmit much data. Up to 65,000 devices can be ona 
Zigbee network. 


Z-Wave 


In 2001, the Zensys company introduced Z-Wave into the wireless mesh personal area net- 
work space. Today, the Z-Wave technology is owned by Silicon Labs, and the standards are 
proposed, debated, and ratified by the Z-Wave Alliance. The design intent behind Z-Wave 
is the same as Zigbee—to provide an infrastructure for home automation and industrial 
IoT systems. 

Like Zigbee devices, Z-Wave devices connect to a controller, which manages device com- 
munication and system security. Z-Wave devices can transmit messages for other devices. 
For example, say that device A and device C are out of range from each other. They can 
still communicate with each other if there’s a device B in between that can communicate 
with each one. 

The Z-Wave technology differs from Zigbee in a few key areas. It uses frequencies in 
the 800 MHz and 900 MHz ranges, which avoids interference with Wi-Fi or Bluetooth, 
but introduces the possibility of interfering with cordless phones (if anyone has one) and 
some consumer electronics. The maximum distance is about 40 meters, and maximum data 
throughput is 40 Kbps. Z-Wave networks can have up to 232 devices. 








Which one is best for you? 


Although Zigbee and Z-Wave are the most popular, they are not the only in-market tech- 
nologies designed for loT. Others include Insteon, Lutron, WeMo, and Thread. And, of 
course, you can’t forget Bluetooth LE. With multiple standards to choose from, which one 
is right for you? 


As we noted, there are technical differences to consider, such as the maximum speed and 
distance. Really, though, all the available standards are more than adequate to support 
home automation for most people. What it really comes down to is devices and prices. 


Home automation devices come in a variety of forms—thermostats, light switches, door 
locks, electrical outlets, security cameras, and voice-activated digital assistants, such as 
the Amazon Echo, Apple HomePod, and Google Home. While most standards have sev- 
eral devices to choose from, make sure the one you buy is compatible with the standard 
you have. For example, the Amazon Echo Plus can act as a Zigbee controller but does not 
support Z-Wave. Google Home can work with both Zigbee and Z-Wave but does not act as 
a controller. 


Again, the key is to choose a standard that is compatible with the devices you want, and 
then ensure that future devices you buy are compatible as well. 
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Radio Frequency Networking Standards 


The final group of networking standards we will look at is radio frequency. Technically 
speaking, almost all of the networking technologies we’ve discussed so far use radio fre- 
quencies to communicate, so perhaps we’re taking a bit of creative license here. The two 
technologies in this section are radio frequency identification and a subset of it called near 
field communication. 


Radio Frequency Identification 


Radio frequency identification (RFID) is a communications standard that uses radio waves 
to facilitate communication. There are three types of RFID, based on the frequency used. 
This also affects the maximum distance that the waves can travel. Table 8.4 shows the 
three versions of RFID. 


TABLE 8.4 RFID frequencies and characteristics 





Name Frequency Distance 

Low frequency (LF) 125-134 kHz 10 centimeters 
High frequency (HF) 13.56 MHz 30 centimeters 
Ultra high frequency (UHF) 856-960 MHz 100 meters 


The primary purpose of RFID is to identify items. Those items can be inventory in a 
store or warehouse, people, or even fast-moving things, such as race cars. An RFID system 
is made of three components: tag, reader, and antenna. Let’s discuss what each component 
does: 


Tag An RFID tag is fastened to the item that needs to be tracked. This can be temporary, 
such as an access badge an employee carries around, or it can be permanently affixed to 
an item. The RFID tag contains identifying information, such as an employee ID, product 
number, inventory number, or the like. 


There are passive RFID tags and active RFID tags. Passive tags do not have a power source 
and draw their power from radio waves emitted by the RFID reader. This works only 
across short distances, typically about 25 meters or less. An active tag has its own power 
source (often a small battery) and may have its own antenna as well. Because it has power 
to generate a signal, the range for active tags is about 100 meters. 


Reader The reader’s job is to read information from tags. Readers have a power source 
and antenna. Once they get within 100 meters of an active tag or 25 meters of a passive 
tag, they can detect its presence. Readers can be mobile, such as a handheld inventory 
tracker, or static. An example of a static reader is the security gates that line the entrances 
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of many retail stores. The products in the store have an RFID tag, and if an active tag 
passes through the scanners, an alarm sounds to notify the store personnel that someone 
may be attempting to steal an item. 


Antenna An antenna boosts the distance an RFID signal can travel. Readers may have 
multiple antennae, depending on the model. 


RFID is pretty simplistic in networking terms. Its function is to identify items within a 
relatively short range. Two-way communication is pretty limited. 


Near Field Communication 


A subset of RFID is a very short distance technology known as near field communication 
(NFC). NFC is designed to facilitate information sharing and, in particular, contactless 
payment. It transmits at 13.56 MHz, which is the same frequency as HF RFID. 

The field of mobile contactless payment has made NFC explode in popularity over the 
last several years. With Apple’s introduction of the iPhone 6, nearly every smartphone 
manufacturer today equips its phones with NFC. Many tablets have NFC as well. Apple 
got into the NFC payment arena in 2014 with the launch of Apple Pay, which can be used 
from iPhones, iPads, and the Apple Watch. In 2015, Google introduced Android Pay, which 
is an update to the older Google Wallet app. No longer do users need to carry around credit 
cards—their phone and their fingerprint are all they need to complete a purchase. 

NFC uses radio frequency (RF) signals, and NFC devices can operate in three different 
modes: 


NFC Card Emulation Mode This lets the device act as a smart card. This is useful for 
making payments at the site of a merchant that uses NFC. 


NFC Reader/Writer Mode This allows the device to read information stored in an NFC 
tag on a label or poster. 


NFC Peer-to-Peer Mode This allows for ad hoc data transfer between two NFC-enabled 
devices. 


Data rates are rather slow compared to other wireless methods, as NFC operates at 
106 Kbps, 212 Kbps, and 424 Kbps. NFC always involves an initiator and a target. Let’s say 
that you wanted to read an NFC tag in a poster. You would move your phone close to the tag, 
and the phone would generate a small RF field that would power the target. Data could then be 
read from the tag. Tags currently hold up to about 8 KB of data, which is more than enough to 
store a URL, phone number, or other date and time or contact information. 

In peer-to-peer mode, NFC data is transmitted in the NFC Data Exchange Format 
(NDEF), using the Simple NDEF Exchange Protocol (SNEP). SNEP uses the Layer 2 Logical 
Link Control Protocol (LLCP), which is connection-based, to provide reliable data delivery. 

To use NFC, a user simply moves their device within range (about 10 centimeters or 4”) 
of another NFC-enabled device. Then, using an app, the device will be able to perform the 
desired transaction, such as making a payment, reading information, or transferring data 
from one device to another. 

NFC uses two different coding mechanisms to send data. At the 106 Kbps speed, it 
uses a modified Miller coding (delay encoding) scheme, whereas at faster speeds it uses 
Manchester coding (phase encoding). Neither method is encrypted, so it is possible to hack 
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NFC communications using man-in-the-middle or relay attacks. (We’ll go into detail about 
specific types of attacks in Chapter 22, “Security Concepts.”) Because of the limited dis- 
tance of the RF signals, though, hacking is pretty hard to do. The potential attacker would 
need to be within a meter or so to attempt it. 

Because of the popularity of mobile payments, it’s likely that NFC will be around for 
quite a few years. 








Understanding Infrared 


Infrared (IR) waves have been around since the beginning of time. They are longer than 
light waves but shorter than microwaves. The most common use of infrared technology 
is the television remote control, although infrared is also used in night-vision goggles and 
medical and scientific imaging. 


In 1993 the Infrared Data Association (IrDA) was formed as a technical consortium to 
support “interoperable, low-cost infrared data interconnection standards that support a 
walk-up, point-to-point user model.” The key terms here are walk-up and point-to-point, 
meaning you need to be at very close range to use infrared and it’s designed for one- 
to-one communication. Infrared requires line-of-sight, and generally speaking, the two 
devices need to be pointed at each other to work. If you point your remote control away 
from the television, how well does it work? 


Some laptops have a built-in infrared port, which is a small, dark square of plastic, usually 
black or dark maroon. For easy access, infrared ports are located on the front or sides of 
devices that have them. Figure 8.4 shows an example of an infrared port. 


FIGURE 8.4 Infrared port 











A ym 





Current IrDA specifications allow transmission of data up to 1 Gbps. Because infrared 
does not use radio waves, there are no concerns of interference or signal conflicts. Atmo- 
spheric conditions can play a role in disrupting infrared waves, but considering that the 
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maximum functional range of an IrDA device is about 1 meter, weather is not likely to 
cause you any problems. 


Security is not an issue with infrared. The maximum range is about 1 meter with an 
angle of about 30 degrees, and the signal does not go through walls, so hacking pros- 
pects are limited. If someone is making an attempt to intercept an infrared signal, it’s 
going to be pretty obvious. The data is directional, and you choose when and where to 
send it. 


You might have read the 1-meter distance limitation and thought, “But my television 
remote works at longer distances than that,” and you are right. Television and other con- 
sumer electronics remote controls are not governed by IrDA. They use a different infra- 
red technology, based on the RC-5 protocol developed by Philips in the late 1980s. The 
maximum functional distance of these remote controls is about 4-6 meters (13-20 feet), 
depending on the device. 


As a networking technology, Infrared seems to be fading from the spotlight (and it’s 
no longer an A+ exam objective). The slow speed, range limitation, and point-to-point 
nature of IR are pretty restrictive. Other technologies are simply better for networking. 





Installing and Configuring SOHO 
Networks 


You already know that for computers to talk to each other, they need to be connected in 
some way. This can be with physical wires or through the air with one of several wireless 
technologies. The type of connection you choose depends on the purpose of the connection 
and the needs of the user or users. 

Nearly every small office has a network, and it seems like most homes these days have 
one or more computers that need access to the Internet. As a technician, you may be asked 
to set up or troubleshoot any number of these types of networks, often collectively referred 
to as small office, home office (SOHO) networks. This part of the chapter will give you 
the background you need to feel comfortable that you can get the job done. Most of the 
principles we talk about apply to larger networks as well, so they’re helpful if you’re in a 
corporate environment too. 

Before we get into installation and configuration, though, it’s critical to introduce a 
topic that permeates this whole discussion: planning. Before installing a network or making 
changes to it, always plan ahead. When planning ahead, consider the user’s or company’s 
needs for today and the future. There is no sense in going overboard and recommending a 
top-of-the-line expensive solution if it’s not needed, but if the network is likely to expand, a 
little up-front planning can save a lot of money and hassle in the long run. 
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In the following sections, we’ll look at choosing an Internet connection, choosing inter- 
nal network connections, network planning and installation, configuring a wireless router, 
and configuring end-user devices. 


Choosing an Internet Connection 


While it may be apparent to you, your clients might not realize that in order to get on 
the Internet, computers need an Internet connection. Internet connections can be broadly 
broken into two categories: dial-up and broadband. It used to be that you had to weigh 
the pros and cons and figure out which one was best for your situation. Today, the choice 
is easy. Go broadband. The only time you would want to use dial-up is if broadband isn’t 
available, and if that’s the case, we’re sorry! 

Your Internet connection will give you online service through an Internet service pro- 
vider (ISP). The type of service you want will often determine who your ISP choices are. 
For example, if you want cable Internet, your choices are limited to your local cable compa- 
nies and a few national providers. We’ll outline some of the features of each type of service 
and discuss why you might or might not recommend a specific connection type based on 
the situation. 


Dial-Up/POTS 


One of the oldest ways of communicating with ISPs and remote networks is through dial-up 
connections. Although this is still possible, dial-up is not used much anymore due to limita- 
tions on modem speed, which top out at 56 Kbps. Dial-up uses modems that operate over 
regular phone lines—that is, the plain old telephone service (POTS)—and cannot compare 
to speeds possible with DSL, cable modems, or even cellular. Reputable sources claim that 
dial-up Internet connections dropped from 74 percent of all US residential Internet con- 
nections in 2000 to three percent in 2016. Three percent of Americans equals about nine 
million people, and that still feels like a lot. Most of the people who still use dial-up do it 
because it’s cheaper than broadband or high-speed access isn’t available where they live. 

The biggest advantage to dial-up is that it’s cheap and relatively easy to configure. The 
only hardware you need is a modem and a phone cable. You dial in to a server (such as an 
ISP’s server), provide a username and a password, and you’re on the Internet. 

Companies also have the option to grant users dial-up access to their networks. As with 
Internet connections, this option used to be a lot more popular than it is today. Microsoft 
offered a server-side product to facilitate this, called the Routing and Remote Access 
Service (RRAS), as did many other companies. ISPs and Remote Access Service (RAS) serv- 
ers would use the Data Link layer Point-to-Point Protocol (PPP) to establish and maintain 
the connection. 


_ The historical term for a dial-up server is a RAS (pronounced like “razz”) 
‘Qo server, as used in the preceding paragraph. When Microsoft launched Win- 
dows 2000, it added routing to its RAS capabilities and renamed it RRAS. 
Industry wide, however, the term RAS is still widely used. 
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It seems that dial-up is considered to be a relic from the Stone Age of Internet access. But 
there are some reasons it might be the right solution: 


= The only hardware it requires is a modem and a phone cord. 

a It’s relatively easy to set up and configure. 

= It’s the cheapest online solution (usually $10 to $20 per month). 

a You can use it wherever there is phone service, which is just about everywhere. 


Of course, there are reasons a dial-up connection might not be appropriate. The big one 
is speed. If your client needs to download files or has substantial data requirements, dial- 
up is probably too slow. In addition, with limited bandwidth, it’s really good only for one 
computer. It is possible to share a dial-up Internet connection among computers by using 
software tools, but it’s also possible to push a stalled car up a muddy hill. Neither option 
sounds like much fun. 


DSL 


One of the two most popular broadband choices for home use is digital subscriber line (DSL). 
It uses existing phone lines and provides fairly reliable high-speed access. To utilize DSL, you 
need a DSL modem (shown in Figure 8.5) and a network card in your computer. The ISP 
usually provides the DSL modem, but you can also purchase them in a variety of electronics 
stores. You use an Ethernet cable with an RJ-45 connector to plug your network card into the 
DSL modem (see Figure 8.6) and the phone cord to plug the DSL modem into the phone outlet. 
If you need to plug a landline into the same phone jack as your DSL modem, you will need a 
DSL splitter (such as the one shown in Figure 8.7) and plug the splitter into the wall. 


FIGURE 8.5 ADSLmodem 
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FIGURE 8.6 The back of the DSL modem 





FIGURE 8.7 ADSlLsplitter 





plug your computer into a router (such as a wireless router) and then plug 
the router into the DSL modem. Phone companies may tell you that you 
can’t (or shouldn’t) do this, but if you want to connect multiple computers to 
the Internet and don’t mind sharing the bandwidth, there is no reason not to. 


w Instead of plugging your computer directly into the DSL modem, you can 
P 
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There are several different forms of DSL, including high bit-rate DSL (HDSL), 
symmetric DSL (SDSL), very high bit-rate DSL (VDSL), and asymmetric DSL (ADSL). 
Table 8.5 summarizes the general speeds of each. Keep in mind that the maximum speeds 
decrease as the installation gets farther away from the phone company’s equipment. 


TABLE 8.5 DSL standards and approximate speeds 





Standard Download Speed Upload Speed 
ADSL Up to 8 Mbps Up to 1 Mbps 
SDSL Up to 2.5 Mbps Up to 2.5 Mbps 
HDSL Up to 42 Mbps Up to 8 Mbps 
VDSL Up to 52 Mbps Up to 16 Mbps 


The most popular in-home form of DSL is ADSL. It’s asymmetrical because it supports 
download speeds that are faster than upload speeds. Dividing up the total available band- 
width this way makes sense because most Internet traffic is downloaded, not uploaded. 
Imagine a 10-lane highway. If you knew that 8 out of 10 cars that drove the highway went 
south, wouldn’t you make eight lanes southbound and only two lanes northbound? That is 
essentially what ADSL does. 

ADSL and your voice communications can work at the same time over the phone line 
because they use different frequencies on the same wire. Regular phone communications 
use frequencies from 0 to 4 kHz, whereas ADSL uses frequencies in the 25.875 kHz 
to 138 kHz range for upstream traffic and in the 138 kHz to 1,104 kHz range for 
downstream traffic. Figure 8.8 illustrates this. 


FIGURE 8.8 Voice telephone and ADSL frequencies used 
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The first ADSL standard was approved in 1998 and offered maximum download speeds 
of 8 Mbps and upload speeds of 1 Mbps. The newest standard (ADSL2+, approved in 
2008) supports speeds up to 24 Mbps download and 3.3 Mbps upload. Most ADSL com- 
munications are full-duplex. 

Many ISPs have moved from ADSL to VDSL, which offers 52 Mbps downloads and 
16 Mbps uploads over telephone wires. In practice, service providers will offer many 
plans with different speeds, starting at about 10 Mbps to 12 Mbps download and 1 Mbps 
upload. If you want more speed, you will pay more for it. In addition, just because you pay 
for a certain speed doesn’t mean you will get it. The farther away you are from the phone 
exchange, the slower your speed. Line quality also affects speed, because poorer lines have 
more attenuation (signal loss). 


_ You will probably see Internet providers offering broadband speeds of 
‘gr 1 Gbps or more, and they might call it DSL. Technically though, speeds that 
fast are fiber-optic connections, which are covered later. Over the last few 
years, the lines between DSL and fiber-optic have blurred considerably. It 
used to be that you ordered one or the other. Today, it’s more common to 
order a broadband speed and the provider figures out if they will give it to 
you via traditional copper wires (DSL) or fiber-optic. 


One major advantage that DSL providers tout is that with DSL you do not share band- 
width with other customers, whereas that may not be true with cable modems. 
To summarize, here are some advantages to using DSL: 


= — It’s much faster than dial-up. 

= Your bandwidth is not shared with other users. 

= — It’s generally very reliable (depending on your ISP). 
There are some potential disadvantages as well: 


= DSL may not be available in your area. There are distance limitations as to how far 
away from the phone company’s central office you can be to get DSL. Usually this isn’t 
a problem in metro areas, but it could be a problem in rural areas. 


=a DSL requires more hardware than dial-up: a network card, network cable, a DSL 
modem, a phone cord, and sometimes a splitter. A DSL modem package usually comes 
with a network cable and splitter, but many ISPs will make you pay for that package. 


= The cost is higher. Lower-speed packages often start off at around $20 to $30 per 
month, but the ones they advertise with the great data rates can easily run you $100 
per month or more. 


= Ifyou are ina house or building with older wiring, the older phone lines may not be 
able to support the full speed you pay for. 
That said, DSL is a popular choice for both small businesses and residential offices. If 


it’s available, it’s easy to get the phone company to bundle your service with your landline 
and bill you at the same time. Often you’ll also get a package discount for having multiple 
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services. Most important, you can hook the DSL modem up to your router or wireless 
router and share the Internet connection among several computers. 


To see if DSL is available in your area, go to www.dslreports.com. You can 
P also talk to your local telephone service provider. 


With many people using their cell phones as their home phones and landlines slowly 
fading into history, you may wonder if this causes a problem if you want DSL. Not really. 
Many phone providers will provide you with DSL without a landline (called naked DSL). 
Of course, you are going to have to pay a surcharge for the use of the phone lines if you 
don’t already use one. 


Cable 


The other half of the popular home-broadband duet is the cable modem. These provide 
high-speed Internet access through your cable service, much like DSL does over phone 
lines. You plug your computer into the cable modem using a standard Ethernet cable, 
just as you would plug into a DSL modem. The only difference is that the other connec- 
tion goes into a cable TV jack instead of the phone jack. Cable Internet provides broad- 
band Internet access via a specification known as Data Over Cable Service Interface 
Specification (DOCSIS). Anyone who can get a cable TV connection should be able to get 
the service. 

As advertised, cable Internet connections are usually faster than DSL connections. You'll 
see a wide variety of claimed speeds; some cable companies offer packages with download 
speeds up to 30 Mbps, 50 Mbps, or 100 Mbps and various upload speeds as well. (For 
business customers, download speeds can be 400 Mbps.) If it’s that fast, why wouldn’t 
everyone choose it? While cable generally is faster, a big caveat to these speeds is that they 
are not guaranteed and they can vary. And again, with many phone companies not really 
differentiating between DSL and fiber-optic, it can be difficult to understand exactly what 
you’re comparing to each other. 

One of the reasons that speeds may vary is that you are sharing available bandwidth 
within your distribution network. The size of the network varies, but it’s usually between 
100 and 2,000 customers. Some of them may have cable modems too, and access can be 
slower during peak usage times. Another reason is that cable companies make liberal use of 
bandwidth throttling. If you read the fine print on some of their packages that promise the 
fast speeds, one of the technical details is that they boost your download speed for the first 
10 MB or 20 MB of a file transfer, and then they throttle your speed back down to your 
normal rate. 

To see how this could affect everyone’s speed on the shared bandwidth, consider a sim- 
plified example. Let’s say that two users (Sally and John) are sharing a connection that 
has a maximum capacity of 40 Mbps. For the sake of argument, let’s assume that they are 
the only two users and that they share the bandwidth equally. That would mean normally 
each person gets 20 Mbps of bandwidth. If Sally gets a boost that allows her to download 
30 Mbps, for however long, that leaves John with only 10 Mbps of available bandwidth. If 
John is used to having 20 Mbps, that 10 Mbps is going to seem awfully slow. 
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While it may seem as though we are down on cable modems, you just need to under- 
stand exactly what you and your customers are getting. In practice, the speeds of a cable 
modem are pretty comparable to those of DSL. Both have pros and cons when it comes to 
reliability and speed of service, but a lot of that varies by service provider and isn’t neces- 
sarily reflective of the technology. When it comes right down to it, the choice you make 
between DSL and cable (if both are available in your area) may depend on which company 
you get the best package deal from: phone and DSL through your telephone company or 
cable TV and cable modem from your cable provider. 

To summarize, here are the advantages to using cable: 


a It’s much faster than dial-up, and it can be faster than DSL (particularly for uploads). 
= You're not required to have or use a telephone landline. 
a It’s generally very reliable (depending on your ISP). 

As with anything else, there are possible disadvantages: 


= Cable may not be available in your area. In metro areas this normally isn’t a problem, 
but it could be in rural areas. 


a Cable requires more hardware than dial-up: a network card, network cable, and a 
cable modem. Most ISPs will charge you a one-time fee or a monthly lease fee for the 
cable modem. 


= Your bandwidth is shared with everyone on your network segment, usually a 
neighborhood-sized group of homes. Everyone shares the available bandwidth. During 
peak times, your access speed may slow down. 


= The cost is higher. Lower-speed packages often start off at around $20 to $30 per 
month, but the ones they advertise with the great data rates can easily run you $100 or 
more per month. 


Cable modems can be connected directly to a computer but can also be connected to a 
router or wireless router just as a DSL modem. Therefore, you can share an Internet con- 
nection over a cable modem. 


For detailed information about cable Internet availability and performance, 
á TE check out www. highspeedinternet.com. 


Integrated Services Digital Network 


Integrated Services Digital Network (ISDN) is a digital, point-to-point network capable 
of maximum transmission speeds of about 2 Mbps, although speeds of 128 Kbps are more 
common. ISDN uses the same two-pair UTP wiring as POTS (but it can transmit data at 
much higher speeds). That’s where the similarity ends. What makes ISDN different from 

a regular POTS line is how it uses the copper wiring. Instead of carrying an analog (voice) 
signal, it carries digital signals. While not nearly as fast as other broadband services, it still 
is considered a broadband type of access. 
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A computer connects to an ISDN line via an ISDN terminal adapter (often referred to as 
an ISDN TA or an ISDN modem). Like DSL and cable modems, an ISDN terminal adapter 
is not an actual modem, because it does not convert a digital signal to an analog signal; 
ISDN signals are digital. Computers also need a network terminator to connect to the 
ISDN TA, but most TAs have them built in. If multiple users on the network need Internet 
access through the ISDN line, you need an ISDN router. 

An ISDN line has two types of channels. The data is carried on a channel called a bearer 
channel, or B channel, which can carry 64 Kbps of data. The second type of channel is 
used for call setup and link management and is known as the signal channel, or D channel. 
This channel has only 16 Kbps of bandwidth. A typical 144 Kbps basic rate interface (BRI) 
ISDN line has two B channels and one D channel. One B channel can be used for a voice 
call while the other is being used for data transmissions, or both can be used for data. 
When the B channels are combined to maximize data throughput (which is common), the 
process is called bonding or inverse multiplexing. Multiple BRI ISDN lines can also be 
bonded together to form higher throughput channels. 

BRI ISDN is also known as 2B+D because of the number and type of channels used. 
BRI ISDN is more common in Europe than in the United States. 

You can also obtain a primary rate interface (PRI), also known as 23B+D, which 
means it has 23 B channels and 1 D channel. The total bandwidth of a 23B+D ISDN line 
is 1,536 Kbps (23 B channels x 64 Kbps per channel + 64 Kbps for the D channel). This is 
typically carried on a dedicated T1 connection and was fairly popular in the United States. 

The main advantages of ISDN are as follows: 


a The connection is faster than dial-up. 
= It runs over phone lines. 


a It’s flexible. Each B channel can support voice or data. If you have a BRI ISDN con- 
nection, you can have two separate voice conversations happening at once, two data 
streams, a voice conversation and a data stream, or both channels bridged into one 
data stream. 


a Support for video teleconferencing is easy to obtain. 
= There is no conversion from digital to analog. 
However, ISDN does have a few disadvantages: 
= It’s more expensive than POTS. 
=a You need an ISDN modem and perhaps an ISDN router. 
= ISDN isa type of dial-up connection, so the connection must be initiated before use. 


BRI ISDN connections were starting to become popular in home applications in the 
mid- to late-1990s as an alternative to dial-up before broadband really took off. Today 
you'll rarely see it used in a home, but it’s occasionally used in an office. You will find PRI 
ISDN to be more common in office environments. BRI rates start at about $20 to $40 per 
month, while PRI solutions typically start in the $300-per-month range. 

If you need a dedicated Internet connection, which will serve as an Internet-only con- 
nection, then one of the other broadband services is likely a better choice. If you want a 
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line that can support both Internet and voice and provide flexibility to go between the two, 
then ISDN could be the right solution (although Voice over IP could be as well—but that is 
beyond the scope of this chapter). 


P Voice over IP (VolP) is a digital technology that allows for the transmis- 
‘Qo sion of voice communications over Internet connections. It’s a very 
popular technology for business use, but it’s not covered in the A+ exam 
objectives. 


Fiber-Optic Internet 


Fiber-optic cable is pretty impressive with the speed and bandwidth it delivers. For nearly 
all of fiber-optic cable’s existence, it’s been used mostly for high-speed telecommunica- 
tions and network backbones. This is because it is much more expensive than copper to 
install and operate. The cables themselves are pricier, as is the hardware at the end of the 
cables. 

Technology follows this inevitable path of getting cheaper the longer it exists, and fiber 
is really starting to embrace its destiny. Some phone and media companies are now offering 
fiber-optic Internet connections for home subscribers. 

An example of one such option is Fios, offered by Verizon. It offers fiber-to-the-home 
(FTTH) service, which means that the cables are 100-percent fiber from their data cen- 
ters to your home. At the time we were writing this book, Fios offered basic packages at 
100 Mbps download and 100 Mbps upload, and the fastest speeds are 940 Mbps down and 
880 Mbps up. Businesses can get packages from 75 Mbps to 500 Mbps down and up. Near 
gigabit speeds mean you can download a two-hour HD movie in just over one minute. 
That’s ridiculously fast. Other providers will offer similar packages. 

Yet another service you may see is called fiber-to-the-curb (FTTC). This runs fiber to 
the phone or cable company’s utility box near the street and then runs copper from there to 
your house. Maximum speeds for this type of service are around 25 Mbps. These options 
are probably best suited for small businesses or home offices with significant data require- 
ments, unless online gaming is really important to you. 


P Some cable companies promise a high-speed, fiber-optic connection for 
‘GQ your TV cable as well as cable Internet service. In many cases, the connec- 
tion is fiber-to-the-node (FTTN), and the fiber runs only from their network 
to the junction box at the entrance to your neighborhood or possibly to 
your curb. From there, the cable is coaxial copper. This means that speeds 
will be significantly slower than advertised. If you're paying for a fiber con- 
nection, be sure you're actually getting a fiber connection. 


Are there any downsides to a fiber Internet connection? Really only two come to mind. 
The first is availability. It’s still a little spotty on where you can get it. The second is price. 
That great gigabit connection can easily cost you $200 per month after any special intro- 
ductory pricing wears off. 
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Satellite 


One type of broadband Internet connection that does not get much fanfare is satellite 
Internet. Satellite Internet is not much like any other type of broadband connection. 
Instead of a cabled connection, it uses a satellite dish to receive data from an orbiting satel- 
lite and relay station that is connected to the Internet. Satellite connections are typically 

a little slower than wired broadband connections, with downloads often maxing out at 
around 125 Mbps and uploads around 3 Mbps. 

The need for a satellite dish and the reliance upon its technology is one of the major 
drawbacks to satellite Internet. People who own satellite dishes will tell you that there 
are occasional problems due to weather and satellite alignment. You must keep the satel- 
lite dish aimed precisely at the satellite or your signal strength (and thus your connection 
reliability and speed) will suffer. Plus, cloudy or stormy days can cause interference with 
the signal, especially if there are high winds that could blow the satellite dish out of align- 
ment. Receivers are typically small satellite dishes (like the ones used for DirecTV or Dish 
Network) but can also be portable satellite modems (modems the size of a briefcase) or 
portable satellite phones. 

Another drawback to satellite technology is the delay (also called propagation delay), or 
latency. The delay occurs because of the length of time required to transmit the data and 
receive a response via the satellite. This delay (between 250 and 350 milliseconds) comes 
from the time it takes the data to travel the approximately 35,000 kilometers into space and 
return. To compare it with other types of broadband signals, cable and DSL have a delay 
between customer and ISP of 10 to 30 milliseconds. With standard web and email traffic, 
this delay, while slightly annoying, is acceptable. However, with technologies like VoIP and 
live Internet gaming, the delay is intolerable. 


Online gamers are especially sensitive to propagation delay. They often 

OTE refer to it as ping time. The higher the ping time (in milliseconds), the 
worse the response time in the game. It sometimes means the difference 
between winning and losing an online game. 


Of course, satellite also has advantages; otherwise, no one would use it. First, satellite 
connections are incredibly useful when you are in an area where it’s difficult or impossible 
to run a cable or if your Internet access needs are mobile and cellular data rates just don’t 
cut it, at least not until you can get cellular 5G. 

The second advantage is due to the nature of the connection. This type of connection is 
called point-to-multipoint because one satellite can provide a signal to a number of receiv- 
ers simultaneously. It’s used in a variety of applications, from telecommunications and 
handheld GPSs to television and radio broadcasts and a host of others. 

Here are a few considerations to keep in mind regarding satellite: 


It’s expensive compared to other broadband access, and you might get limited data. Packages 
usually start around $50 per month for about 25 Mbps downloads. That kind of download 
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speed will cost you only about $30 for DSL or cable. The low-end satellite packages, with down- 
load speeds of around 5 Mbps, will run you around $20 to $30 per month. And, many providers 
set thresholds on the amount of data you can download per month. For an example, a popular 
25 Mbps package for $50 per month limits you to 10 GB of data per month (at the time of this 
writing). Going over that amount can result in extra charges and/or speed throttling. Your speed 
will be decreased for a certain period, and you will pay more for that data as well. 


Installation can be tricky. When installing a satellite system, you need to ensure that the 
satellite dish on the ground is pointed at precisely the right spot in the sky. This can be 
tricky to do if you’re not trained, but some have a utility that helps you see how close you 
are to being right on (you’re getting warmer... warmer). 


Line-of-sight is required. Satellite communications require line-of-sight. A tree between 
you and your orbiting partner will cause problems. Rain and other atmospheric conditions 
can cause problems as well. 


Latency can bea problem. Because of the long distance the message must travel, satellites 
can be subject to long latency times. While it happens with wired connections, it dispropor- 
tionately affects satellite transmissions. Have you ever watched a national news channel when 
a reporter is reporting from some location halfway across the world? The anchor behind the 
desk will ask a question, and the reporter will nod, and nod, and finally about five excruciat- 
ing seconds after the anchor is done, the reporter will start to answer. That’s latency. 








@) Real World Scenario 
All in the Name of Entertainment 


Several years ago (and we do mean several) as a teenager, one of the authors worked for 
a local television station during the summers. Each summer, the television station would 
broadcast a Senior PGA golf tournament that was held on a nearby mountain course. 


Before the tournament, the crew would spend three days setting up the control truck, 
cameras, and link back to the station. (It was a network with TV cameras instead of work- 
stations.) Because of the remote location, the crew had to set up a satellite uplink to get 
the signals back to civilization. From the control truck, a transmitter was pointed at a relay 
station on the side of the mountain, which in turn was pointed at a satellite orbiting the 
earth. It took a team of four engineers to set it up. Two engineers would stay at the truck, 
and two others would board ATVs and journey up the remote mountainside. Once in posi- 
tion, they would set up the relay station, which looked a lot like a keg of beer with a few 
antennas. The engineers at the truck would adjust their directional microwave transmitter 
until the relay station received a strong signal. Then the engineers on the mountainside 
would perform the arduous task of pointing their transmitter at the satellite. 


It was a long and tedious process, and that’s really the point of the story. Satellite was the 
only option available to complete the network, but satellite networks can be a challenge 
to set up and configure. 
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Line-of-Sight Wireless Internet 


A second type of wireless Internet is line-of-sight wireless Internet, sometimes referred to 
as terrestrial fixed wireless Internet. Unlike satellite Internet, signals for line-of-sight wire- 
less never leave the earth’s atmosphere. Signals are sent from a transmitter (typically located 
on a building, tower such as a cellular tower, mountain, or silo) to a receiver mounted on 

a building, tower, or other permanent structure. Receivers are typically small parabolic 
dishes, from 6” to 14” in diameter, but can also look like a small tower. The receiver needs 
to be within about 10 miles of the transmitter. 

As the name of this service implies, direct line-of-sight is needed between the transmit- 
ter and receiver. Line-of-sight Internet uses low-powered signals in commercially-available 
unlicensed frequencies such as 900 MHz, 2.4 GHz, and 5 GHz. Obstructions can cause par- 
tial or total signal loss. Interestingly, obstructions don’t even need to be directly in-between 
the transmitter or receiver, but if they are close, they can cause signal degradation as well. 

Radio waves don’t move in a direct straight line—they oscillate up and down as they 
travel. So instead of thinking of radio waves as travelling in a straight line, imagine that 
there’s a long oval-shaped bubble around them, going from the transmitter to the receiver. 
This is known as the Fresnel zone. Objects within the Fresnel zone (such as buildings 
or trees) can interfere with some of the signals, causing them to arrive out of phase with 
signals that travelled more directly, resulting in partial or total signal loss. It’s not uncom- 
mon to find situations where a line-of-sight wireless Internet connection seems to degrade 
in quality over time, and there are no apparent issues with the equipment. What might be 
happening is that trees are growing taller and entering the Fresnel zone, causing signal deg- 
radation. Heavy storms can also cause performance problems. Such “rain fade” issues can 
result in a performance loss of five to ten percent of the total signal. 

Much like other broadband services, providers will have multiple packages available. 
Home packages usually provide about 50 Mbps, whereas business plans can offer 500 Mbps 
or more. These speeds are much faster than satellite Internet, but line-of-sight can also be a 
little pricier. It’s a good option for rural homes or businesses that don’t have access to DSL 
or Cable Internet, need a faster-than-Satellite connection, and are willing to pay for it. 


Cellular (Cellular WAN) 


The cell phone, once a clunky brick-like status symbol of the well-to-do, is now pervasive in 
our society. It seems that everyone—from kindergarteners to 80-year-old grandmothers— 
has a cell. The industry has revolutionized the way we communicate and, some say, contrib- 
uted to furthering an attention-deficit-disorder-like, instant-gratification-hungry society. 

In fact, the line between cell phones and computers has blurred significantly with all the 
smartphones on the market. It used to be that the Internet was reserved for “real” comput- 
ers, but now anyone can be online at almost any time. 

Regardless of your feelings about cell phones, whether you are fanatical about being 
constantly in touch or you long for the good old days when you could escape your phone 
because it had a functional radius as long as your cord, you need to understand the basics 
of cell technology. For a review of current cellular technology, refer back to the “Cellular 
Networking Standards” section earlier in this chapter. The two important concepts we’ll 
add here are tethering and mobile hotspots. 
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Tethering 


In regular life, tethering means connecting two things together. In computing, it means 
hooking your laptop up to your cell phone and using the cell phone’s connection and data 
plan to get on the Internet. Technically speaking, the device that’s being used for the con- 
nection can get on the Internet using a wired connection, Wi-Fi, or Bluetooth as well, but 
the cell phone and laptop example is the most common scenario. The cellular-enabled 
device that is making the Internet connection is often known as a mobile hotspot. 


Mobile carriers may prohibit the use of your mobile phone for tethering, 
TE unless explicitly permitted in your data plan. 


Mobile Hotspots 


Many cell phone providers offer network cards (or they will incorrectly call them modems) 
that allow your laptop computer or other device to connect to the Internet from anywhere 
you can get a cell signal. This is called a mobile hotspot. Some will bundle that service with 
your normal monthly cell service at no additional charge, while others will charge you an 
incremental fee. The term you'll hear a lot in connection with this is MiFi. Figure 8.9 shows 
a Verizon MiFi hotspot. 


FIGURE 8.9 MiFi hotspot 
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A MiFi card such as this allows you to connect up to 15 Wi-Fi-enabled devices (usually 
802.11g/n) as a MiFi cloud to get Internet access. The MiFi card then makes the connection 
back to the cell phone provider. 

After purchasing a MiFi device, you first connect it to your laptop via a USB cable 
for activation and setup. Once that step is complete, you can go entirely wireless. MiFi 
supports Wi-Fi security such as WEP, WPA, and WPA2 (which we’ll cover later in this 
chapter). 

Table 8.6 summarizes the connection types we have discussed in this chapter. 


440 Chapter 8 = Installing Wireless and SOHO Networks 


TABLE 8.6 Common Internet connection types and speeds 


Connection Approximate Basic Download Speed 
Type Package Cost Range Description 





Dial-up $10-$20 Up to 56 Kbps Plain old telephone service. A regu- 
lar analog phone line 


DSL $20-$30 Up to 50 Mbps Inexpensive broadband Internet 
access method with wide availabil- 
ity, using telephone lines 


Cable $20-$30 Up to 100 Mbps Inexpensive broadband Internet 
access method with wide availabil- 
ity, using cable television lines 


ISDN $20-$40 Up to 1.5 Mbps Integrated Services Digital Network. 
Once popular for home office Inter- 
net connections 


Fiber $40-$50 Up to 1 Gbps Incredibly fast and expensive 
Cellular $30-$50 Up to 20 Mbps Great range; supported by cell 
(with 4G LTE) phone providers. Best for a very lim- 


ited number of devices 


Satellite $30-$40 Up to 25 Mbps Great for rural areas without cabled 
broadband methods. More expensive 
than DSL or cable 


Line-of-sight $40-$150 6 Mbps to Fast connection for rural areas with- 
50 Mbps out cabled broadband methods. 








G Real World Scenario 


Sometimes, the Choices Are Limited 


Before deciding which broadband connection sounds the most appealing, you should 
also factor in something very important: What is available in your area. DSL is available 
at different rates of connectivity based on distance from a central station. If you live far 
enough from a central station, or near a central station that has not been updated lately 
(such as in the middle of rural America), DSL may not be an option. 


Similarly, not all cable providers are willing to take the steps necessary to run a connection 
in all situations. One of the authors once had a small business in a section of an old industrial 
building. The cable provider said the office where the modem was desired was too far from 
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their nearest pole and that nothing could be done about it. He offered to pay the expense to 
have an additional pole placed closer to the location, but they would not discuss it further. 


Make certain you know the available options—not just the technological options—before 
you spend too much time determining what is best for you. 





Choosing Internal Network Connections 


Along with deciding how your computers will get to the outside world, you need to think 
about how your computers will communicate with each other on your internal network. 
The choices you make will depend on the speed you need, distance and security require- 
ments, and cost involved with installation and maintenance. It may also depend some on 
the abilities of the installer or administrative staff. You may have someone who is quite 
capable of making replacement Category 6 cables but for whom making replacement fiber- 
optic cables is a much more daunting task. Your choices for internal connections can be 
lumped into two groups: wired and wireless. 


Many networks today are a hybrid of wired and wireless connections. 

TE Understand the fundamentals of how each works separately; then you can 
understand how they work together. Every wireless connection eventually 
connects back to a wired network point. 


Wired Network Connections 


Wired connections form the backbone of nearly every network in existence. Even as wire- 
less becomes more popular, the importance of wired connections still remains strong. In 
general, wired networks are faster and more secure than their wireless counterparts. 

When it comes to choosing a wired network connection type, you need to think about 
speed, distance, and cost. You learned about several types of wired connections in Chapter 6, 
“Networking Fundamentals,” such as coaxial, UTP, STP, and fiber-optic, but the only two 
you'll want to go with today are twisted-pair and fiber. You’ll run one of the two (or maybe a 
combination of the two), with UTP being by far the most common choice, as an Ethernet star 
network. Table 8.7 shows a summary of the more common Ethernet standards along with 
the cable used, speed, and maximum distance. The ones you need to know for the exam are 
CAT-5, CAT-5e, and CAT-6, but it’s good to be familiar with the others as well. 


TABLE 8.7 Common Ethernet standards 





Standard Cables Used Maximum Speed Maximum Distance 
10BaseT UTP CAT-3 and above 10 Mbps 100 meters (~300 feet) 
100BaseTX UTP CAT-5 and above 100 Mbps 100 meters 


100BaseFX Multi-mode fiber 100 Mbps 2,000 meters 
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TABLE 8.7 Common Ethernet standards (continued) 





Standard Cables Used Maximum Speed Maximum Distance 

1000BaseT UTP CAT-5e and above 1 Gbps 100 meters 

10GBaseT UTP CAT-6 and above 10 Gbps 55 meters (CAT-6) or 100 

meters (CAT-6a) 

10GBaseSR = Multi-mode fiber 10 Gbps 300 meters 

10GBaseLR Single-mode fiber 10 Gbps 10 kilometers (6.2 miles) 

10GBaseER Single-mode fiber 10 Gbps 40 kilometers (~25 miles) 
w Looking at Table 8.7, you might have noticed that the number in the stan- 

P dard corresponds to the maximum speed in megabits (unless it says 10G, 


where the G is for gigabits). This can help you remember what the stan- 
dard’s maximum speed is without a lot of rote memorization. For example, 
if you see 100Base anything, you know the maximum speed is 100 Mbps. 
The letter T always indicates twisted-pair, and Fis always fiber. 


The first question you need to ask yourself is, “How fast does this network need to be?” 
There really is no point installing a 10BaseT network these days because even the slowest 
wireless LAN speeds can deliver that. For most networks, 100 Mbps is probably suffi- 
cient. If the company has higher throughput requirements, then you can start looking into 
Gigabit Ethernet (1 Gbps) or faster (10 Gbps). 

The second question is then, “What is the maximum distance I’ll need to run any one 
cable?” In most office environments, you can configure your network in such a way that 100 
meters will get you from any connectivity device to the end user. If you need to go longer than 
that, you’ll definitely need fiber for that connection unless you want to mess with repeaters. 

As you’re thinking about which type of cable to use, also consider the hardware you'll 
need. If you are going to run fiber to the desktop, you need fiber network cards, routers, and 
switches. If you are running UTP, you need network cards, routers, and switches with RJ-45 
connectors. If you’re going to run Gigabit, all devices that you want to run at that speed 
need to support it. 

The third question to ask is, “How big of a deal is security?” Most of the time, the 
answer lies somewhere between “very” and “extremely.” Copper cable is pretty secure, but 
it does emit a signal that can be intercepted, meaning people can tap into your transmissions 
(hence, the term wiretap). Fiber-optic cables are immune to wiretapping. Normally this isn’t 
a big deal, because copper cables don’t exactly broadcast your data all over, as a wireless 
connection does. But if security is of the utmost concern, then fiber is the way to go. 

Fourth, “Is there a lot of electrical interference in the area?” Transmissions across a 
copper cable can be ravaged by the effects of electromagnetic interference (EMI). Fiber is 
immune to those effects. 
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Finally, ask yourself about cost. Fiber cables and hardware are more expensive than their 
copper counterparts. Table 8.8 summarizes your cable choices and provides characteristics 


of each. 


TABLE 8.8 Cable types and characteristics 


Characteristics 


Twisted-Pair 


Fiber-Optic 





Transmission rate 


Maximum length 
Flexibility 

Ease of installation 
Connector 
Interference (security) 
Overall cost 


NIC cost 


10-meter cable cost 


8-port switch cost 


CAT-5: 100 Mbps 
CAT-5e: 1 Gbps 
CAT-6/6a and CAT-7: 10 Gbps 


100 meters (328 feet) 
Very flexible 

Very easy 

RJ-45 

Susceptible 
Inexpensive 


100Mbps: $15-$40 
1Gbps: $30 and up 


CAT-5/5e: $8-$12 
CAT-6/6a: $12-$15 


100Mbps: $30-$100 
1Gbps: $70-$400 


still far more expensive than copper. 


100 Mbps to 10 Gbps 


About 25 miles 

Fair 

Difficult 

Special (SC, ST, and others) 
Not susceptible 

Expensive 


$100-$150; easily $600-$800 
for server NICs 


Depends on mode and con- 
nector type, but generally 
$20-$40 


$350 and up 


Understand that the costs shown in Table 8.8 are approximate and are for 
illustrative purposes only. The cost for this equipment in your area may 
differ. Fiber has gotten considerably cheaper in the last 5-10 years, but it’s 


Fiber-optic cabling has some obvious advantages over copper, but, as you can see, it may 
be prohibitively expensive to run fiber to the desktop. What a lot of organizations will do is 
use fiber sparingly, where it is needed the most, and then run copper to the desktop. Fiber 
will be used in the server room and perhaps between floors of a building as well as any 
place where a very long cable run is needed. 
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Wireless Network Connections 


People love wireless networks for one major reason: convenience. Wireless connections 
enable a sense of freedom in users. They’re not stuck to their desk; they can work from any- 
where! (We’re not sure if this is actually a good thing.) Wireless isn’t typically as fast and 

it tends to be a bit more expensive than wired copper networks, but the convenience factor 
far outweighs the others. 

When you are thinking about using wireless for network communications, the only real 
technology option available today is IEEE 802.11. The other wireless technologies we dis- 
cussed earlier in the chapter can help mobile devices communicate, but they aren’t designed for 
full wireless LAN (WLAN) use. Your choice becomes which 802.11 standard you want to use. 


If network users have a specific need, such as Bluetooth printing or man- 
OTE aging loT devices, you will want to integrate an appropriate technology for 
that into your design as well. 


So how do you choose which one is right for your situation? You can apply the same 
thinking you would for a wired network, in that you need to consider speed, distance, 
security, and cost. Generally speaking, though, with wireless it’s best to start with the most 
robust technology and work your way backward. 

Security concerns on wireless networks are similar, regardless of your choice. You’re 
broadcasting network signals through air; there will be some security concerns. It comes 
down to range, speed, and cost. 

In today’s environment, it’s silly to consider 802.11a only or 802.11b only. Deciding that 
you are going to install an 802.11b network from the ground up at this point is a bit like 
saying you are going to use 10BaseT. You could try, but why? In fact, it will be a challenge 
to even find 802.11b-only devices for your network. Most devices that support 802.11b are 
branded as 802.11b/g (or 802.11g/b), meaning they support both network types. 802.11a 
never really got too popular even when it was the best technology, so why use it now? 

That brings us to your most likely choices: 802.11n and 802.11ac. 802.11n is head- 
ing toward belonging only in history books, but considering its relatively decent speed, it 
will stick around for a while. Still, it probably isn’t best to design a new network from the 
ground up based on that technology. 802.11ac is the newest and fastest, but it will cost 
more and you might not get significantly better performance than 802.11n. It will come 
down to cost. Network cards will run you anywhere from $20 to $100, and you can get 
wireless access points and wireless routers for as little as $20 to $40. Shop around to see 
what kind of deal you can get. Exercise 8.1 has you do just that. 


The Cost of Networking 


1. Visit the website for an electronics store. If you're unfamiliar with any, try 
www. bestbuy.com or www. frys.com. 


2. Find an 802.11ac wireless router. How much is it? 
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3. Find an older standard. See if you can find an 802.11g router. If not, go for 802.11n. 
How much is it? (You might have to try a site like ebay.com to find older devices.) 


4. Now price wired network cards. Find a fiber-optic card and compare its price to an 
Ethernet card that offers similar speeds. Also look at the price of a 25-meter CAT-6 (or 
CAT-5) cable versus a 5-meter fiber-optic cable. How much difference is there? 


Keys to Planning a Network 


Before you run your first cable or place your first wireless router, know exactly where 
everything is supposed to go on the network. The only way you’ll be able to do this is to 
plan ahead. If you have planned the installation before you begin, the actual physical work 
of installing the network will be much easier. 

Every network is going to be somewhat different. If you are installing a home-based net- 
work, the planning is usually pretty simple: Figure out where the Internet connection comes in, 
set up a wireless router, and configure wireless devices, such as laptops, smartphones, and home 
automation devices, to get on the network. If the network is going to be more complex, how- 
ever, you should keep the following things in mind as you go through the planning process: 


Understand relevant regulations. If you are installing a home office network, this is prob- 
ably not needed. But if you are installing a network in an office building, there are likely 
local building codes that need to be followed. 


Get a map. Understand the layout of the space in which you’re installing the network. Get 
a map of the office or draw one yourself. Add distances or a scale, if possible, so that you 
can determine how far you’ll need to run cables or how many switches or wireless access 
points you’ll need. Label power locations and their capacity. Mark any potential obstacles 
or hazards that you may run into when you try to run cable, such as fluorescent lights, 
water pipes, or cinder block walls. 


Locate the server(s). When installing a small network, you may not have to worry about 
this. But if you have a network with one or more dedicated servers, decide where they will 
be located. They need to be in a secured location where only authorized people have access 
to them. This can be anything from a small closet to an elaborate server room, with raised, 
antistatic floors. Just make sure that it’s temperature-controlled because server closets tend 
to get very hot, and we know that heat and computers don’t mix well. 


Identify where client computers will be. If you are setting up an office in a cubicle farm, 
just assume one computer (or more, depending on the cubicle type) per cube. This will help 
you determine where you need shared network resources as well as cable placement. 


Locate network resources. Network users may need to share resources such as printers, so 
where will they be located? If there are dozens or even hundreds of users, you may need multi- 
ple printer locations or printer banks. Locate these and other shared resources in enough places 
so that users don’t have to walk from one end of the office to the other just to pick up printouts. 


Determine how users will connect. If network users will all connect wirelessly, you can 
start figuring out how many wireless routers or access points you’ll need. The best way to 
do this is to perform a wireless site survey. If you are going to have wired connections, start 
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determining how long the cable runs will be. Remember that UTP has a maximum segment 
distance of 100 meters. If you have to go up from a patch panel, into a ceiling, and down 
through a wall or conduit, take that into account too. 


Designate additional connectivity areas, if needed. If you are running cables and some 
systems are outside of your maximum cable length, you will need to install a repeater of 
some sort. The best choice is probably a switch, which repeats signals. If you have several 
hundred computers, though, and you want to separate out networks, then a router is the 
best choice. These connectivity locations can be just a small closet. Other times, if no space 
is available, some administrators will put the switch in the drop ceiling. Although there 
is nothing wrong with this (as long as it’s secured), it can be challenging to find power up 
there, and it does make it more difficult to add to that switch. Finally, if there’s no way to 
run power into the area where you need the switch, you could buy one that uses Power 
over Ethernet (PoE), which is covered in Chapter 6. Generally the number of ports these 
devices support is limited, but it beats having no connectivity at all. 


Network Installation 


Once all your plans are complete, you’ve double-checked them, and they’ve been approved 
by the client or boss, you can begin physical installation. As we’ve said before (but can’t 
overstate), having good plans up front saves time and money. The approval process is criti- 
cal too, so the people in charge are informed and agree to the plans. Here we’ll look at 
installation of three groups of items: network cards, cables, and connectivity devices. 


Installing and Configuring Network Interface Cards 


In the old days (1980s) of personal computers, NICs were a pain to install. Not only did 
you have to configure the hardware manually, you had to configure the network protocol 
stack manually. This usually involved a configuration program of some kind and was very 
cumbersome. Fortunately, installing a NIC today is pretty straightforward. 


Installing a Wired NIC 


Before you can begin communicating on your network, you must have a NIC installed in 

the device. Installing a NIC is a fairly simple task if you have installed any expansion card 
before; a NIC is just a special type of expansion card. In Exercise 8.2, you will learn how 
to install a NIC. 


Installing an internal NIC in Windows 10 


Before working inside a computer case, be sure to understand and follow safety proce- 
dures, including preventing electrostatic discharge (ESD). 


1. Power off the PC, remove the case and the metal or plastic blank covering the expan- 
sion slot opening, and insert the expansion card into an open slot. 


2. Secure the expansion card with the screw provided. 
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3. Put the case back on the computer and power it up. (You can run software configura- 


tion at this step, if necessary.) 


If there are conflicts, change any parameters so that the NIC doesn’t conflict with any 


existing hardware. 


Note that these first three steps may not be necessary if you have an onboard NIC. 


4. Install a driver for the NIC for the type of operating system that you have. Windows 
Plug and Play (PnP) will recognize the NIC and install the driver automatically. 


It may also ask you to provide a copy of the necessary driver if it does not recognize 
the type of NIC you have installed. If Windows does not start the installation routine 


immediately, you can add it manually: 


a. Click Start > Settings (it looks like a gear) > Devices > Bluetooth & Other 


Devices. 


b. Click the plus sign next to Add Bluetooth or Other Device, as shown in Figure 
8.10. That will bring up the Add a Device window (Figure 8.11). 


c. Click Everything Else. 


d. When Windows finds the NIC, choose it and continue the installation. 


FIGURE 8.10 Add Bluetooth or Other Device 


Bluetooth & other devices 


aL Add Bluetooth or other device 


Mouse, keyboard, & pen 
Logitech® Unifying Receiver 
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Other devices 
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J Apple Mobile Device USB Driver 
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Turn on Bluetooth even faster 


To turn on Bluetooth without 
opening Settings, open action 
center, and then select the 
Bluetooth icon. Do the same to turn 
it off when you want. 


Get more info about Bluetooth 


Related settings 
Devices and printers 


Sound settings 


Display settings 


Have a question? 
Get help 


Make Windows better 
Give us feedback 
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EXERCISE 8.2 (continued) 


FIGURE 8.11 Adda Device 
Add a device 


Add a device 


Choose the kind of device you want to add. 


3 Bluetooth 


Mice, keyboards, pens, or audio and other kinds of Bluetooth devices 


Wireless display or dock 


Wireless monitors, TVs, or PCs that use Miracast, or wireless docks 


Everything else 
Xbox controllers with Wireless Adapter, DLNA, and more 


Cancel 





5. After installing a NIC, you must hook the card to the network using the appropriate cable (if 
using wired connections). Attach this patch cable to the connector on the NIC and to a port 
in the wall (or connectivity device), thus connecting your PC to the rest of the network. 


Configuring a Wired NIC 


Now that your NIC is installed, it’s time to configure it with the right IP address and TCP/ 
IP configuration information. There are two ways to do this. The first is to automatically 
obtain IP configuration information from a Dynamic Host Configuration Protocol (DHCP) 
server, if one is available on the network. The other way is to manually enter in the configu- 
ration information. 





©) Real World Scenario 


Easy Configuration 


Imagine that you have a small network of no more than 10 computers and do not have 
a DHCP server. You want to minimize the administrative hassle of configuring TCP/IP, so 
you want your computers to configure themselves automatically. What do you do? 


The answer is to set the NIC up to get its IP information from the DHCP server anyway. 
Microsoft Windows operating systems will automatically configure themselves with an 
Automatic Private IP Addressing (APIPA) address if they are unable to locate a DHCP server. 
With an APIPA address, computers on the local network will be able to communicate with 
one another. The limitation is that the computers will not be able to communicate with any 
remote devices (those not on the local network) and will not be able to get on the Internet. 
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To configure your NIC in Windows 10, open Control Panel and view by small icons or 
large icons. Click Network and Sharing Center to see basic network information, as shown 
in Figure 8.12. From here, there are a few ways you can get to the TCP/IP settings. The first 
is to click the network name link to the right of Connections. That will open a network 
status window. Click the Properties button to see the properties, as shown in Figure 8.13. 
The second way is in the left pane of the Network and Sharing Center, click Change Adapter 
Settings. You’ll see the name of a connection, such as Local Area Connection. Right-click 
that and then click Properties. This will take you to the same screen as shown in Figure 8.13. 


FIGURE 8.12 Network and Sharing Center 
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FIGURE 8.13 Wi-Fi Properties 


@ Wi-Fi Properties x 
Networking Sharing 
Connect using: 

® Linksys AE2500 


This connection uses the following items: 


E> Client for Microsoft Networks a 

TP Fle and Printer Sharing for Microsoft Networks 

IE QoS Packet Scheduler 

a intemet Protocol Version 4 (TCP/IPv4) 

„a. Microsoft Network Adapter Multiplexor Protocol 

„a, Microsoft LLDP Protocol Driver 

_a. Intemet Protocol Version 6 (TCP/IPv6) {v 
> 








HH 

















‘ee 





Install... | Uninstall Properties 
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On that screen, highlight Internet Protocol Version 4 (TCP/IPv4) and click Properties. 
This will take you to a screen similar to the one shown in Figure 8.14. 


FIGURE 8.14 TCP/IP Properties 





Internet Protocol Version 4 (TCP/IPv4) Properties x 


General Alternate Configuration 


You can get IP settings assigned automatically if your network supports 
this capability. Otherwise, you need to ask your network administrator 
for the appropriate IP settings. 


@ Obtain an IP address automatically 
O Use the following IP address: 














@ Obtain DNS server address automatically 
O Use the following DNS server addresses: 




















Validate settings upon exit Advanced.. 


[oc] [cones 








As you can see in Figure 8.14, this computer is configured to obtain its information auto- 
matically from a DHCP server. (If you have a wireless router, as many people do on their 
home networks, it can function as a DHCP server. We’ll talk more about that in a few sec- 
tions.) If you wanted to configure the client manually, you would click Use the Following 
IP Address and enter in the correct information. To supply the client with a DNS server 
address manually, click Use the Following DNS Server Addresses. 


P If you manually configure the IP address, you must also manually config- 
OTE ure the DNS server address. Otherwise, the client will not have access to 
a DNS server and won't be able to use the Internet effectively. Client com- 
puters can broadcast to find a DHCP server, but they cannot broadcast to 
find a DNS server. 


Installing a Wireless NIC 


Installing a wireless NIC is just like installing a normal, wired NIC. The only difference is 
in the configuration of the NIC. You must configure the NIC to connect to your preferred 
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wireless network (by its SSID) and configure any security settings (such as wireless encryp- 
tion keys). 

To configure a wireless card under Windows 10, you must first install the wireless card. 
For a desktop, this can mean powering off the computer, removing the case cover, and 
inserting the card into an open slot (assuming the wireless card expansion card type and 
bus slot type match). Then you can power the computer back up, and the computer should 
recognize that a new card was installed and prompt you to install the driver. Most desktops 
also have USB ports for installation of wireless NICs. The process will be nearly identical 
to the one you followed in Exercise 8.2. 

On a laptop, simply insert the wireless USB NIC into any open PC Card slot or USB port 
with the laptop powered up. Windows PnP will recognize the card and ask you to install 
the driver. (Note that some NIC manufacturers ask you to insert the driver installation 
media and install the drivers before physically installing the NIC. Not doing so could cause 
installation issues. Always check your documentation!) Nearly every laptop processor chip- 
set made today (such as the Intel Core iS) comes with integrated wireless, so no external 
adapter needs to be added. 

Once the NIC is in and the driver is installed, you may have to reboot (but only in very 
unique cases). Then the wireless card should be ready to use. 


P Bear in mind that these are general steps. Always consult the documenta- 
A: tion that comes with the hardware to ensure that there isn't a special step 
unique to that card. 


Configuring a Wireless NIC 


Now that your wireless card is installed in your computer, you can configure the con- 
nection so that you can use it. Windows versions from XP on are great for wireless use 
because utilities for connecting to wireless networks are built in. Windows uses the 
Wireless Zero Configuration Service (also called Wireless Auto Configuration or WLAN 
AutoConfig) to automatically connect to wireless access points using IEEE 802.11 
standards. 

To configure a wireless connection, you can simply bring a Windows (XP or newer) 
laptop or computer within range of a wireless access point, and Windows will detect and 
alert you to the presence of the access point. Alternatively, if you would like control over 
the connection, in Windows 10, you can choose Start > Settings > Network & Internet 
to bring up the Network Status screen, as shown in Figure 8.15. Click Show Available 
Networks, and you will get a screen similar to the one shown in Figure 8.16. 
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FIGURE 8.15 Network Status 
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FIGURE 8.16 Available wireless connections 
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If you have a wireless signal strength indicator in the notification area next 
P to the clock, you can click it to see the same screen shown in Figure 8.16. 
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From this screen, you can view the SSIDs of the available wireless networks, including 
the one to which you are connected (the one that says “Connected” next to it). The icon 
to the left of the network name indicates the relative signal strength of each connection. 
Stronger (and faster) connections will have more bars. 


P indicator (depending on the OS), it is a secured wireless network and you 
will need to enter some sort of password to gain access to it. It can be 
dangerous to join unsecured networks; you have no way of knowing who 
is on them or their intentions. Wireless attacks on unsecured networks are 
becoming more common, so be careful with joining unsecured networks! 


i If the connection says Secured or shows a lock icon next to the signal 


To connect to any network, click it and choose the Connect button, and Windows will try to 
connect. Once you are connected, Windows will display “Connected” next to that connection. 


PP The weaker the signal, the longer the connection will take. Authentication 
A: will also slow down the initial connection time. 


Installing Network Cables 


Network cables are not the most fun things to install. Proper installation of network cables 
generally means running them through ceilings and walls and making a mess of the office. 
Thank goodness for wireless! 


ING there is air ventilation, such as drop ceilings. PVC-coated cables produce 
poisonous gas when burned. Also be sure that you have the proper permis- 
sion to run the cables and that you aren't violating any building codes. 


Ck Be sure to use plenum cable if you are running cables through spaces where 
N 


If you are installing a wired network in an existing office space, you may want to look 
into hiring out the cable installation to a third party. Many companies have the tools to 
properly install a wired network. 

When installing a wired network yourself, always be aware of the maximum cable 
lengths, as outlined in Table 8.7. In addition, utilize cable troughs in ceilings and walls or 
another conduit in walls to keep your cables organized. Figure 8.17 shows a cable trough; 
they come in a variety of lengths and quality. 


FIGURE 8.17 Cable trough 
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Finally, if you must run cables across the floor in a walkway (which isn’t recommended), 
use a floor cable guard to avoid creating a trip hazard and to protect your cables. A floor 
cable guard is shown in Figure 8.18. 


FIGURE 8.18 Floor cable guard 





P across fluorescent lights. These lights emit electromagnetic radiation (EMI) 
that can interfere with network communications. Utilize your cable troughs 
to keep cables in one place and away from lights. Also remember that 
fiber-optic cables are immune to EMI. 


A When running cables through a ceiling, never run the cables directly 


H When installing cables, always be sure to label both ends! That way, you 
P know which cable you're dealing with and where the cable should theoreti- 
cally go. 


Installing and Configuring Connectivity Devices 


In this network installation section, we started with the local computer (the NIC) and then 
moved on to cabling, which, of course, is needed if the network is wired. Continuing our 
trek away from the local computer, we now need to look at devices that help you connect 
to other computers. Broadly speaking, we can break these connectivity devices into two 
categories: those that make connections to the Internet and those that make connections to 
other local computers. In the first category, we have DSL and cable modems; in the second 
category, we have switches, wireless routers, and wireless access points. 


To be fair, devices that connect computers to other local computers may 

JTE also get all the computers onto the Internet. For example, your laptop 
might connect to a wireless router, which lets you talk to a printer on your 
local network as well as access the Internet. 


Installing and Configuring DSL and Cable Modems 


We covered the basic installation of DSL and cable Internet service earlier in the chapter, 
but since we’re talking about network installation, now is a good time to review. 
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To access the outside world, the DSL modem (again, remember it’s not really a modem, 
but that’s the colloquial term) connects to a telephone line. The cable modem connects to 
the outside world through cable television lines. The ISP manages the connection for you. 
Internally, the DSL or cable modem can be connected directly to a computer using a UTP 
cable, or it can connect to a switch, router, or wireless connectivity device so that multiple 
users can share the connection. 

For the most part, there is little to no configuration you can perform on a DSL or cable 
modem. The ISP must initiate the connection to the Internet from their end. Sometimes 
they need to send a technician to your location to enable it, but other times they just ship 
the device and you plug it in. Don’t forget to plug in the power cord! Beyond that, most 
ISPs don’t want you touching any settings on the modem. If something is wrong, you need 
to reach out to their tech support people for assistance. 

Some DSL and cable modems have built-in wireless router capabilities. If so, it’s likely 
that the ISP will want to charge you more per month for that feature. If the modem is 
so enabled, you may be able to configure basic settings through a web-based interface. 
Configuring one of these is very similar to configuring a stand-alone wireless router, which 
we'll cover in detail later in this chapter. 


Installing and Configuring Switches and Hubs 


Wired switches and hubs are fairly easy to install. Plug in the power, and plug in the net- 
work cables for client computers. Hubs don’t typically have configuration options—they 
just pass signals along. Unmanaged switches are pretty similar to hubs in the sense that 
there’s not much to configure. Managed switches will have configuration settings for 
VLANs and other options. For more information on the services that managed switches 
can provide, refer to Chapter 6. 


M When installing switches and hubs, remember to always take maximum 
P cable lengths into consideration. 


Installing Wireless Access Points and Routers 


Instead of using switches and hubs, wireless networks use either a wireless access point 
(WAP) or a wireless router to provide central connectivity. A WAP functions essentially 
like a wireless hub, whereas a wireless router provides more functionality, similar to that of 
a wired router. Based on looks alone, they are pretty much identical, and physically install- 
ing them is similar. The differences come in configuring them because they will have differ- 
ent options. 

We’re going to talk about installing and configuring WAPs and wireless routers inter- 
changeably; just remember that a lot of the features available in a wireless router may not 
be available in a WAP. 
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After unwrapping the device from its packaging (and reading the instructions, of 
course), you must choose a place for it. If it is supplying wireless access to your home net- 
work and the Internet, locate it where you can receive access in the most places. Keep in 
mind that the more walls the signal has to travel through, the lower the signal strength. 

In addition, you may choose to have some computers plug directly into the device using 
a UTP cable. If so, it makes sense to locate the device near the computer or computers you 
will want to physically connect. 


Place the WAP in the center of your home, close to a network connection. 
P Or if you have only one computer, place it close to the broadband Internet 
connection you are using (i.e., the cable modem or DSL line). 


In many offices, WAPs and wireless routers are often placed in the ceiling, with the 
antennae pointed downward through holes in the ceiling tiles. You can purchase metal 
plates designed to replace ceiling tiles to hold these devices. The plates have holes precut in 
them for the antennae to stick through, are designed to securely hold the device and easily 
open for maintenance, and often lock for physical security. You can also purchase Wi-Fi 
ceiling antennas that basically look like a little dome hanging from the ceiling. 


For wireless connectivity devices placed in a ceiling (or other places with 
w no easy access to an electrical outlet), Power over Ethernet (PoE) is a very 
handy technology to supply both power and an Ethernet connection. 

Once you have chosen the location, plug the unit into a wall outlet and connect the two 
antennae that come with the unit (as needed; many newer devices contain built-in anten- 
nae). They will screw onto two bungs on the back of the unit. Once the unit is plugged in, 
you need to connect it to the rest of your network. 

If you are connecting directly to the Internet through a cable modem or DSL or to a 
wired hub or router, you will most likely plug the cable into the Internet socket of the 
device, provided that it has one. If not, you can use any of the other wired ports on the 
back of the device to connect to the rest of your network. Make sure that you get a link 
light on that connection. 

At this point, the device is configured for a home network, with a few basic caveats. 
First, the default SSID (for example, Linksys) will be used, along with the default adminis- 
trative password and the default IP addressing scheme. Also, there will be no encryption on 
the connection. This is known as an open access point. Even if you have nothing to protect 
except for the Internet connection, you shouldn’t just leave encryption turned off. It makes 
you an easy and inviting target for neighbors who want to siphon off your bandwidth or 
even worse. Many wireless manufacturers have made their devices so easy to configure that 
for most networks it is Plug and Play. 
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ING puter, you should never keep the default settings. Anyone could snoop 
your access point from the road in front of or behind your house and pos- 
sibly get on your home network. It’s too easy for identity theft! 


ta If you have personal data on your home network and more than one com- 


From a computer on the home network, insert the device’s setup media (DVD, CD, or 
flash drive) into the computer. It will automatically start and present you with a wizard 
that will walk you through setting the name of the SSID of this new access point as well as 
changing the default setup password, setting any security keys for this connection, and gen- 
erally configuring the unit for your network’s specific configuration. Then you’re done! 


Configuring Wireless Routers and Access Points 


Each wireless manufacturer uses different software, but you can usually configure their 
parameters with the built-in, web-based configuration utility that’s included with the prod- 
uct. While the software is convenient, you still need to know which options to configure 
and how those configurations will affect users on your networks. The items that require 
configuration depend on the choices you make about your wireless network. We will divide 
the configuration section into two parts: basic configuration and security options, which 
apply to both routers and access points, and then additional services which are normally 
router-only,. 


PP In the next section, we will refer to wireless routers, but know that the 
A: basic configuration options are often available on wireless access points 
as well. 


Basic Configuration 


The Wi-Fi Alliance (www.wi-fi.org) is the authoritative expert in the field of wireless 
LANs. It lists five critical steps to setting up a secured wireless router: 


1. Change the router’s SSID. 

Change the administrator username and password. Make sure it’s a strong password. 
Select AES or WPA2. (We’ll discuss these shortly.) 

Choose a high-quality security passphrase. 


7 PF wD 


From the clients, select WPA2 and enter the security passphrase to connect. 


The parameter that needs immediate attention is the SSID. An SSID is a unique name 
given to the wireless network. All hardware that is to participate on the network must be 
configured to use the same SSID. Essentially, the SSID is the network name. When you are 
using Windows to connect to a wireless network, all available wireless networks will be 
listed by their SSID when you click Show Available Networks. 
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When you first install the wireless network, the default SSID is used and no security is 
enabled. In other words, it’s pretty easy to find your network (Linksys), and anyone within 
range of your signal can get on your network with no password required. This is obviously 
a security risk, so you want to change that. 

For the rest of this example, we’ll use a Linksys EA3500 wireless router. First, you need 
to log into your device. The default internal address of this router is 192.168.1.1, so to log 
in, open Internet Explorer (or your preferred Internet browser) and type 192.168.1.1 into 
the address bar. (Some routers use 192.168.0.1 as a default; check your router’s documenta- 
tion if you are unsure about what your router uses.) You’ll get a screen similar to the one 
shown in Figure 8.19. 


FIGURE 8.19 Logging into the wireless router 
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Some wireless router installation programs install an icon on your desktop 
P to use for management. Clicking the icon will take you to the management 
program. 
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You should have already set up the username and password using the installation media 


provided with the device. If not, look in the documentation for the default username and 


password. You'll definitely want to change these as soon as possible. Once you’re logged in, 


the first screen you'll see is similar to the one shown in Figure 8.20. You can see sections 
along the left side that allow you to configure various router settings. On this router, the 


Connectivity section has an Internet Settings tab that identifies how you configure your 
incoming connection from the ISP. In most cases, your cable or DSL provider will just have 
you use DHCP to get an external IP address from its DHCP server, but there are options to 


configure this manually as well. 


FIGURE 8.20 Basic setup screen 
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Next, configure the parameters that are crucial for operation according to the Wi-Fi 
Alliance. On this router, the SSID and passwords are configured on the Basic tab of the 
Connectivity settings, as shown in Figure 8.21. 
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FIGURE 8.21 Basic wireless settings tab 
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PS Figure 8.21 also shows the option to check for firmware updates, and in 
A: this case those updates will be automatic. After you install a router, change 
the SSID and passwords, and set up security, you should update the firm- 


ware to ensure that it’s the most current version. 


sions could present security risks. 


Using older firmware ver- 


You can see the network name (SSID) as well as the password required by clients to join 
the network. (We blocked out the password for pretty obvious reasons, because this router 
screen shows it in plain text.) You can change either of these parameters by clicking the 
Edit link to the right of Network Name and Password. The router’s administrative pass- 
word is also changed from this screen, in the Router Password section. Click Edit and set 
the password as needed. Make sure it’s very different from the password needed to join the 
network! These steps take care of the SSID, admin password, and security phrase. While 
we’re in Connectivity, were going to click the Local Network tab to configure our internal 


network settings, as shown in Figure 8.22. 
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FIGURE 8.22 Internal Network Settings screen 
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Here, you configure your router’s hostname, internal IP address (in this case, 
192.168.1.1), and subnet mask. On this router, DHCP is also configured on this screen. If 
you want the device to act as a DHCP server for internal clients, enable it here, specify the 
starting IP address, and specify the maximum number of DHCP users. Disabling DHCP 
means that clients will have to use a static IP address. 


Most wireless routers (like the one used in this example) have a help sec- 

P tion to describe each setting on the configuration pages. If you're not 
totally sure what a setting does, click the Help link (at the top of the screen 
in this case) to find out what the setting does. If not, there's always the 
manual or online help. 


The last critical setting you need to make is to enable wireless encryption. If you don’t 
do this, all signals sent from the wireless router to client computers will be in plain text and 
anyone can join the network without a security password. It’s a really bad thing to leave 
disabled. Before we look at how to set up encryption on our wireless router, let’s cover the 
details on three encryption options. 
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Wired Equivalent Privacy Wired Equivalent Privacy (WEP) was one of the first security 
standards for wireless devices. WEP encrypts data to provide data security. It uses a static 
key; the client needs to know the right key to gain communication through a WEP-enabled 
device. The keys are commonly 10, 26, or 58 hexadecimal characters long. 


PPS You may see the use of the notation WEP.x, which refers to the key size; 

A: 64-bit and 128-bit are the most widely used, and 256-bit keys are sup- 
ported by some vendors (WEP.64, WEP.128, and WEP.256). WEP.64 uses a 
10-character key. WEP.128 uses 26 characters, and WEP.256 uses 58. 


The protocol has always been under scrutiny for not being as secure as initially intended. 
WEP is vulnerable due to the nature of static keys and weaknesses in the encryption algo- 
rithms. These weaknesses allow the algorithm to potentially be cracked in a very short 
amount of time—no more than two or three minutes. This makes WEP one of the more 
vulnerable protocols available for security. 


Because of security weaknesses and the availability of newer protocols, WEP should not be 
used widely. You will likely see it as the default security setting on many routers, even with 
all its shortcomings. It’s still better than nothing, though, and it does an adequate job of 
keeping casual snoops at bay. 


Wi-Fi Protected Access Wi-Fi Protected Access (WPA) is an improvement on WEP that 
was first available in 1999 but did not see widespread acceptance until around 2003. Once 


it became widely available, the Wi-Fi Alliance recommended that networks no longer use 
WEP in favor of WPA. 


This standard was the first to implement some of the features defined in the IEEE 802.11i 
security specification. Most notably among them was the use of the Temporal Key Integrity 
Protocol (TKIP). Whereas WEP used a static 40- or 128-bit key, TKIP uses a 128-bit 
dynamic per-packet key. It generates a new key for each packet sent. WPA also introduced 
message integrity checking. 


When WPA was introduced to the market, it was intended to be a temporary solution to 
wireless security. The provisions of 802.11i had already been drafted, and a standard that 
employed all the security recommendations was in development. The upgraded standard 
would eventually be known as WPA2. 


Both WPA and WPA2 (discussed next) have two variants: Personal and 

á TE Enterprise. For a small office or home office network with just one 
wireless router or access point, Personal is the choice to make. With 
Personal, the device itself handles the authentication. For larger networks, 
Enterprise is recommended because it consolidates authentication 
administration. Enterprise requires the use of a separate central 
authentication server, such as a Remote Authentication Dial-in User 
Service (RADIUS) server. 
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Wi-Fi Protected Access 2 Even though their names might make you assume that WPA 
and WPA2 are very similar, they are quite different in structure. Wi-Fi Protected Access 
2 (WPA2) is a huge improvement over WEP and WPA. As mentioned earlier, it imple- 
ments all the required elements of the 802.11i security standard. Most notably, it uses 
Counter Mode CBC-MAC Protocol (CCMP), which is a protocol based on the Advanced 
Encryption Standard (AES) security algorithm. CCMP was created to address the short- 
comings of TKIP; consequently, it’s much stronger than TKIP. 


P The terms CCMP and AES tend to be interchangeable in common parlance. 
A: You might also see it written as AES-CCMP. 


Since 2006, wireless devices have been required to support WPA2 to be certified as Wi-Fi 
compliant. Of the wireless security options available today, it provides the strongest encryp- 
tion and data protection. 


On this particular router, it would make sense to configure security via the Security sec- 
tion, but that’s not true. (Who says things need to be logical?) Here, click the Wireless sec- 
tion, as shown in Figure 8.23. 


FIGURE 8.23 Wireless settings, including encryption 
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This router happens to be 802.11n, so it has sections for both a 2.4 GHz and a 5 GHz 
network. If there were only devices of one type, it would make sense to disable the other 
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network. In this case, though, we are talking about security, and you can see that it’s 
set to WPA2 Personal. To change the setting, click Edit next to the network type. The 
other WPA2 choice you generally have is WPA2 Enterprise, which is more secure than 
Personal. For a business network, regardless of the size, Enterprise is the way to go. In 
order to use Enterprise, though, you need a separate security server called a RADIUS 
server. 


P Another tab shown on Figure 8.23 is the MAC Filtering tab. On that tab, you 
A: can configure the router to allow connections only from clients with cer- 
tain MAC addresses. (Recall that MAC addresses are hardware addresses 
built into NICs.) This is a light-duty security measure you can use on your 
network, though an attacker capable of spoofing a MAC address can easily 


defeat it. 
i For your wireless router to use WPA2 Enterprise, remember that you need 
‘GQ to have a RADIUS server on your network. The A+ exam won't test you 


on how to configure RADIUS. For now, just know what it is, which is an 
authentication server. Other exams, such as Network+, will test you on 
how to configure RADIUS. 


With that, the router-side setup recommendations have been taken care of. Now it’s 
just a matter of setting up the clients with the same security method and entering the 
passphrase. Before we move on to router-specific options, there are two more basic setup 
concepts we need to cover: channels and QoS. 


Wireless Channels 


Earlier in the chapter, in the section on 802.11g, we brought up the concept of wire- 

less channels. There are 11 configurable channels in the 2.4 GHz range, which is what 
802.11b/g uses to communicate. If you look back at Figure 8.23, you’ll see that the channel 
is set to Auto. Most of the time, you won’t need to change that. 

However, let’s say you have too many users for one WAP to adequately service (about 
30 or more) or your physical layout is too large and you need multiple access points. Now 
you need to have more than one access point. In a situation like this, here’s how you should 
configure it: 


1. Set up the WAPs so that they have overlapping ranges. 


The minimum overlap is 10 percent, and 20 percent is recommended. This way, if users 
roam from one area to another, they won’t lose their signal. 


Configure the WAPs with the same SSID. 
Configure the WAPs with non-overlapping channels. 


2.4 GHz channels need to be at least five numbers apart to not overlap. So, for example, 
channels 2 and 7 do not overlap, nor do channels 4 and 10. There are 11 configurable 
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channels, so you can have a maximum of three overlapping ranges on the same 

SSID, configured with channels 1, 6, and 11, and not have any interference. Wireless clients 
are configured to auto-detect a channel by default, but they can be forced to use a specific 
channel as well. 

On the example router we were using, you could also configure the 5 GHz network. In 
this case, you can choose from 20 MHz or 40 MHz channel widths, as well as choose the 
channel. Figure 8.24 shows the channels available. Each of the 20 MHz channels shown is 
non-overlapping. 


FIGURE 8.24 5 GHzchannels available to select 
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Quality of Service 


Quality of Service (QoS) is a strategy that allows an administrator to control traffic to 
maintain a certain service level. By using QoS, an administrator can set different priori- 
ties for one or more types of network traffic based on different applications, data flows, or 
users. For example, if the engineering group needs to have a certain amount of guaranteed 
network bandwidth, QoS can make that happen. This is not typically implemented for 
small or home office networks but rather for larger enterprise networks. 

QoS focuses on dealing with five different types of problems that can affect data ona 
network: 


= Delay, usually caused by congested routes that prevent critical data from arriving on 
time 


= Dropped packets, which often causes delay 
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= Error, or corrupted data 
= Jitter, or variation in packet delay in a data stream 


a  Out-of-order delivery, which can cause performance issues in time-sensitive applica- 
tions, such as VoIP 


Before each session, a QoS level is established as part of a service-level agreement (SLA). 
This is simply a priority setting. Administrators can manually set priority levels from 0 to 
5; the higher the number, the higher the priority. Table 8.9 shows the eight levels of QoS. 


TABLE 8.9 Qos levels 





Level Description 

0 Best effort 

1 Background 

2 Standard 

3 Excellent load (business-critical applications) 

4 Controlled load (streaming media) 

5 Interactive voice and video (less than 100ms latency) 

6 Layer 3 network control reserved traffic (less than 10ms latency) 
7 Layer 2 network control reserved traffic (lowest latency) 


As more and more real-time business-critical applications hit the market, QoS will 
become a bigger topic. 








E Real World Scenario 


Sharing an Internet Connection 


Wireless routers have many advantages over wireless access points. One of the biggest 
advantages is the ability to share an Internet connection. By sharing a connection, you 
pay for only one connection, but you can connect as many computers as you would like 
(or as many as are reasonable) to your wireless router. Here is how to do that. 


First, ensure that your DSL modem or cable modem is connected properly. Then, connect 
your wireless router to your cable modem or DSL modem using a UTP cable (CAT-5e or 
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better). In most cases, the wireless router will have a wired Internet port on the back. 
Connect the cable here and plug it into your broadband modem. Finally, you can con- 
nect computers to your wireless router. 


Some ISPs, in an attempt to prohibit this sort of behavior, will restrict access through the 
modem to one MAC address. This isn’t a problem. You can do one of two things. The first 
option is, when you first make your connection to the ISP, just make sure your computer 
is already connected through your router. The ISP will see the MAC address of the router 
and assume that is your computer. The second option is that most wireless routers will 
allow you to clone your computer’s MAC address (see Figure 8.25). Your router will sim- 
ply tell the ISP that it has the same MAC address as your computer, which was previously 
connected directly to the cable or DSL modem. ISPs may not like it, but sharing a wire- 
less Internet connection is very economical option for a small office or home network. 


FIGURE 8.25 Option to clone a MAC address 
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Additional Wireless Router Services 


Wireless routers offer many more services than access points offer. Most of those services 
fall under the umbrella of configuring your router as a firewall. Firewalls are an important 
networking concept to understand, so we’ll first give you a primer on what firewalls are 
and what they do, and then we’ll look at specific configuration options. 


468 Chapter 8 = Installing Wireless and SOHO Networks 


Understanding Firewall Basics 


Before we get into configuring your wireless router as a firewall, let’s be sure you know 
what firewalls can do for you. A firewall is a hardware or software solution that serves as 
your network’s security guard. For networks that are connected to the Internet, firewalls 
are probably the most important device on the network. Firewalls can protect you in two 
ways. They protect your network resources from hackers lurking in the dark corners of the 
Internet, and they can simultaneously prevent computers on your network from accessing 
undesirable content on the Internet. At a basic level, firewalls filter packets based on rules 
defined by the network administrator. 

Firewalls can be stand-alone “black boxes,” software installed on a server or router, 
or some combination of hardware and software. Most firewalls have at least two network 
connections: one to the Internet, or public side, and one to the internal network, or private 
side. Some firewalls have a third network port for a second semi-internal network. This 
port is used to connect servers that can be considered both public and private, such as web 
and email servers. This intermediary network is known as a demilitarized zone (DMZ), an 
example of which is shown in Figure 8.26. Personal software-based firewalls will run on 
computers with only one NIC. 


FIGURE 8.26 A network with a demilitarized zone (DMZ) 
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Types of Firewalls 


We’ve already stated that firewalls can be software- or hardware-based or a combination 
of both. Keeping that in mind, there are two general categories of firewalls: network-based 
and host-based. 
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Network-Based Firewalls A network-based firewall is what companies use to protect their 
private network from public networks. The defining characteristic of this type of firewall is 
that it’s designed to protect an entire network of computers instead of just one system. It’s 
generally a stand-alone hardware device with specialized software installed on it to protect 
your network. 


Host-Based Firewalls In contrast to network-based firewalls, a host-based firewall is 
implemented on a single machine, so it protects only that one machine. This type of 
firewall is usually a software implementation because you don’t need any additional 
hardware in your personal computer to run it. All current Windows client operating 
systems come with Windows Defender Firewall (or just Windows Firewall), which is a 
great example of a host-based solution. Norton Security and many other security prod- 
ucts come with software firewalls too. Host-based firewalls are generally not as secure 
as network firewalls, but for small businesses or home use, they’re an adequate, cheap 
solution. 


How Firewalls Work 


Firewalls are configured to allow only packets that pass specific security restrictions to get 
through them. They can also permit, deny, encrypt, decrypt, and proxy all traffic that flows 
through them, most commonly between the public and private parts of a network. The 
network administrator decides on and sets up the rules a firewall follows when deciding to 
forward data packets or reject them. 

The default configuration of a firewall is generally default deny, which means that all 
traffic is blocked unless specifically authorized by the administrator. While this is very 
secure, it’s also time consuming to configure the device to allow legitimate traffic to flow 
through it. The other option is default allow, which means all traffic is allowed through 
unless the administrator denies it. If you have a default allow firewall and don’t configure 
it, you might as well not have a firewall at all. 


You will also encounter the terms whitelist and blacklist in relation to 

Ps JTE network and firewall security. A whitelist allows access to nobody (so 
its default is deny) except those users or computers on the whitelist. A 
blacklist allows access to everyone (default allow) except those on the 
blacklist. 


The basic method of configuring firewalls is to use an access control list (ACL). The 
ACL is the set of rules that determines which traffic gets through the firewall and which 
traffic is blocked. ACLs are typically configured to block traffic by IP address, port num- 
ber, domain name, or some combination of all three. 

Packets that meet the criteria in the ACL are passed through the firewall to their destina- 
tion. For example, let’s say you have a computer on your internal network that is set up as 
a web server. To allow Internet clients to access the system, you need to allow data on port 
80 (HTTP) to get to that computer. 
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Another concept you need to understand is port triggering. It allows traffic to enter the 
network on a specific port after a computer makes an outbound request on that specific 


port. For example, if a computer on your internal network makes an outbound Telnet 


request (port 23), subsequent inbound traffic destined for the originating computer on port 


23 would be allowed through. 


Configuring Your Wireless Firewall 


Nearly every wireless router sold today provides you with some level of firewall protection. 
On the router used in this example, the firewall options are on two separate tabs. Enabling 
the firewall and setting a few basic options is done from the Security section, as shown in 

Figure 8.27. More advanced options, such as configuring port forwarding and port trigger- 
ing, are on the DMZ and Apps and Gaming tabs. 


FIGURE 8.27 Enabling the firewall 
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addresses on your internal network to a public IP address on the Internet. If you are using 
your wireless router to allow one or more clients to access the Internet but you have only 
one external public IP address, your router is using NAT. 
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Most routers have NAT enabled by default, and there might not be any specific configu- 
ration options for it. That’s true in the case of the EA3500 router we’ve been using as an 
example. You can enable or disable it on the Advanced Routing tab in Connectivity, but 
otherwise the only options you can configure are the internal IP addresses that the router 
hands out to clients. 


P To be technically correct, NAT is specifically a one-to-one translation of a 
A: private IP address to a public IP address. If you have multiple client com- 
puters with private addresses accessing the Internet using one public 
address (called many-to-one), that is a specific form of NAT known as over- 
loading, Port Address Translation (PAT), or port forwarding. The A+ exam 
does not test you on the differences between NAT and PAT, but other tests 
do, such as the Network+ exam. 


Another type of NAT is called Dynamic Network Address Translation (DNAT), which 
translates a group of private addresses to a pool of routable addresses. This is used to make 
a resource that’s on a private network available for consumption on public networks by 
appearing to give it a publicly available address. For example, if a web server were behind a 
NAT-enabled router and did not have its own public IP address, it would be inaccessible to 
the Internet. DNAT can make it accessible. 


Universal Plug and Play 


Universal Plug and Play (UPnP) is a standard designed to simplify the process of connect- 
ing devices to a network and enable those devices to automatically announce their presence 
to other devices on the network. If you remember when Plug and Play was new to comput- 
ers, it was revolutionary. You simply plugged in a peripheral (such as a USB network card 
or mouse) and it was detected automatically and it worked. UPnP is the same idea, but for 
networking. From a standards standpoint, there's not a lot to configure. The client needs to 
be a DHCP client and the service uses UDP port 1900. 

The concept is great. It lets devices connect to the network and discover each other 
automatically with the Simple Service Discovery Protocol. It can be used for any networked 
device you can think of, from routers and printers to smartphones and security cameras. 

The problem is, UPnP has no authentication mechanism. Any device or user is trusted 
and can join the network. That is obviously a problem. The security consulting firm Rapid7 
did a six-month research study in early 2013 and found that over 6,900 network-aware 
products, made by 1,500 different companies, responded to public UPnP requests. In total, 
they found nearly 81 million individual devices responded to requests. The United States 
Department of Homeland Security and many others immediately began requesting people 
to disable UPnP. 

Since that time, the UPnP forum (ww. openconnectivity.org) has released state- 
ments saying that the security holes have been patched and that the system is more secure 
than ever. Even though the issues were discovered several years ago, as of the time of this 
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writing, skeptics still abound and UPnP does not appear to be a safe option. Regardless of 
if and when it gets fixed, the reputation of UPnP is not a good one. 

The biggest risk is for open UPnP connections to be exploited by unknown systems on 
the Internet. Therefore, you should configure your router to not allow UPnP connections 
from its external connection. Many ISPs have also taken steps to help prevent issues. In 
summary, the best bet is to leave it disabled. 








G Real World Scenario 


Knowing How to Install and Configure a SOHO Router 


If you are given the scenario in real life or on the A+ exam, you should know how to install 
and configure a SOHO router. In today’s environment, most installations for small offices 
and home networks will involve wireless routers. Throughout this chapter, you have 
learned everything you need to know to purchase the best device for different situations 
and how to set it up once you get it out of the box. Let’s review here, though. 


The first decision to make is which router technology to purchase. With wireless, it’s gen- 
erally best to go with the best technology available because speeds have been increasing 
rapidly over the last several years. It seems like 802.11ac provides great speed, but you 
might not be able to use all of its capacity due to channel bonding limitations. Therefore, 
802.11n might be just fine, and possibly cheaper. 


Next, how will the office get on the Internet? The two most obvious choices are DSL and 
cable Internet. Find the best solution (which often means the least expensive), and set 

it up through the service provider. In fact, you may want to do this first, because it will 
probably take the provider at least a few days to get it set up on their end and you want it 
to be ready when you install the network. 


Then, as needed, plan the internal network layout. Is it all wireless, or will there be wired 
connections? Do you need to run cables? Will there be a server closet or other central 
connectivity point? Once you're certain of your configuration, you can begin installation. 


When installing the router, always remember these key steps: 


1. Change the default SSID. 

2. Change the administrator username and password to something highly secure. 
3. Configure the best security possible, such as WPA2 (AES). 

4. Seta strong passphrase for clients to join the network. 


After completing these steps, you can configure the clients to join the network by setting 
their security appropriately, finding the SSID, and entering the passphrase. By following 
these guidelines, you will be able to properly install a network, regardless of the scenario 
presented. 
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Configuring End-User Devices 


The final step in installing and configuring network is to ensure that end users can con- 
nect and have access to the resources they need. Listing all the steps needed to connect 
every possible end-user device would be a long and tedious exercise, and impractical to 
memorize. Instead, we’ll provide guidance and principles to help in nearly every situation. 
Specifically, we will look at network clients (including laptops, tablets, and smartphones) 
and Internet of Things devices. 


Configuring Network Clients 


The majority of network clients will be desktop computers, laptops, tablets, or smart- 
phones. Other devices, such as printers, can be considered clients as well, but here we will 
focus on devices that end users perform their work on. 

Regardless of the client operating system, here are the steps needed to configure an end- 
user device: 


1. Find the network SSID. 
2. Enter the network passphrase (or password). 
3. Try to connect to a resource or the Internet. 


The most common issue is entering the passphrase incorrectly. Another issue that you 
may encounter is if the client device is set to use a different encryption method than the 
connectivity device. Today, most clients auto-detect the correct encryption method, but it’s 
smart to verify the setting if the connection can’t be created. 


Configuring Internet of Things Devices 


The Internet of Things (IoT) has been growing rapidly for the last several years. Home 
automation systems and IoT-based security systems are becoming increasingly popular and 
will likely continue to become more pervasive. There are thousands of devices in the mar- 
ket, from several manufacturers, and each one will be different to configure. The best way 
to approach their configuration, then, is to again address them in terms of principles and 
look at some specifics for different device types. 

Recall from earlier in the chapter that IoT networks will often have a central controller 
or coordinating device. The administrator will have an app, usually on a smartphone, that 
provides them with a Wi-Fi or Bluetooth connection to the controller. Settings the adminis- 
trator enters are then communicated to the end devices via the controller. Many IoT devices 
can be configured manually as well, but what’s the fun in that? One of the key features of 
IoT is to control devices and see their status without needing to be physically present at 
each one. 


Thermostats 


A thermostat is a device connected to a heating or cooling system that allows users to con- 
trol the temperature of a room, home, or building. Programmable thermostats that allow 
you to set the temperature based on time and day have been around for more than 20 years. 
The next step in the evolution is a smart thermostat (shown in Figure 8.28) that's remotely 
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accessible and can do some basic learning based on the weather and your preferences. 
Smart thermostats usually have a touch screen, often have their own app, and can be con- 
trolled by a central coordinator. 


FIGURE 8.28 _ Nestsmart thermostat 





By Raysonho @ Open Grid Scheduler/Grid Engine. CCO, https: //commons.wikimedia.org/w/index 
- php? curid=49900570. 


Smart thermostats have the options you would expect, such as setting the temperature, 
detecting humidity levels, and configuring schedules to save energy when no one is home. 
The advanced features are what make these devices especially interesting. Examples 
include: 


= Remote sensors, which can be placed on air vents for more accurate reading and 
control 


= The capability to create energy reports 
= Voice activation 
= Integration with outdoor weather conditions to adjust internal conditions appropriately 


=  Geofencing, which allows the thermostat to adjust the temperature based on who it 
detects in the home and their preferences 


Different models offer different features, so you’re sure to find one that meets your needs 
as well as your budget. 
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Light Switches 


Smart light switches help control lights in the house. Many are designed to replace existing 
light switches in the wall, while others simply mount to the wall. An example of a Lutron 
switch is shown in Figure 8.29. In addition to having manual controls, many will have their 
own app or can be controlled through a coordinator. 


FIGURE 8.29 Lutron smart light switch 
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Features of a smart light switch are fairly straightforward. They can turn lights on or off 
and dim the lights. They can perform tasks based on a schedule, and some have geofencing 
or motion sensors to detect when someone enters a room. Some brands will work only with 
certain types of lights, so make sure to check compatibility. 


P They're not listed in the A+ exam objectives, but closely related to 
‘Qi smart light switches are smart outlets. These replace the existing 
electrical plugs in a home and can be remotely controlled and 
configured as well. This enables users to control more electrical 
devices than just lights. 


Security Cameras 


Home security systems have been around for a long time, and security cameras are an inte- 
gral part of them. With IoT-based cameras, security systems are more customizable and 
smarter than ever. 
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The security camera can be stand-alone but most often is part of a series of cameras con- 
nected to a home security system. That central system will often have a touch screen as well 
as an app. The system can be activated in several ways, such as by the ringing of an inte- 
grated doorbell or by motion sensors. Most systems will provide for the recording of video 
in the event that they’re triggered by motion. Video footage may be stored on local storage, 
such as an SD card, or on the cloud. Configuration options often include when to activate 
(for example, when motion is detected), how to notify the user (such as a text or email), and 
how long to record and store footage. 


Important features to consider when buying a smart security camera 

‘i include its movement capability, field of view, resolution, night vision, 
waterproofing, audio capabilities (microphone and/or speakers), and 
motion detection. Cost may also be a factor. 


Door Locks 


Smart door locks are a feature often integrated into home security systems. They will typi- 
cally be accompanied by a camera and linked to a doorbell. Many will also have a number 
pad so that you can enter a code to unlock the door instead of needing a key. Figure 8.30 
shows a Schlage smart door lock that supports Z-Wave technology. 


FIGURE 8.30 _ Schlage smart door lock 
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In addition to offering security, smart door locks can also provide convenience. For 
example, perhaps you are expecting a delivery. Someone rings the doorbell. With a smart 
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security system that includes a doorbell and door locks, you can instantly see who it is on 
your smartphone and talk to them. If you feel comfortable, you can unlock the door and 
tell them to place the package inside. Once they are done, you can lock the door again. Or, 
you can tell them to set the package down and you'll come get it in a few minutes, regard- 
less of if you’re on the other side of the house or the other side of the country. 


Voice-Enabled Smart Speakers/Digital Assistants 


Smartphones ushered in the widespread use of voice-enabled digital assistants. It started 
with Siri on the iPhone, and Google Now (“Okay, Google”) soon followed for the Android 
OS. Microsoft even got into the act with Cortana, which was used with its now defunct 
Windows Phone OS and is also integrated into Windows 10 and Windows 10 Mobile. 
Amazon wanted in on the act too, but they don't have a smartphone OS. So instead, they 
created a voice-enabled smart speaker called the Echo with a virtual assistant known sim- 
ply as Alexa. Google, not to be outdone in the digital assistant market, created Google 
Home, which uses Google Assistant, which evolved from Google Now. The market for 
these devices is very competitive. 


P Siri is proprietary to Apple devices, but smart speakers made by other 
A: companies will support Alexa or Google Assistant, or both. 


The first smart speakers on the market were Wi-Fi-enabled speakers that would listen 
for you to activate them. Once you said their name, they would listen to your question and 
use their Internet connection to perform a search and deliver an answer. They were incred- 
ibly handy for asking the weather for the day, to play a song, or to answer an obscure trivia 
question at a party. Newer smart speakers may have integrated video screens as well, up to 
about 8” or 10” in size. This makes them larger and more conspicuous but lets users view 
their integrated security cameras, see music videos and movies, and more. Some devices, 
such as the Amazon Echo Plus, can function as a Zigbee coordinator. 

While the features of a smart speaker/digital assistant are appealing to many, there are 
some potential concerns and risks as well. For example, unless you turn it off, the device is 
always listening. This is unnerving to some people, and yet others have suggested it could 
be used to eavesdrop on its users. Device manufacturers have gone to lengths to protect 
users’ privacy, but know that this could be an issue. 

A famous story of misuse comes from late night television. During a show in 2017, 
comedian Jimmy Kimmel told Alexa to order $500 worth of foam swim “pool noodles.” 
Urban legend has it that multiple people were affected by this and sent the product. (To be 
fair, there are conflicting reports of if it actually worked or not. If it did, Amazon would 
have accepted the return and reversed the charge.) Of course, this problem could be avoided 
by turning off automatic voice ordering from Amazon, which is a feature of its digital assis- 
tants. Finally, some flaky smart speaker units have been known to speak when not spoken 
to or even to start laughing for no apparent reason. While this is definitely creepy, it’s not 
necessarily a security threat. 
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Summary 


In this chapter, you learned about wireless networking and configuring a small office, home 
office (SOHO) network. We started with wireless networking. We introduced the key wire- 
less networking standards 802.11a, 802.11b, 802.11g, 802.11n, and 802.11ac and talked 
about their characteristics, such as speed, distances, frequencies, and modulation. Then we 
moved on to Bluetooth networking, cellular networking, including 3G, 4G, LTE, and 5G, 
home automation standards Zigbee and Z-Wave, and, finally, RFID and NFC. 

Next, you learned the fundamentals of installing a small network. We started by look- 
ing at the myriad possibilities for Internet connections, from the archaic dial-up to broad- 
band options, such as DSL, cable modems, ISDN, fiber-optic, satellite, and cellular WAN. 
Then we talked about choosing internal network connections in both wired and wireless 
environments. 

From there, we dove into planning and physical network installation. The first critical 
step is planning. Don’t be the one who forgets that! After covering elements of good plan- 
ning, we looked at how to install network adapters, cabling, and connectivity devices. 

Next, we looked at how to configure a router. The Wi-Fi Alliance has some great practi- 
cal steps on how to configure a secure wireless network, such as changing the SSID, setting 
passwords, and enabling security, such as WEP, WPA, and WPA2. We also looked at other 
basic configuration options, such as DHCP, communication channels, and QoS. Then we 
looked at your wireless router as a firewall, including NAT and UPnP. 

Finally, we finished the chapter by discussing the configuration of end-user devices. For 
the most part, it’s a matter of ensuring that they have the right SSID, security method, and 
passcode. You will also need to be familiar with basic configuration options for IoT devices 
such as thermostats, light switches, security cameras, door locks, and voice-enabled smart 
speakers/digital assistants. 


Exam Essentials 


Know the different 802.11 standards. Standards you should be familiar with are 802.11a, 
802.11b, 802.11g, 802.11n, and 802.11ac. 802.11a transmits up to 54 Mbps in the 5 GHz 
range. 802.11b transmits up to 11 Mbps in the 2.4 GHz range. 802.11g is backward com- 
patible with 802.11b and transmits 54 Mbps in the 2.4 GHz range. 802.11n is backward 
compatible with all of the older versions and can achieve throughput of 600 Mbps commu- 
nicating in both the 2.4 GHz and 5 GHz ranges. The newest standard is 802.11ac, which 
offers gigabit speeds in the 5 GHz range. 


Understand the three encryption protocols used for wireless networking. Listed in order 
from least to most secure, the common wireless security protocols include WEP, WPA, and 
WPA2. WPA uses TKIP, and WPA2 uses AES. 
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Know the various cellular networking standards. Understand the differences between 3G, 
4G, and 5G, and also how LTE is part of both 4G and 5G. 


Understand basic IoI device configuration. You should be familiar with basic options 
for thermostats, light switches, security cameras, door locks, and voice-enabled smart 
speakers/digital assistants. 


Understand settings configured on wireless routers. Be familiar with what a DMZ is, 
port forwarding, NAT, UPnP, security settings via whitelists and blacklists, MAC filtering, 
QoS, and channels. 


Know two common IoT or home automation standards. Two standards that are specific 
to IoT are Zigbee and Z-Wave. Bluetooth also supports IoT devices, as does 5G cellular. 


Understand the difference between RFID and NFC. Both use radio signals. RFID is used 
to track the presence or location of items. NFC uses high-frequency RFID signals and can 
be used for touch-less payment systems. 


Know the different types of available broadband connections. Broadband connections 
include DSL, cable, satellite, ISDN, cellular, and fiber optic. 


Know the three non-overlapping 2.4 GHz wireless channels. If you need three 
non-overlapping channels, you must use channels 1, 6, and 11. 


480 Chapter 8 = Installing Wireless and SOHO Networks 


Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. Which of the following wireless IEEE standards operate on the 2.4 GHz radio frequency 
and are directly compatible with each other? (Choose two.) 


A. 802.11a 
B. 802.11b 
C. 802.11ac 
D. 802.11g 


2. What is the primary function of the SSID? 
A. To secure communication between a web server and a browser 
B. To secure communication between a server and a remote host 
C. To serve as a parameter used to identify a network and configure a wireless connection 
D. ‘To serve as a type of password used to secure a wireless connection 
3. Which of the following are features that allow 802.11ac to achieve higher data throughput? 
(Choose two.) 
A. MIMO 
B. Beamforming 
C. Channel bonding 


D. Code division multiplexing 


4. What is the most secure wireless encryption standard for 802.11 networks? 
A. WEP 


B. WPA 
C. WPA2 
D. SAFER+ 


5. What level of QoS is designated for interactive voice and video? 


A. 1 
B. 4 
C. 5 
D. 6 


6. You have just installed a wireless router on your home network. Which of the following 
should you do to make it highly secure? (Choose all that apply.) 


A. Change the default administrator name and password. 
B. Change the SSID. 

C. Enable WEP. 
D 


Configure it to channel 11. 


10. 


11. 


12. 
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You are setting up a small office network for a client. Which Internet service would you 
recommend to provide the best speed? 


A. DSL 

B. Dial-up 

C. Satellite 
D. BRIISDN 
E. PRIISDN 


Which service allows users with private IP addresses to access the Internet using a public IP 
address? 


A. DHCP 
B. DNS 
Cc. DMZ 
D. NAT 


You are installing a single 802.11g wireless network. The office space is large enough that 
you need three WAPs. What channels should you configure the WAPs on to avoid commu- 
nication issues? 


A. 2,5,and7 
B. 1,8, and 14 
C. 1,6, and 11 
D. 3,6,and9 


You are setting up a wireless network. Which wireless standards would give the users over 
40 Mbps throughput? (Choose all that apply.) 


A. 802.11ac 
B. 802.11b 
cC. 802.11g 
D. 802.11n 


You have been asked to configure a network for a small office. The wireless router is 
installed, and now you need to connect the client computers. What do you enter on the cli- 
ent computers to connect to the router? 


A. The administrator password 
B. The security passphrase 

C. The client’s MAC address 
D. The default router password 


Which of the following technologies can operate in the 125 kHz to 134 kHz range? 
A. Bluetooth 

B. RFID 
C. NFC 
D. LTE 
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13. 


14. 


15. 


16. 


17. 


18. 
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Which of the following are advantages to using dial-up Internet service? (Choose two.) 
A. High speed 

B. Broad availability 

C. Low cost 

D. High security 


Which of the following security standards was the first to introduce a dynamic 128-bit per- 
packet security key? 


A. WEP 
B. TKIP 
C. AES 

D. CCMP 


You are running an 802.11g wireless router in mixed mode. You have three 802.11g wire- 
less NICs using the router. A new user connects using an 802.11b wireless NIC. What will 
happen? 


A. The user with 802.11b will access the network at 11 Mbps, while the users with 
802.11g will access the network at 54 Mbps. 


B. The user with 802.11b will not be able to communicate on the network. 


C. The user with 802.11b will access the network at 11 Mbps. The users with 802.11g 
will access the network at 54 Mbps, unless they are communicating with the 802.11b 
device, which will be at 11 Mbps. 


D. All users will access the network at 11 Mbps. 

When enabled, which feature of a wireless router allows only specified computers to access 
the network? 

A. Port forwarding 

B. WPS 

C. SSID 

D. MAC filtering 


A firewall operates by using a set of rules known as what? 


A. SLA 

B. ACL 

C. Whitelist 
D. DMZ 


You have set up a wireless router on your network and configured it to use AES. What con- 
figuration option do you need to choose on the client computers? 


A. WEP 
B. WPA 


19. Besides 802.11 standards, which wireless communication methods work in the 2.4 GHz 
range? (Choose all that apply.) 


20. 


Cc. 
D. 


mmo 0O 8 >} 


WPA2 
TKIP 


Bluetooth 
Z-Wave 
Satellite 

5G mmWave 
Zigbee 

NFC 
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Which of the following broadband technologies provides two dedicated, digital data chan- 


nels that can be combined for greater throughput? 
A. 


moo so 


DSL 
Cable 
Satellite 
BRI ISDN 
PRI ISDN 
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Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exams require you to perform a specific task, and you will be graded on whether or not 
you were able to complete the task. The following requires you to think creatively in order 
to measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answers compare to the authors’, refer 
to Appendix B. 

You just purchased a new PCIe network card for a Windows 10 desktop computer. How 
would you install it? 


CompTIA® A+® Complete Study Guide, Fourth Edition 
By Quentin Docter and Jon Buhagiar 
Copyright © 2019 by John Wiley & Sons, Inc. 
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THE FOLLOWING COMPTIA A+ EXAM 
220-1001 OBJECTIVES ARE COVERED IN 
THIS CHAPTER: 


y 2.5 Summarize the properties and purposes of services 
provided by networked hosts. 


= Server roles 
= Web server 
a File server 
= Print server 
= DHCP server 
a DNS server 
= Proxy server 
= Mail server 
a Authentication server 
= syslog 
= Internet appliance 
=» UTM 
= IDS 
=a IPS 
a End-point management server 


a Legacy / embedded systems 








y 41 


Compare and contrast cloud computing concepts. 
Common cloud models 

= laaS 

a SaaS 

a PaaS 

= Public vs. private vs. hybrid vs. community 

Shared resources 

= Internal vs. external 

Rapid Elasticity 

On-demand 

Resource pooling 

Measured service 

Metered 

Off-site email applications 

Cloud file storage services 

a Synchronization apps 

Virtual application streaming/cloud-based applications 
= Applications for cell phones/tablets 

= Applications for laptops/desktops 

Virtual desktop 


a Virtual NIC 


v 4.2 Given a scenario, set up and configure client-side 
virtualization. 


Purpose of virtual machines 
Resource requirements 
Emulator requirements 
Security requirements 
Network requirements 


Hypervisor 


Networks are often complicated structures. When users get on 
a network, they have expectations that certain services will be 
delivered, and most of the time they are unaware of the under- 
lying infrastructure. As long as what they want gets delivered, they are content. In client- 
server networks, which you learned about in Chapter 6, “Networking Fundamentals,” 
there are one or more servers that play unique roles in fulfilling client requests. 

The traditional delivery method for services has been that the servers are on the same 
network as the clients. They might not be on the same LAN, but they are certainly admin- 
istered by one company or one set of administrators. If clients on the network need a new 
feature, the network architects and administrators add the necessary server. This is still the 
most common setup today, but there’s been a sharp growth in cloud computing and virtu- 
alization in the last several years. In essence, cloud computing lets networks break out of 
that model and have services provided by a server that the company doesn’t own, and so it’s 
not under the company’s direct control. Virtualization is an important technology in cloud 
computing because it removes the barrier of needing one-to-one relationships between the 
physical computer and the operating system. 

In this chapter, we will talk about some key network services you need to be familiar 
with as a technician. Servers provide some services, and stand-alone security devices or 
Internet appliances provide others. After that, we will dive into the world of cloud comput- 
ing and virtualization, as it’s a hot topic that has become important in recent years. 





Understanding Network Services 


As you learned in Chapter 6, networks are made up of multiple types of devices operating 
together. There are different types of networks, such as peer-to-peer and client-server, and 
they are categorized based on the types of devices they support. Very simple, small net- 
works can be peer-to-peer, where there are no dedicated servers. However, most networks 
that you encounter in the business world will have at least one server, and enterprise net- 
works can easily have hundreds or even thousands of servers. 

New computer technicians won’t be expected to manage large server farms by them- 
selves, but they should be aware of the types of servers and other devices that will be on 
the network and their basic functions. Experienced technicians may be in charge of one or 
more servers, and they will need to be intimately familiar with their inner workings. As you 
gain more experience, you will find that there are advanced certifications in the market to 
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prove your knowledge of servers and show off your skills to potential employers. For the 
A+ exam, you will need to know various server roles, the features of a few Internet security 
appliances, and the impact of legacy and embedded systems. 


Server Roles 


Servers come in many shapes and sizes, and they can perform many different roles on a 
network. Servers are generally named for the type of service they provide, such as a web 
server or a print server. They help improve network security and ease administration by 
centralizing control of resources and security; without servers, every user would need to 
manage their own security and resource sharing. Not everyone has the technical ability to 
do that, and even if they did, those types of responsibilities might not be part of what they 
are being asked to deliver at work. Servers can also provide features such as load balancing 
and increased reliability. 


Most server operating systems, such as the Windows Server series, come 

i with built-in software that allows them to play one or more roles. The 
administrator simply needs to enable the service (such as DHCP or DNS, 
which are discussed later) and configure it properly. 


Some servers are dedicated to a specific task, such as hosting websites, and they are 
called dedicated servers. Nondedicated servers may perform multiple tasks, such as hosting 
a website and serving as the administrator’s daily workstation. Situations like this are often 
not ideal because the system needs more resources to support everything it needs to do. 
Imagine that you are the user of that computer and there is heavy website traffic. Your sys- 
tem could slow down to the point where it’s difficult to get anything done. Servers can also 
perform multiple server-specific roles at the same time, such as hosting websites and provid- 
ing file and print services. As you read through the descriptions of server roles, you will see 
that it makes more sense to combine some services than it does to combine others. 

One important consideration network architects need to make when thinking about 
designing a network is where to place the server or servers. In Chapter 8, “Installing 
Wireless and SOHO Networks,” we introduced the concept of a demilitarized zone 
(DMZ), which is a network separated from the internal network by a firewall but also pro- 
tected from the Internet by a firewall. Figure 9.1 shows two examples of DMZs. 


~<a The network on the left in Figure 9.1 shows a DMZ managed by what is 
A. TE called a three-pronged firewall—so named because it has three network 
interfaces. You can see that the firewall has an Internet interface, an inter- 
nal interface, and a DMZ interface. Another common configuration is a 
two-pronged firewall (shown on the right of Figure 9.1), with the DMZ in the 
middle of the two. In that setup, if an attacker wants to get to your internal 
network, they have to go through two separate firewalls. Hopefully, you 
have your firewalls set up to make that task difficult for potential hackers! 
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FIGURE 9.1  Demilitarized zones 
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In Figure 9.1, you see that the web and mail servers are in the DMZ and not on the inter- 
nal network. This configuration can make it easier to manage the network but still provide 
great security. As a rule of thumb, any server that needs to be accessed by the outside world 
should be in the DMZ, and any server that does not need to be accessed from the Internet 
should be on the internal network, which is more secure. By the way, servers can play the 
role of firewalls, too. It’s not, however, on the list of objectives as a server role, and in prac- 
tice it’s best to separate other server roles from firewalls. In other words, if you intend to use 
a server as a firewall, then don’t use it for any other types of services. Having services on 
the firewall itself just makes it easier for hackers to get to. There’s no sense in making things 
easier for them. Now it’s time to talk about specific server roles on a network. 


Web Server 


You’ve been on the Internet, right? That’s probably a silly question to ask, because it seems 
like everyone is constantly connected to the Internet. Web-enabled smartphones and other 
mobile devices have made the connection seemingly persistent. 

Whenever you visit a web page, you are making a connection from your device (the 
client) to a web server. To be more specific, a connection is requested by your Internet 
software (generally, a web browser) using the Hypertext Transfer Protocol (HTTP) of the 
TCP/IP protocol suite. Your client needs to know the IP address of the web server, and it 
will make the request on port 80. 
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Secure connections are made using Hypertext Transfer Protocol Secure 
ITE (HTTPS) and port 443. 


The web server itself is configured with web hosting software, which listens for inbound 
requests on port 80 and/or port 443. Two of the most common web server platforms are the 
open-source Apache and Microsoft’s Internet Information Services (IIS), although there are a 
few dozen different packages available for use. Web servers provide content on request, which 
can include text, images, and videos, and they can also do things like run scripts to open 
additional functions, such as processing credit card transactions and querying databases. 


P Web servers often function as download servers, too, meaning that they 
A: also use FTP. FTP works on TCP ports 20 and 21. 


Individuals or independent companies can manage web servers, but more often than not 
an Internet service provider or web hosting company that manages hundreds or thousands 
of websites manages them. In fact, one web server can be configured to manage dozens 
of smaller websites using the same IP address, provided that it has sufficient resources to 
handle the traffic. On the flip side, huge sites, such as Amazon.com and Google, are actu- 
ally made up of multiple web servers acting as one site. It’s estimated that Google has over 
900,000 servers, and Microsoft claims to have over one million servers! 

If a company wants to host its own web server, the best place for it is in the DMZ. This 
configuration provides ease of access (after all, you want people to hit your web server) and 
the best security. The firewall can be configured to allow inbound port 80 and 443 requests 
to the DMZ but not to allow inbound requests on those ports to make it to the internal 
corporate network. 

Contrast this to a situation where the web server is on the internal network. The fire- 
wall then has to let inbound port 80 connections through to the internal network so that 
Internet-based clients can get to the web server. However, that also means that inbound 
requests on port 80 can be sent to all internal computers, including non-web servers and 
even client computers. Hackers could then potentially take advantage of exploits using port 
80 to attempt to gain illegitimate access to the network. 


File Server 


A file server provides a central repository for users to store, manage, and access files on the 
network. There are a few distinct advantages to using file servers: 


=a Ease of access to files for collaboration 
= Centralized security management 
=a Centralized backups 


File servers come in a variety of shapes and sizes. Some are as basic as Windows-, macOS-, 
or Linux-based servers with a large amount of internal hard disk storage space. Networks 
can also use network-attached storage (NAS) devices, which are stand-alone units that con- 
tain hard drives, come with their own file management software, and connect directly to the 
network. If a company has extravagant data storage needs, it can implement a storage area 
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network (SAN). A SAN is basically a network segment, or collection of servers, that exists 
solely to store and manage data. 

Since the point of a file server is to store data, it’s pretty important to ensure that file 
servers have ample disk space. Some file servers also have banks of multiple optical drives 
for extra storage (letting users access files from optical media) or for performing backups. 
Processing power and network bandwidth can also be important to manage file requests 
and deliver them in a timely manner. 

As far as location goes, file servers will almost always be on the internal network. You 
might have situations where a file server is also an FTP server, in which case the server 
should be on the DMZ. In those cases, however, you should ensure that the server does not 
contain highly sensitive information or other data that you don’t want to lose. 


Print Server 


Print servers are much like file servers, except, of course, they make printers available to 
users. In fact, file servers and print servers are combined so often that you will see a lot of 
publications or tools refer to file and print servers as if they were their own category. 

On its own, a print server makes printers available to clients over the network and 
accepts print requests from those clients. A print server can be a physical server like a 
Windows- or Linux-based server, a small stand-alone device attached to a printer (or sev- 
eral printers), or even a server built into the printer itself. Print servers handle the following 
important functions: 


= Making printers available on the network 

= Accepting print requests 

= Managing print requests (in the print queue) 

= In some cases, processing and storing print jobs 


Figure 9.2 shows a simple stand-alone print server. It has an RJ-45 network connection 
and four USB ports to connect printers. Wireless print servers are easy to find as well. 


FIGURE 9.2 A D-Link print server 
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Although the specific functionality will vary by print server, most of the time adminis- 
trators will be able to manage security, time restrictions, and other options, including if the 
server processes the files and if the print jobs are saved after printing. An example is shown 
in Figure 9.3. 


FIGURE 9.3 Printer management options 
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DHCP Server 


Dynamic Host Configuration Protocol (DHCP) servers can make it easier to administer 
TCP/IP networks, which are pretty much every network out there today. DHCP servers are 
configured to provide IP configuration information automatically to clients, such as an IP 
address, subnet mask, default gateway, and the address of a DNS server. 


DHCP Scopes 


DHCP servers are configured with a scope, which contains the information that the server 
can provide to clients. DHCP servers need at least one scope, but they can also have more 
than one. The following items are typically included within the scope: 


Address Pool This is the range of addresses that the server can give out to clients. For 
example, the pool may be configured to give out addresses in the range from 192.168.0.100 
to 192.168.0.200. If all of the addresses are given out, then the server can’t provide 
addresses to any new potential clients. If the network is using IPv4 addresses, the address 
pool configuration will also include the subnet mask. 
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Lease Durations IP addresses given out by the DHCP server are leased to clients, and the 
lease has an expiration time. Before the lease expires, the client (if it’s online) will typically 
renegotiate to receive a new lease. If the lease expires, then the address becomes available 
to assign to another client. If you have a situation where there are limited IP addresses 

but a lot of clients coming on and off the network frequently (say, a traveling sales force), 
you might want to shorten the lease times. The downside is that it will generate a bit more 
network broadcast traffic, as we will explain in just a bit. 


Address Reservations Some IP addresses can be reserved for specific clients, based on the 
client’s MAC address. This is particularly useful for devices that need to have a static IP 
address, such as printers, servers, and routers. 


Scope Options These provide extra configuration items outside of the IP address and 
subnet mask. The most common items are the address of the default gateway (the router) 
and DNS servers. Other items might include the addresses of servers providing other func- 
tions, such as time synchronization, NetBIOS name resolution, telephony services, or the 
domain name (whatever.com) for the client to use. 








D Real World Scenario 
TCP/IP Configuration Choices 


When configuring TCP/IP on a network, you have three choices for assigning IP 
addresses: manually, automatically using a DHCP server, and a hybrid approach. 


The manual option takes the most work, and it really only works for smaller networks. 
The administrator needs to keep track of all the addresses that have been assigned so 
that the same address doesn’t end up being accidentally assigned to multiple computers. 
Duplicate addresses will cause communication problems. Most administrators have bet- 
ter things to do than to manage IP addresses manually. 


DHCP is extremely convenient. The administrator sets up a scope and options and lets 
the server automatically manage all the IP addresses. For devices that need a static 
address, such as printers, servers, and routers, the administrator can configure address 
reservations based on their MAC addresses. That way, every time a specific printer 
comes online, it always receives the same address. This takes a bit of setup in the begin- 
ning, or when a new device is added, but is worth it in the long run. The DHCP server 

is then the single point of management for all IP addresses on the network. That makes 
administration and troubleshooting much easier. 


The hybrid option is a combination of manual assignments and DHCP. For example, 
devices that need static IP addresses can be assigned manually, whereas clients get their 
information from a DHCP server. In a situation like this, the administrator might set a 
DHCP client pool address range for 192.168.0.100 to 192.168.0.200 and then use addresses 
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192.168.0.1 to 192.168.0.99 for static devices. The problem with this approach is that it 
requires extra administrative effort to manage the static addresses and ensure that the 
same address isn’t assigned multiple times. In addition, say another administrator looks 
at the DHCP server and sees the scope. That administrator might or might not know 

that addresses lower than .100 are being used for static assignments and could increase 
the scope to include those addresses. Doing so will cause the DHCP server to hand out 
addresses that could conflict with devices that have been manually configured. So hybrid 
is an option, but it’s not recommended. 


The best option is to use the DHCP server to automatically manage all IP addresses on 
the network. 





How DHCP Works 


DHCP clients need to be configured to obtain an IP address automatically. This is done by 
going into the network card’s properties and then the TCP/IP properties, as is shown in 
Figure 9.4. 


FIGURE 9.4 Configured as a DHCP client 
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When the client boots up, it will not have an IP address. To ask for one, it will send a 
DHCP DISCOVER broadcast out on the network. If a DHCP server is available to hear the 
broadcast, it will respond directly to the requesting client using the client’s MAC address as 
the destination address. The process is shown in Figure 9.5. 
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FIGURE 9.5 The DHCP request process 



































@ DHCP DISCOVER (broadcast) 
“Can anyone give me an IP address?” 
DHCP OFFER (unicast) 

—— o0 ee 
“Sure, do you want 192.168.1.55? A 
© DHCP REQUEST (broadcast) E 

—_—— 
“Yes please, if it’s still available.” TTI 


























PC (DHCP Client) 


DHCP ACK (unicast) © DHCP Server 


“It’s all yours! Here’s the address and 
scope options.” 


Notice that the DHCP DISCOVER and DHCP REQUEST messages are broadcasts, 
which means two important things. First, every computer on the network segment receives 
and needs to process the broadcast message. It’s like snail mail that’s addressed to “the cur- 
rent resident” at an address, and the computer is compelled to read it. Excessive broadcasts 
can dramatically slow network performance. Second, broadcasts do not go through rout- 
ers. Thus, if the client and the DHCP server are on opposite sides of a router, there will be a 
problem. There are two resolutions. First, make the router the DHCP server. Second, install 
a DHCP relay agent on the subnet that doesn’t have the DHCP server. It will be configured 
with the address of the DHCP server, and it will forward the request directly to the DHCP 
server on behalf of the client. 

DHCP servers should be located on the internal network. If the network has clients that 
are connecting via remote access, then a device with DHCP capabilities (such as the Remote 
Access Service [RAS]) can be placed in the DMZ. DHCP uses UDP ports 67 and 68. 


If a Windows-based DHCP client is unable to reach a DHCP server, it will 
TE configure itself with an APIPA address (which we talked about in Chapter 7, 


“Introduction to TCP/IP”). Those addresses have the format 169.254.x.x. 


DNS Server 


DNS has one function on the network: to resolve hostnames to IP addresses. As we dis- 
cussed in Chapter 7, this has major implications. In order for a computer or phone to open 
a website, it needs to know the IP address of that website. The URL ww. google.com means 
nothing to it. When a user enters the URL, the computer needs to figure out what the 
address is. The DNS server provides the answer, “That is 72.14.205.104.” Now that the 
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computer knows the address of the website that the user wants, it’s able to go find it. DNS 
works the same way on an intranet (a local network not attached to the Internet) as it does 
on the Internet. The only difference is that instead of helping clients find www. google.com, 
it may help them find Jenny’s print server or Joe’s file server. 


The DNS Server 


If a company wants to host its own website, it also needs to maintain two public DNS servers 
with information on how to get to the website. (Two servers are required for redundancy.) An 
advantage of using ISPs or web hosting companies to host the website is that they are then 
also responsible for managing the DNS servers. 

Each DNS server has a database, called a zone file, which maintains records of hostname 
to IP address mappings. Within a zone file, you will see information that looks something 
like this: 


mydomain.com. IN SOA ns.mydomain.com. ¿Start of Authority record 
mydomain.com. IN NS ns.mydomain.com. sname server for mydomain.com 
mydomain.com. IN MX mail.mydomain.com. ;mail server for mydomain.com 
mydomain.com. IN A 192.168.1.25 ;IPv4 address for mydomain.com 

IN AAAA 2001:db8:19::44 ;IPv6 address for mydomain.com 
ns IN NS 192.168.1.2 ;IPv4 address for ns.mydomain.com 
www IN CNAME mydomain.com. ;www.mydomain.com is an alias for 


mydomain.com 


www2 IN CNAME www ;www2.mydomain.com is another alias for 
mydomain.com 


mail IN A 192.168.1.26 ;IPv4 address for mail.mydomain.com 


Five columns of information are presented. From left to right, they are as follows: 
= The name of the server or computer, for example www 


a IN, which means Internet (There are other options for this field, but for our purposes, 
we will focus on Internet.) 


= The record type. This example has SOA, NS, MX, A, AAAA, and CNAME. Table 9.1 
explains some of the common record types. 


= The address of the computer 


= Comments, preceded by a semicolon. In a file like this, the computer disregards every- 
thing after a semicolon. It’s used to make notes for the administrator without affecting 
functionality. 
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TABLE 9.1 Common DNS record types 





Type Meaning 

SOA Start of Authority. It signifies the authoritative DNS server for that zone. 
NS Name Server. It’s the name or address of the DNS server for that zone. 
MX Mail Exchanger. It’s the name or address of the email server. 

A IPv4 host record 

AAAA Called “quad A,” it’s the host record for IPv6 hosts. 

CNAME Canonical Name. It’s an alias; it allows multiple names to be assigned to 


the same host or address. 


The DNS server uses the zone file whenever a computer makes a query. For example, 
if you were to ask this DNS server, “Who is mydomain.com?” the response would be 
192.168.1.25. If you ask it, “Who is ww.mydomain.com?” it would look and see that www 
is an alias for mydomain.com and provide the same IP address. 

If you are the DNS administrator for a network, you will be required to manage the 
zone file, including entering hostnames and IP addresses, as appropriate. 


DNS on the Internet 


The Internet is really big—so big that there’s no way one DNS server could possibly man- 
age all of the computer name mappings out there. The creators of DNS anticipated this, 
and they designed it in a way that reduces potential issues. For example, let’s say that you 
are looking for the website ww.wiley.com. When the DNS server that your computer is 
configured to use is queried for a resolution, it will first check its zone file to see if it knows 
the IP address. If not, it then checks its cache to see if the record is in there. The cache is a 
temporary database of recently resolved names and IP addresses. If it still doesn’t know the 
answer, it can query another DNS server asking for help. The first server it will ask is called 
a root server. 

If you look back at the sample zone file shown earlier, you might notice that the first 
few rows contained mydomain.com. (the dot at the end, the trailing dot, is intentional). The 
Internet name space is designed as a hierarchical structure, and the dot at the end is the 
broadest categorization, known as “the root.” At the next level of the hierarchy are the top- 
level domains, such as .com, .net, .edu, .jp, and others. Below that are the second-level 
domains, like Google, Microsoft, and Yahoo. Below that there are sub-domains (which 
are optional) and hostnames. Moving down, the levels in the hierarchy get more and more 
specific, until the name represents an exact host. Figure 9.6 shows an example. 
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FIGURE 9.6 Internet name hierarchy 
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The Dot at the End of the Internet 


You've probably used the Internet for quite some time, and you may be thinking, “Where 
did that trailing dot come from? I’ve never typed it into my browser.” You're right. 


As we said, the dot at the end represents the root. Without it, a domain name is not con- 
sidered a fully qualified domain name (FQDN), fit for Internet use. However, the dot is 

a convention that’s implied when Internet browsers are used; users don’t need to type 

it in. Even though it’s omitted, the browser understands that it’s technically looking for 
www.yahoo.com. and not www. yahoo.com with no terminal period. The Internet is an 
amazing place, isn’t it? 





There are 13 global root servers. All DNS servers should be configured to ask a root 
server for help. The root server will return the name of a top-level domain DNS server. 
The querying DNS server will then ask that server for help. The process continues, as 
shown in Figure 9.7, until the querying DNS server finds a server that is able to resolve the 
name www.wiley.com. Then the querying DNS server will cache the resolved name so that 
subsequent lookups are faster. The length of time that the name is held in cache is configu- 
rable by the DNS administrator. 


P If you're curious, the list of root servers is maintained at ww. iana.org/ 
PN domains/root/servers, among other places. 
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FIGURE 9.7 The DNS name resolution process 
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After looking at Figure 9.7, you might be amazed that the Internet works at all. If 
nothing else, it should explain why, if you visit a website you’ve never visited before, it can 
sometimes take longer than normal to load (provided no one else who uses your DNS server 
has visited the site recently either). The next time you visit that site, it will probably appear 
faster, if the name resolution is still held in cache. 

DNS servers for intranet use can be located inside all of the network firewalls. If the 
DNS server is being used for Internet name resolution, it’s most effective to place it in the 


DMZ. DNS uses UDP or TCP port 53. 
Proxy Server 


A proxy server makes requests for resources on behalf of a client. The most common one 
that you will see is a web proxy, but you might run into a caching proxy as well. Exercise 9.1 
shows you where to configure your computer to use a web proxy server in Windows 10. 


Configuring Windows 10 to Use a Proxy Server 
1. Click Start > Settings (it looks like a gear) > Network & Internet. 


2. On the left side, click Proxy, as shown in Figure 9.8. 
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EXERCISE 9.1 (continued) 


3. Enter the address of the proxy server in the Address box. 


Note that you can also enter in exclusions in the box below. Sites entered here would 
be accessed directly and not through the proxy server. 


4. Click Save, and you are finished. 


FIGURE 9.8 Enabling a client to use a proxy server in Windows 10 





Proxy 


Have a question? 
Get help 


Automatic proxy setup 


Use a proxy server for Ethernet or Wi-Fi connections. These settings 
don’t apply to VPN connections. 


Make Windows better 


Automatically detect settings Give us feedback 


€D o 


Use setup script 
©) on 


Script address 


Save 


Manual proxy setup 


Use a proxy server for Ethernet or Wi-Fi connections. These settings 
don't apply to VPN connections. 


Use a proxy server 
€D o 


Address Port 


Use the proxy server except for addresses that start with the 
following entries. Use semicolons ({) to separate entries. 


o Don't use the proxy server for local (intranet) addresses 


Save 











You can get to the same page shown in Figure 9.8 from within Edge. Follow these steps: 


1. Click More Actions (the three horizontal dots in the upper-right corner) > Settings > 
View Advanced Settings > Open Proxy Settings. 


If you’re a Chrome user, or have a Windows OS older than Windows 10, the screen 
looks slightly different. 
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ta. In Chrome, click More (the three vertical dots in the upper-right corner) > Settings > 
Advanced > Open Proxy Settings. 


The Connections tab of the Internet Properties window will open. 


2. Click LAN Settings, and then check the box for the Proxy Server, as shown in 
Figure 9.9. 


3. Enter the address into the Address box. (In Internet Explorer, click Tools > Internet 
Options and then the Connections tab.) 


The proxy settings apply to all browsers on the client computer, so you don’t need to 
configure it in multiple places if you use multiple browsers. 


FIGURE 9.9 Alternate method of configuring a proxy client 
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Let’s use an example of a web proxy to illustrate how the proxy server process works. 
The user on the client computer opens a web browser and types in a URL. Instead of the 
request going directly to that website, it goes to the proxy server. The proxy then makes the 
request of the website, and it returns the requested information to the client computer. If it 
sounds to you like this slows down Internet browsing, you’re right—it does. But there are 
three strong potential benefits to using a proxy. 

First, the proxy server can cache the information requested, speeding up subsequent 
searches. (This is also the only function of a caching proxy, but caching-only proxies are 
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most commonly configured to work on a local intranet.) Second, the proxy can act asa 
filter, blocking content from prohibited websites. Third, the proxy server can modify the 
requester’s information when passing it to the destination, blocking the sender’s identity 
and acting as a measure of security; the user can be made anonymous. 

Keep in mind that if all of the traffic from a network must pass through a proxy server 
to get to the Internet, that can really slow down the response time. Make sure the proxy or 
proxies have ample resources to handle all the requests. Figure 9.10 shows an example of a 
proxy server on a network. 


FIGURE 9.10 A proxy server on a network 
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Mail Server 


Email is critical for communication, and mail servers are responsible for sending, receiv- 
ing, and managing email. To be a mail server, the computer must be running an email 
server package. Some popular ones are Microsoft Exchange, sendmail, Postfix, and Exim, 
although there are dozens of others on the market. 

Clients access the mail server by using an email client installed on their systems. The 
most common corporate email client is Microsoft Outlook, but Apple Mail, IBM Notes 
(formerly Lotus Notes), Gmail, and Thunderbird are also used. Mobile and Internet email 
clients (which are more popular than their corporate cousins) include the iPhone, iPad, and 
Android email clients, Gmail, Outlook.com, Apple Mail, and Yahoo! Mail. 

In addition to sending and receiving email, mail servers often have anti-spam software 
built into them as well as the ability to encrypt and decrypt messages. Email servers are 
most often located in the DMZ. Table 9.2 lists the most important protocols to know for 
sending and receiving email. 
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TABLE 9.2 [Important email protocols 





Protocol Port Purpose 

SMTP 25 Sending email and transferring email between mail servers 
POP3 110 Receiving email 

IMAP4 143 Receiving email. It’s newer and has more features than POP3. 


P SMTP is a push protocol, whereas POP3 and IMAP4 are pull protocols. 


Si 


Authentication Server 


An authentication server is a device that examines the credentials of anyone trying to access 
the network and determines if network access is granted. Said another way, they are gate- 
keepers and critical components to network security. An authentication server can be a dedi- 
cated server machine, wireless router or access point, Ethernet switch, or a remote access 
server (RAS). 

A common term that you will hear in the Windows Server world is domain controller, 
which is a centralized authentication server. Other types of authentication servers are Remote 
Access Service (RAS), Remote Authentication Dial-In User Service (RADIUS), Terminal 
Access Controller Access-Control System Plus (TACACS+), and Kerberos. Authentication 
servers may be stand-alone (e.g., a “Kerberos server”), or the authentication service may be 
built into a more well-known OS. For example, Windows Server uses Kerberos. 

The process will differ slightly between servers, but generally what happens is the 
user (or computer) trying to access the network presents credentials. If the credentials are 
deemed appropriate, the authentication server issues the user a security code or a ticket that 
grants them access to resources. 

For most users, the required credentials are a username and password. To increase secu- 
rity, some systems require multiple items in addition to a username to authenticate users, 
such as a password and a security token. Such systems are said to support multifactor 
authentication. In multifactor authentication, the user is generally required to present two 
of the following four items: 


= Something they know, such as a password or a PIN 


= Something they have, such as a smart card or a PIN generated from an RSA security 
token (like the one shown in Figure 9.11) 


a Something they are, which generally refers to biometrics. Examples include using 
fingerprints, facial recognition, and retinal scanners. 

= Somewhere they are. This can be accomplished with GPS tracking or proximity 
readers. 
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FIGURE 9.11 RSA SecurelD token 





Preserving the security of an authentication server is critical for network security. If an 
attacker breaches the authentication server, it can have catastrophic implications for the 
network. Therefore, most authentication servers should be securely tucked behind a fire- 
wall. To users who need remote access, RAS or RADIUS servers can be placed in a DMZ. 


Syslog 

Network administrators need to know what’s happening on their network at all times. The 
challenge is that there may be hundreds or thousands of devices on the network, with thou- 
sands of users accessing resources locally and remotely. Keeping track of who is logging in 
where, what resources users are accessing, who is visiting the web server, the status of the 
router, the printer’s online status, and innumerable other events could be an administrative 
nightmare. Fortunately, syslog is available to help manage it all. 

Syslog works as a client-server model, where the clients generate messages based on the 
triggering of certain conditions, such as a login event or an error with a device, and send 
them to a centralized logging server, also known as the syslog server. Syslog uses UDP port 
514 by default. Consequently, the term syslog can be applied to a standard or system for 
event monitoring, the protocol, or the actual server that collects the logged messages. 

Syslog got its start in the UNIX world and is used extensively with Linux-based net- 
working systems and devices. Microsoft operating systems don’t natively support syslog— 
Windows comes with its own event logger called Event Viewer, which we cover in Chapter 16, 
“Operating System Administration”—but it’s easy to find packages that let Windows servers 
participate in a syslog environment. Let’s take a look at clients and servers in a syslog system. 


Syslog Clients 


Many different types of devices support syslog as a client, such as servers, routers, printers, 
across a wide variety of operating systems. The primary job of the client (in syslog terms) is 
to send a message to the syslog server if certain conditions are met. For example, an authen- 
tication server can send a message whenever there is a successful or failed login attempt, or 
a router can send the status of its used or available bandwidth. 

Messages have the following three components: 


A Facility Code The facility code is a number between 0 and 23 that identifies the type of 
device sending the message. For example, facility code 0 is for operating system kernel mes- 
sages; code 2 is used by email servers; code 4 is for security messages; and code 6 is used 
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by printers. Don’t worry about memorizing the facility codes. Just know that they tell the 
server where the message came from. 


A Severity Level The severity level lets the administrator know how urgent the issue is. 
Table 9.3 illustrates the syslog severity levels. The lower the level, the more urgent the mes- 
sage is. Facility codes and error levels can be helpful when sorting events on a syslog server, 
and can also be used to send the administrator an alert if something catastrophic happens. 
Facility codes and severity levels are required message components. 


TABLE 9.3 Syslog severity levels 





Level Severity Description 

0 Emergency A panic condition when the system is unusable 

1 Alert Immediate action needed 

2 Critical Major errors in the system 

3 Error “Normal” error conditions 

4 Warning Warning conditions, usually not as urgent as errors 
5 Notice Normal operation but a condition has been met 

6 Information Provides general information 

7 Debug Information used to help debug programs 


A Text Description The final portion of the message is the text description of the message 
itself. The description may be in easy-to-read language, or it could be nonsensical ranting. 
It really depends on the device developer and what they program it to be. There is no stan- 
dardized format for the description, so it can come in any number of formats. Most mes- 
sages do come with an IP address or device name included, but the lack of standardization 
can make understanding messages a fun and entertaining challenge. 


Syslog Severs 


The syslog server’s job is to collect and store messages. Most syslog servers are made up of 
three components: the listener, a database, and management and filtering software. 

Syslog servers listen on UDP port 514 by default. Remember that UDP is a connection- 
less protocol, so the delivery of packets is not guaranteed. The default implementation 
of syslog is also not secure. However, you can secure it by running syslog over Transport 
Layer Security (TLS) and TCP port 6514. Regardless if you secure it or not, always place 
the syslog sever behind your firewall and on the internal network. 
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Even on small networks, devices can generate huge numbers of syslog messages. Therefore, 
most syslog implementations store messages in a database for easier retrieval and analysis. 
Finally, most syslog servers will have management software that you can use to view mes- 
sages. The software should also have the ability to send the administrator a console message 
or text (or email) if a critical error is logged. Dozens of syslog packages are available. Some 
of the more popular packages are Kiwi Syslog by SolarWinds (shown in Figure 9.12), Splunk, 
The Dude, syslog-ng, and Syslog Watcher. 


FIGURE 9.12 Kiwi Syslog 
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Internet Appliances 


The definition of an Internet appliance is a device that makes it easy to access the Internet. 
The CompTIA A+ 220-1001 exam objectives list four items under Internet appliances, 

and they are all related specifically to Internet security for networks, as opposed to ease of 
Internet access. They are intrusion detection systems, intrusion prevention systems, unified 
threat management, and endpoint management servers. 


Intrusion Detection and Prevention Systems 


Two Internet appliances that are closely related to each other are the intrusion detection 
system (IDS) and intrusion prevention system (IPS). Both devices monitor network traf- 
fic and look for suspicious activity that might be the sign of a network-based attack. You 
can think of them as being somewhat analogous to antivirus (AV) programs. AV programs 
examine individual files looking for telltale signs of malicious content (called a signature). 
IDSs and IPSs look for signatures as well, but in network traffic patterns. 
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Both IDSs and IPSs are different from firewalls. Firewalls have specific sets of rules that 
allow or deny packets to enter a network, based on criteria such as the packet’s origination 
or destination address, the protocol being used, or the source or destination ports. Their 
primary function is to block malicious traffic from entering the network in the first place. 
Firewalls may also have IDS or IPS software built in, or IDS and IPS devices can be stand- 
alone hardware devices. 

An IDS is a passive device. It watches network traffic, and it can detect anomalies that 
might represent an attack. For example, if an attacker were to try to flood a network with 
traffic on a specific port, the IDS would sense that the additional traffic on that port was 
unusual. Then the IDS would log the anomaly and send an alert to an administrator. Note 
that it does nothing to prevent the attack; it simply logs relevant information pertaining to 
the attack and sends an alert. 

By contrast, an IPS is an active device. It too monitors network traffic, but when it 
detects an anomaly, it can take actions to attempt to stop the attack. For example, if it 
senses suspicious inbound traffic on a specific IP port, it can shut down the port, block the 
sender, or reset the TCP connection. If the malicious stream of data is intended for one 
computer, it can prevent the attacking host from communicating with the intended victim 
computer or prevent the attacker from communicating with any computer. The specific 
actions it can take will depend on the device. 

Both types of devices come in network-based varieties (NIDS and NIPS) and host-based 
varieties (HIDS and HIPS). As you might expect based on their names, the network-based 
versions are designed to protect multiple systems, whereas the host-based ones protect only 
one computer. 


Unified Threat Management 


The Internet is a wondrous place, but it’s a scary one as well. It seems like for every video 
of puppies (or kittens) doing cute things, there are 10 hackers lurking in dark corners trying 
to steal identities or crash servers. It’s an unfortunate reality of the Internet age. Software 
and hardware solutions have sprung up in response to various types of threats and manag- 
ing all of them can be a challenge. For example, a network needs a firewall, anti-malware 
and anti-spam software, and perhaps content filtering and IPS devices as well. It’s a lot to 
deal with. 

The goal of unified threat management (UTM) is to centralize security management, 
allowing administrators to manage all their security-related hardware and software 
through a single device or interface. For administrators, having a single management point 
greatly reduces administration difficulties. The downside is that it introduces a single point 
of failure. If all network security is managed through one device, a device failure could be 
problematic. 

UTM is generally implemented as a stand-alone device (or series of devices) on a net- 
work, and it will replace the traditional firewall. A UTM device can generally provide the 
following types of services: 


= Packet filtering and inspection, like a firewall 


= Intrusion protection service 
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= Gateway anti-malware 

= Spam blocking 

a Malicious website blocking (either prohibited or nefarious content) 
= Application control 


UTM has become quite popular in the last several years. Many in the industry see it as 
the next generation of firewalls. 


Endpoint Management Server 


It’s no secret that networks can be incredibly complicated creatures. Even small home 
networks can have a dozen or so devices with four or more operating systems, such as 
Windows, macOS, iOS, and Android. Corporate networks increase the complexity by sev- 
eral orders of magnitude. One of the most time-consuming jobs for network administrators 
is the management of endpoints, or devices on the network that people use as an interface. 
An endpoint can be a server or workstation, desktop, laptop, tablet, or smartphone. 


The A+ exam objectives hyphenate the term end-point. We're more 


A: familiar with it written as one word, such as endpoint. Other sources may 
spell it as two words: end point. In any case, they are all referring to the 
same thing. 


Imagine a scenario where you need to install 500 new network clients. All you have is 
500 brand new computers, a combination of laptops and desktops, with no software on 
them. If you had to do it manually, one at a time, it would take forever! Or say that an 
existing network with 500 endpoints, with various operating systems and hardware con- 
figurations, needs to have a software update applied to every device. Again, trying to do it 
manually and keep track of which systems are updated and which are not would be tedious 
at best. 

The idea of an endpoint management server, as the name implies, is to help administra- 
tors manage all endpoints on a network. It provides benefits of saving time and money. 
Common tasks an endpoint management server can help with include the following: 


=a Deploying security policies and updates to all endpoints 
=a Installing and updating operating systems 

= Installing and updating software packages 

= Configuring centralized backup of critical endpoints 


= Centralizing troubleshooting documentation so all technicians will have up-to-date 
information 


= Managing inventory, including software licenses, to ensure that compliance make 
auditing easier 
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DPO Unlike the previous three Internet appliances we discussed, an endpoint 
‘gr management server is not itself a security device. It just helps ensure 
that the endpoints on the network are secure, regardless of the operating 
system they run. 


Legacy and Embedded Systems 


In regular human terms, legacies are considered a good thing. Most of us want to leave a 
legacy of some kind, whether it’s within a community or organization or within our own 
families. A legacy is something that lives on far beyond a human life span. 

If you mention the term legacy system in the computer world, though, you are likely to 
be met with groans and eye rolls. It means that the system is old and hopelessly outdated by 
today’s computing standards. Legacy systems are usually defined as those using old tech- 
nology in one or more of the following areas: 


= Hardware 
= Software (applications or operating system) 
= Network protocols 


Many legacy systems were state of the art when they were originally implemented in the 
1970s or 1980s, but they haven’t been upgraded or replaced. Today, though, they are old 
and slow, and specialized knowledge is required to maintain and operate them. For exam- 
ple, someone might need to know the Pick operating system (which came out in the 1970s), 
how to operate an IBM AS/400 or manage VAX, or how to configure the IPX/SPX network 
protocol. (Google these topics sometime!) 

It’s not just the really old stuff, though. Even technologies that have been invented after 
the turn of the century can now be considered legacy. For example, Microsoft no longer 
supports the Windows XP and Vista operating systems, and Windows 7 support will end 
in 2019. Security and other updates will no longer be provided for these OSs, which could 
introduce security risks. On the hardware side, the wireless networking 802.11b standard is 
definitely legacy today, and if 802.11g isn’t already legacy, it may be soon. It’s really hard to 
find new components that include these standards. 


i An embedded system is one that is critical in a process; other systems or 
TE processes depend upon it. For purposes of this section, we will treat leg- 
acy and embedded systems as one and the same, because administrators 

face similar issues with both. 


So why don’t companies replace legacy systems? It’s complicated: 


=a First, most companies don’t have large IT budgets, and replacing legacy systems can be 
very expensive. This is especially true for many companies who see the systems provid- 
ing reliable (if a bit slow) service. Why fix what’s not broken? 
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= Second, the cost of failure of an upgrade could be catastrophic. The world’s global 
financial systems are in many places supported by legacy systems. Messing up a migra- 
tion in that context could be a career-limiting move. 


a Third, the time it would take to test the new system, verify functionality, and roll out 
the implementation could be extensive. Time is money, and we already stated that IT 
budgets are generally tight. 


Furthermore, it’s challenging to find technicians and consultants who understand legacy 
systems. People move from company to company, or consultants retire and take their spe- 
cialized knowledge with them. Someone who was a mid-20s computer whiz in 1975 is now 
in their late-60s and probably looking forward to retirement. The cost to find someone 
knowledgeable on these systems can be high. 

Speaking of high costs, finding replacement hardware can be difficult to impossible 
while being expensive at the same time. Eventually, the cost of maintenance might out- 
weigh the cost of upgrading, but then again it might not. 








GD Real World Scenario 


A Real Example of a Legacy System 


Every once in a while, you will come across an article online discussing the use of a 
legacy system and the challenges faced because of that system. Here’s a link to one that 
came out a few years ago: 


www. popularmechanics.com/technology/infrastructure/al6010/ 
30-year-old-computer-runs-school-heat/ 


After reading the story, you will understand why we included it. The article does a great 
job of outlining the issues that network administrators face in the real world—namely, if it 
isn’t broke, don’t fix it! 





So what’s a network administrator to do? If possible, replacing or repurposing legacy 
systems can provide long-term benefits to a company. But also recognize the risk involved. 
If replacement isn’t an option, then the best advice that we can give is to learn as much as 
you can about them. Hopefully, the system is based on established standards, so you can 
look them up on the Internet and learn as much as possible. If not, see what operating 
manuals you can track down, or pick the brain of those who understand how they operate. 
As challenging as legacy systems can be, you can make yourself quite valuable by being the 
expert on them. 

A common administrative option is to try to isolate the legacy system as much as pos- 
sible so that its lack of speed doesn’t affect the rest of the network. This is usually much 
easier to do with hardware or protocols than with software. For example, the network 
might be set up with one segment that hosts the legacy systems or protocols. 
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One technology that is helping replace and update legacy systems is virtualization, 
which can obviate the need for one-to-one hardware-to-software relationships. We cover 
virtualization in the next section. 


Understanding Virtualization 
and Cloud Computing 


The computer industry is one of big trends. A new technology comes along and becomes 
popular, until the next wave of newer, faster, and shinier objects comes along to distract 
everyone from the previous wave. Thinking back over the past 20 years or so, there have 
been several big waves, including the rise of the Internet, wireless networking, and mobile 
computing. 

Within each trend, there are often smaller ones. For example, the Internet was helped 
by modems and ISPs in the middle of the 1990s, and then broadband access took over. 
Wireless networking has seen several generations of faster technology, from the 11 Mbps 
802.11b, which at the time it came out was pretty cool, to 802.11ac, delivering gigabit 
wireless. Mobile computing has been a long-lasting wave, first with laptop computers 
becoming more popular than desktops, and then with handheld devices (namely, smart- 
phones and tablets) essentially functioning like computers. 

The biggest recent wave in the computing world is cloud computing. Its name comes 
from the fact that the technology is Internet-based; in most computer literature, the Internet 
is represented by a graphic that looks like a cloud. It seems like everyone is jumping on the 
cloud (pun intended, but doesn’t that sound like fun?), and technicians need to be aware 
of what it can provide and its limitations. The most important core technology supporting 
cloud computing is virtualization. We will cover both topics in the following sections. 


Concepts of Cloud Computing 


You hear the term a lot today— the cloud. What exactly is the cloud? The way it’s named, 
and it’s probably due to the word the at the beginning, it sounds like it’s one giant, fluffy, 
magical entity that does everything you could ever want a computer to do. Only it’s not 
quite that big, fluffy, or magical, and it’s not even one thing. 

Cloud computing is a method by which you access remote servers to store files or run 
applications for you. There isn’t one cloud but hundreds of commercial clouds in existence 
today. Many of them are owned by big companies, such as Microsoft, Google, HP, Apple, 
and Amazon. Basically, they set up the hardware and/or software for you on their network, 
and then you use it. 

Using the cloud sounds pretty simple, and in most cases it is. From the administrator’s 
side, though, things can be a little trickier. Cloud computing involves a concept called 
virtualization, which means that there isn’t necessarily a one-to-one relationship between a 
physical server and a logical (or virtual) server. In other words, there might be one physical 
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server that virtually hosts cloud servers for a dozen companies, or there might be several 
physical servers working together as one logical server. From the end user’s side, the idea 
of a physical machine versus a virtual machine doesn’t even come into play, because it’s all 
handled behind the scenes. We’ll cover virtualization in more depth later in this chapter. 

There are many advantages to cloud computing, and the most important ones revolve 
around money. Cloud providers can get economies of scale by having a big pool of 
resources available to share among many clients. It may be entirely possible for them to add 
more clients without needing to add new hardware, which results in greater profit. From a 
client company’s standpoint, the company can pay for only the resources it needs without 
investing large amounts of capital into hardware that will be outdated in a few years. Using 
the cloud is often cheaper than the alternative. Plus, if there is a hardware failure within the 
cloud, the provider handles it. If the cloud is set up right, the client won’t even know that 
a failure occurred. Other advantages of cloud computing include fast scalability for clients 
and ease of access to resources regardless of location. 

The biggest downside of the cloud has been security. The company’s data is stored 
on someone else’s server, and company employees are sending it back and forth via the 
Internet. Cloud providers have dramatically increased their security over the last few years, 
but this can still be an issue, especially if the data is highly sensitive material or personally 
identifiable information (PH). Also, some companies don’t like the fact that they don’t own 
the assets. 

Now let’s dive into the types of services clouds provide, the types of clouds, cloud- 
specific terms with which you should be familiar, and some examples of using a cloud from 
the client side. 


Cloud Services 


Cloud providers sell everything “as a service.” The type of service is named for the highest 
level of technology provided. For example, if computing and storage is the highest level, 
the client will purchase Infrastructure as a Service. If applications are involved, it will be 
Software as a Service. Nearly everything that can be digitized can be provided as a service. 
Let’s take a look at the three most common types of services offered by cloud providers, 
from the ground up: 


Infrastructure as a Service Lets say that a company needs extra network capacity, includ- 
ing processing power, storage, and networking services (such as firewalls) but doesn’t have 
the money to buy more network hardware. Instead, it can purchase Infrastructure as a 
Service (IaaS), which is a lot like paying for utilities—the client pays for what it uses. Of 
the three, IaaS requires the most network management expertise from the client. In an IaaS 
setup, the client provides and manages the software. 


Platform as a Service Platform as a Service (PaaS) adds a layer to IaaS that includes soft- 
ware development tools such as runtime environments. Because of this, it can be very help- 
ful to software developers; the vendor manages the various hardware platforms. This frees 
up the software developer to focus on building their application and scaling it. The best 
PaaS solutions allow for the client to export their developed programs and run them in an 
environment other than where they were developed. Examples of PaaS include Google App 


Understanding Virtualization and Cloud Computing 513 


Engine, Microsoft Azure, Red Hat OpenShift, Amazon Web Services Elastic Beanstalk, 
Engine Yard, and Heroku. 


Software as a Service (SaaS) The highest of these three levels of service is Software as 

a Service (SaaS), which handles the task of managing software and its deployment, and 
includes the platform and infrastructure as well. This is the one with which you are prob- 
ably most familiar, because it’s the model used by Google Docs, Microsoft Office 365, and 
even storage solutions such as Dropbox. The advantage of this model is to cut costs for 
software ownership and management; clients typically sign up for subscriptions to use the 
software and can renew as needed. 


Figure 9.13 shows examples of these three types of services. SaaS is the same as the 
Application layer shown in the figure. 


FIGURE 9.13 Common cloud service levels 
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“Cloud computing” by Sam Johnston. Licensed under CC BY-SA 3.0 via Wikimedia Commons. https: // 
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Although not included in the A+ objectives, the following other service 
OTE levels also exist: 


m Hardware as a Service (HaaS), which is similar to laaS but is more 
likely related specifically to data storage 


m Communications as a Service (CaaS), which provides things like 
Voice over IP (VolP), instant messaging, and video collaboration 


a Network as a Service (NaaS), which provides network infrastructure 


a Desktop as a Service (DaaS), which provides virtual desktops so 
that users with multiple devices or platforms can have a similar 
desktop experience across all systems 


= Data as a Service (also DaaS), which provides for multiple sources 
of data in a mash-up 


m Business Processes as a Service (BPaaS), which provides business 
processes such as payroll, IT help desk, or other services 


a Anything/Everything as a Service (XaaS), which is a combination of 
the services already discussed 


The level of responsibility between the provider and the client is specified in the contract. 
It should be very clear which party has responsibility for specific elements, should anything 
go awry. 


Types of Clouds 


Running a cloud is not restricted to big companies offering services over the Internet. 
Companies can purchase virtualization software to set up individual clouds within their 
own network. That type of setup is referred to as a private cloud. Running a private cloud 
pretty much eliminates many of the features that companies want from the cloud, such as 
rapid scalability and eliminating the need to purchase and manage computer assets. The 
big advantage, though, is that it allows the company to control its own security within the 
cloud. 

The traditional type of cloud that usually comes to mind is a public cloud, like the ones 
operated by the third-party companies we mentioned earlier. These clouds offer the best in 
scalability, reliability, flexibility, geographical independence, and cost effectiveness. Whatever 
the client wants, the client gets. For example, if the client needs more resources, it simply 
scales up and uses more. Of course, the client will also pay more, but that’s part of the deal. 

Some clients have chosen to combine public and private clouds into a hybrid cloud. This 
gives the client the great features of a public cloud while simultaneously allowing for the 
storage of more sensitive information on the private cloud. It’s the best of both worlds. 

The last type of cloud to discuss is a community cloud. These are created when multiple 
organizations with common interests combine to create a cloud. In a sense, it’s like a public 
cloud but with better security. The clients know who the other clients are and, in theory, 
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can trust them more than they could trust random people on the Internet. The economies 
of scale and flexibility won’t be as great as with a public cloud, but that’s the trade-off for 
better security. 

With the exception of private clouds, all cloud types use the concept of shared resources. 
A pool of resources is purchased, and each participant in the cloud pays for a fraction of 
those resources. These resources will most likely be external to the company using them, as 
opposed to internal resources that they would have if they managed a private cloud. 


Important Cloud Features 


We’ve discussed several important cloud features to this point. The National Institute 
of Standards and Technology (NIST), a group within the United States Department of 
Commerce, has defined the following five essential characteristics of cloud computing: 


On-Demand Self-Service This is one of the cloud’s best features from an end user’s stand- 
point. With on-demand self-service, users can access additional storage, processing, and 
capabilities automatically, without requiring intervention from the service provider. 


Broad Network Access This means that cloud capabilities are accessible over the network 
by different types of clients, such as workstations, laptops, and mobile phones, using com- 
mon access software such as web browsers. The ability for users to get the data they want, 
when they want, how they want, is sometimes referred to as ubiquitous access. 


Resource Pooling The idea of resource pooling is closely linked with virtualization, 
which we will cover shortly. The provider’s resources are seen as one large pool that can be 
divided up among clients as needed. Clients should be able to access additional resources 
as needed, even though the client may not be aware of where the resources are physically 
located. Typical pooled resources include network bandwidth, storage, processing power, 
and memory. 


Rapid Elasticity We’ve talked about the ability to scale up resources as needed, and that 
is elasticity. In most cases, clients can get more resources instantly (or at least very quickly), 
and that is called rapid elasticity. For the client, this is a great feature because they can 
scale up without needing to purchase, install, and configure new hardware. Elasticity can 
also work backwards; if fewer resources are required, the client may be able to scale down 
and pay less without needing to sell hardware. You will hear some subscriptions with built- 
in elasticity referred to as pay-as-you-grow services. 


Measured Service Most cloud providers track clients’ usage and then charge them for the 
services used. This type of setup is called metered service or measured service. Resource 
usage is monitored by the provider and reported to the client in a transparent fashion. 


Using Cloud-Based Services 


Up to this point, we have primarily focused on the characteristics that make up cloud 
computing. Now let’s turn our attention to some practical examples with which users will 
probably be more familiar. The two types of cloud interaction we will cover are storage and 
applications. The next two sections will assume the use of public clouds and standard web 
browser access. 
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Cloud-Based Storage 


Storage is the area in which cloud computing got its start. The idea is simple—users store 
files just as they would on a hard drive, but with two major advantages. One, they don’t 
need to buy the hardware. Two, different users can access the files regardless of where they 
are physically located. Users can be located in the United States, China, and Germany; 
they all have access via their web browser. This is particularly helpful for multinational 
organizations. 

There is no shortage of cloud-based storage providers in the market today. Each pro- 
vider offers slightly different features. Most of them will offer limited storage for free and 
premium services for more data-heavy users. Table 9.4 shows a comparison of some of the 
better-known providers. Please note that the data limits and prices can change; this table is 
provided for illustrative purposes only and doesn’t include every level of premium service 
available. Most of these providers offer business plans with unlimited storage as well for an 
additional cost. 


TABLE 9.4 Cloud providers and features 





Service Free Premium Cost Per Year 
Dropbox 2 GB 1TB $99 

Apple iCloud 5 GB 2TB $120 

Box 10 GB 100 GB $60 
Microsoft OneDrive 5 GB 50 GB $24 

Google Drive 15 GB 1TB $120 


Which one should you choose? If you want extra features, such as web-based applications, 
then Google or Microsoft is probably the best choice. If you just need data storage, then Box 
or Dropbox might be a better option. Some allow multiple users to access a personal account, 
so that might figure into your decision as well. 


Nearly all client OSs will work with any of the providers, with the exception 
A TE of Linux, which natively works only with Dropbox. 


Most cloud storage providers offer synchronization to the desktop, which makes it so 
that you have a folder on your computer, just as if it were on your hard drive. And it’s 
important to note that folder will almost always have the most current edition of the files 
stored in the cloud. The synchronization app typically runs in the background and has con- 
figurable options, including what, when, and how often to synchronize. 
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Accessing the sites is done through your web browser. Once you are in the site, manag- 
ing your files is much like managing them on your local computer. In Figure 9.14, you can 
see the Google Drive interface, with three folders and two files in it. 


FIGURE 9.14 Google Drive 
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You have a few options for sharing a folder with another user. One way is to right-click 
the folder and choose Share (Figure 9.15). You’ll be asked to enter their name or email 
address and to indicate whether they can view or edit the file. You can also choose Get 
Shareable Link, which will copy a URL link to your Clipboard to paste into a message. Be 
mindful that the default behavior is that anyone who has the link can view the folder. This 
might be okay, but it could also be a security risk. You can change the sharing settings by 
performing the following steps: 


1. Right-click the folder and choose Get Sharable Link. 
2. Inthe information window that appears, click the Sharing Settings link. 


3. Inthe Share with Others window that appears (Figure 9.16), click the down arrow next 
to Anyone with the Link Can View. 


Options include: 

= Turning sharing off 

= Granting access to only certain people via their email address 
= Letting anyone with the link edit files 


= Letting anyone on the Internet find and access the folder with no login required 
(This last one is a bit frightening.) 
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FIGURE 9.15 Sharing a folder on Google Drive 
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Cloud-Based Applications 


Google really popularized the use of web-based applications. After all, the whole Chromebook 
platform, which has been very successful, is based on this premise. Other companies have 
gotten into the cloud-based application space as well, such as Microsoft with Office 365. The 
menus and layout are slightly different from PC-based versions of Office, but if you’re familiar 
with Office, you can easily use Office 365—and all of the files are stored on the cloud. 

Cloud-based apps run through your web browser. This is great for end users for a few 
reasons. One, your system does not have to use its own hardware to run the application; 
you are basically streaming a virtual application. Two, different client OSs can run the 
application (usually) without worrying about compatibility issues. Applications can often 
work across platforms as well, meaning that laptops, desktops, tablets, and smartphones 
can all use various apps. 

To create a new document using Google Docs, you click the New button, as shown on 
the left side of Figure 9.15, and then choose the application from the menu. If you choose 
Google Docs, it opens a new browser window with Google Docs, as shown in Figure 9.17. 
Notice that near the top, it says All changes saved in Drive. When it says this, you know 
that the document has been saved automatically. 


FIGURE 9.17 Google Docs 
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When choosing a cloud provider, you may use any one you like. In fact, it’s better if you 
experience the differences in how providers store files and let you manage and manipulate 
them before making your choice. Exercise 9.2 will give you experience with using cloud- 
based storage and applications—specifically, Google Drive and its associated apps. This 
exercise will work best if you have someone you can work with. For example, in a class- 
room setting, you can partner with someone. If you are studying at home, you can create 
multiple accounts and get the same experience. You will just need to log out and in with 
your other account to see the shared files. 
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Using Google’s Cloud Services 
1. Open Google at www. google.com. 


If you do not already have a Google account, you will need to create one. With it, you 
use Google’s online apps and storage as well as a Gmail account. 


2. Ifyou are doing this exercise on your own, create a second account to share files and 
folders with. 


3. Once you're logged in, click the Apps icon in the upper-right corner. It’s the one that 
has nine small squares (see Figure 9.18). 


FIGURE 9.18 Google icons 





This will open Apps, as shown on the right in Figure 9.19. 


FIGURE 9.19 Google Apps 
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4. In Apps, click Drive. This will open Google Drive (refer to Figure 9.15). 


5. Create a folder by clicking New > Folder and share it with another account. 
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6. Also create a document or spreadsheet using Google’s online software. 
How easy or difficult was it? 


7. If necessary, log out and log in to the other account that you created to access the 
resources that were shared for you. 


How easy or difficult was it? 


The newest trend in web applications and cloud storage is the streaming of media. 
Companies such as Netflix, Amazon, Pandora, Apple, and others store movies and music 
on their clouds. You download their client software, and for a monthly subscription fee, 
you can stream media to your device. It can be your phone, your tablet, your computer, or 
your home entertainment system. Before the advent of broadband network technologies, 
this type of setup would have been impossible, but now it is poised to become the main- 
stream way that people receive audio and video entertainment. 


ya Many companies have scrapped internal email management and moved to 
‘gr cloud-based email. By using an off-site email application, such as Gmail, 
a company can use their .com email address and Gmail as the client. This 
relieves administrative burden—all that’s required is to call Google to set 
it up properly. There’s a monthly fee, but it’s often cheaper than managing 
an email server internally. And, users can easily access their email from 
anywhere with an Internet connection. 


Concepts of Virtualization 


Perhaps the easiest way to understand virtualization is to compare and contrast it to more 
traditional technologies. In the traditional computing model, a computer is identified as 
being a physical machine that is running some combination of software, such as an operat- 
ing system and various applications. There’s a one-to-one relationship between the hard- 
ware and the operating system. 

For the sake of illustration, imagine that a machine is a file server and now it needs to 
perform the functions of a web server as well. To make this happen, the administrator 
would need to ensure that the computer has enough resources to support the service (CPU, 
memory, network bandwidth), install web server software (Microsoft IIS or Apache, for 
example), configure the appropriate files and permissions, and then bring it back online as a 
file and web server. These would be relatively straightforward administrative tasks. 

But now imagine that the machine in question is being asked to run Windows Server and 
Linux at the same time. Now there’s a problem. In the traditional computing model, only 
one OS can run at one time, because each OS completely controls the hardware resources 
in the computer. Sure, an administrator can install a second OS and configure the server to 
dual-boot, meaning the OS to run is chosen during the boot process, but only one OS can 
run at a time. So if the requirement is to have a Windows-based file server and a Linux- 
based Apache web server, there’s a problem. Two physical computers are needed. 


522 Chapter 9 = Network Services, Virtualization, and Cloud Computing 


Similarly, imagine that there is a Windows-based workstation being used by an applica- 
tions programmer. The programmer has been asked to code an app that works in Linux, or 
macOS, or anything other than Windows. When the programmer needs to test the app to 
see how well it works, what does she do? Sure, she can configure her system to dual-boot, 
but once again, in the traditional computing model, she’s limited to one OS at a time per 
physical computer. Her company could purchase a second system, but that quickly starts to 
get expensive when there are multiple users with similar needs. 

This is where virtualization comes in. The term virtualization is defined as creating 
virtual (rather than actual) versions of something. In computer jargon, it means creating 
virtual environments where “computers” can operate. We use quotation marks around the 
word computers because they don’t need to be physical computers in the traditional sense. 
Virtualization is often used to let multiple OSs (or multiple instances of the same OS) run 
on one physical machine at the same time. Yes, they are often still bound by the physical 
characteristics of the machine on which they reside, but virtualization breaks down the 
traditional one-to-one relationship between a physical set of hardware and an OS. 


PP Virtualization has been around in the computer industry since 1967, but it 
‘gr has only recently exploded in popularity thanks to the flexibility that the 
Internet offers. 


The Purpose of Virtual Machines 


We have already hit on the major feature of virtualization, which is breaking down that 
one-to-one hardware and software barrier. The virtualized version of a computer is appro- 
priately called a virtual machine (VM). Thanks to VMs, it is becoming far less common to 
need dual-boot machines today than in the past. In addition, VMs make technology like 
the cloud possible. A cloud provider can have one incredibly powerful server that is run- 
ning five instances of an OS for client use, and each client is able to act as if it had its own 
individual server. On the flip side, cloud providers are able to pool resources from multiple 
physical servers into what appears to the client to be one system, effectively giving clients 
unlimited processing or storage capabilities (assuming, of course, that the provider doesn’t 
physically run out of hardware). 


Virtual OSs can be powered on or off individually without affecting the 


P 
‘gr host OS or hypervisor. 


The underlying purpose of all of this is to save money. Cloud providers can achieve econ- 
omies of scale, because adding additional clients doesn’t necessarily require the purchase of 
additional hardware. Clients don’t have to pay for hardware (or the electricity to keep the 
hardware cool) and can pay only for the services they use. End users, in the workstation 
example we provided earlier, can have multiple environments to use without needing to buy 
additional hardware as well. 
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The Hypervisor 


The key enabler for virtualization is a piece of software called the hypervisor, also known 
as a virtual machine manager (VMM). The hypervisor software allows multiple operat- 
ing systems to share the same host, and it also manages the physical resource allocation to 
those virtual OSs. As illustrated in Figure 9.20, there are two types of hypervisors: Type 1 
and Type 2. 


FIGURE 9.20 Type 1 and Type 2 hypervisors 


Type 1 Hypervisor Type 2 Hypervisor 


A Type 1 hypervisor sits directly on the hardware, and because of this, it’s sometimes 
referred to as a bare metal hypervisor. In this instance, the hypervisor is basically the oper- 
ating system for the physical machine. This setup is most commonly used for server-side 
virtualization, because the hypervisor itself typically has very low hardware requirements 
to support its own functions. Type 1 is generally considered to have better performance 
than Type 2, simply because there is no host OS involved and the system is dedicated 
to supporting virtualization. Virtual OSs are run within the hypervisor, and the virtual 
(guest) OSs are completely independent of each other. Examples of Type 1 hypervisors 
include Microsoft Hyper-V, VMware ESX, and Citrix XenServer. Figure 9.21 shows the 
Hyper-V interface. 

A Type 2 hypervisor sits on top of an existing operating system, called the host OS. 
This is most commonly used in client-side virtualization, where multiple OSs are man- 
aged on the client machine as opposed to on a server. An example of this would be a 
Windows user who wants to run Linux at the same time as Windows. The user could 
install a hypervisor and then install Linux in the hypervisor and run both OSs concur- 
rently and independently. The downsides of Type 2 hypervisors are that the host OS con- 
sumes resources, such as processor time and memory, and a host OS failure means that 
the guest OSs fail as well. Examples of Type 2 hypervisors include Microsoft’s Windows 
Virtual PC and Azure Virtual Server, Oracle VM VirtualBox, VMware Workstation, and 
Linux KVM. 
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FIGURE 9.21 Microsoft Hyper-V 
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Client-Side Virtualization Requirements 


As you might expect, running multiple OSs on one physical workstation can require more 
resources than running a single OS. There’s no rule that says a workstation being used for 
virtualization is required to have more robust hardware than another machine, but for 
performance reasons, the system should be fairly well equipped. This is especially true for 
systems running a Type 2 hypervisor, which sits on top of a host OS. The host OS will need 
resources too, and it will compete with the VMs for those resources. Let’s talk about spe- 
cific requirements. 


Resource Requirements 


The primary resources here are the same as you would expect when discussing any other 
computer’s performance: CPU, RAM, hard drive space, and network performance. From 
the CPU standpoint, know that the hypervisor can treat each core of a processor as sepa- 
rate virtual processors, and it can even create multiple virtual processors out of a single 
core. The general rule here is that the faster the processor the better, but really, the more 
cores a processor has, the more virtual OSs it can support in a speedy fashion. Within the 
hypervisor, there will most likely be an option to set the allocation of physical resources, 
such as CPU priority and amount of RAM to each VM. 

Some hypervisors require that the CPU be specifically designed to support virtualiza- 
tion. For Intel chips, this technology is called virtualization technology (VT), and AMD 
chips need to support AMD-V. In addition, many system BIOSs have an option to turn on 
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or turn off virtualization support. If a processor supports virtualization but the hypervisor 
won’t install, check the BIOS and enable virtualization. The specific steps to do this vary 
based on the BIOS, so check the manufacturer’s documentation. An example of what this 
might look like is shown in Figure 9.22. 


FIGURE 9.22 Enabling virtualization in the BIOS 
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Memory is always a big concern for computers, and virtual ones are no different. When 
youre installing the guest OS, the hypervisor will ask how much memory to allocate to the 
VM. This can be modified later if the guest OS in the VM requires more memory to run 
properly. Always remember, though, that the host OS requires RAM too. Thus, if the host 
OS needs 4 GB of RAM and the guest OS needs 4 GB of RAM, the system needs to have at 
least 8 GB of RAM to support both adequately. 

Hard disk space works the same way as RAM. Each OS will need its own hard disk 
space, and the guest OS will be configured via the hypervisor. Make sure that the physical 
computer has enough free disk space to support the guest OSs. 

Finally, from a networking standpoint, each of the virtual desktops will typically need 
full network access, and configuring the permissions for each can sometimes be tricky. The 
virtual desktop is often called a virtual desktop interface (VDI), a term that encompasses 
the software and hardware needed to create the virtual environment. The VM will create a 
virtual NIC and manage the resources of that NIC appropriately. The virtual NIC doesn’t 
have to be connected to the physical NIC; an administrator could create an entire virtual 
network within the virtual environment where the virtual machines just talk to each other. 

That’s not normally practical in the real world, though, so the virtual NIC will be con- 
nected to the physical NIC. Configuring a virtual switch within the hypervisor normally 
does this. The virtual switch manages the traffic to and from the virtual NICs and logically 
attaches to the physical NIC (see Figure 9.23). Network bandwidth is often the biggest 
bottleneck when you are running multiple virtual OSs. If the network requirements are that 
each of four VMs on one physical machine get Gigabit Ethernet service all the time, one 
physical Gigabit Ethernet NIC isn’t going to cut it. 
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FIGURE 9.23 Virtual NICs connecting to a physical NIC 
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With Type 1 hypervisors, virtual desktops are often used with remote 

A TE administration. This can allow a remote administrator to work on the work- 
station (to perform maintenance, for example) with or without the knowl- 
edge of the user sitting in front of the machine. 


Emulator Requirements 


Virtual machines are created to exist and function just like a physical machine. Thus, all 
the requirements that a physical machine would have need to be replicated by the hypervi- 
sor, and that process is called emulation. The terms hypervisor and emulator are often 
used interchangeably, although they don’t mean the same thing. The hypervisor can sup- 
port multiple OSs, whereas technically, an emulator appears to work the same as one spe- 
cific OS. As for requirements, the emulator and the hypervisor need to be compatible with 
the host OS. That’s about it. 
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DPO Some incredibly popular mobile-based games do not have PC equivalents. 
‘gi In other words, you need to run them from iOS or Android. Android is 
based on open-source code, meaning that there are Android emulators on 
the market. One such free emulator is Andy (ww. andyroid.net). People 
can install Andy on their desktops or laptops, and then install Android 
apps within Andy. That way, they can play their favorite mobile games on 
their desktop or laptop computer. 


Security Requirements 


In the early days of the cloud, a common misconception was that virtual machines couldn’t 
be hacked. Unfortunately, some hackers proved this wrong. Instead of attacking the OS in 
the VM, hackers have turned their attention to attacking the hypervisor itself. Why just 
hit one OS when you can hit all of them on the computer at the same time? A number of 
virtualization-specific threats focusing on the hypervisor have cropped up, but updates have 
fixed the issues as they have become known. The solution to most virtual machine threats 
is to always apply the most recent updates to keep the system(s) current. 

At the same time, all the security concerns that affect individual computers also apply to 
VMs. For example, if Windows is being operated in a VM, that instance of Windows still 
needs anti-malware software installed on it. 





S Real World Scenario 


Setting Up and Using Client-Side Virtualization 


If given a scenario on the A+ exam or faced with the situation in real life, you should be 
able to set up and show someone how to use client-side virtualization. Here are some 
sample steps to follow: 


1. Determine the client's needs for virtualization. 


For example, do they have a Windows or Mac client and need to run Linux? Or per- 
haps they have a Windows computer and want to run macOS at the same time? 
Determine their needs, and then secure the additional OSs (including licenses, as 
appropriate) before beginning the installation. 


2. Evaluate the computer to ensure that it can support the VM. 
= Does the processor support virtualization? 


= How much RAM does the computer have? Is it enough to meet the minimum 
requirements of all installed OSs? 


= How much free hard drive space is there? It needs to be enough to install the 
hypervisor and the guest OS as well as to store any files that need to be stored 
from within the guest OS. 


= Does the system have a fast enough network connection if the guest OS needs 
access to the network? 
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3. Consider which hypervisor to use. Is there a version of the hypervisor that’s compat- 
ible with the host OS? 


4. Consider security requirements. If the guest OS will be on the Internet, will proper 
security software be installed? 


5. After all conditions are deemed sufficient, you can install the hypervisor and the 
guest OS. 


It will not affect the host OS, but it’s always a good idea to back up the system before 
installing any new major software packages! 


Exercise 9.3 will give you hands-on experience installing a hypervisor and a guest OS. 








Now that we have covered the key concepts behind client-side virtualization, it’s time 
to practice. Exercise 9.3 walks you through installing the Oracle VirtualBox hypervisor on 
a Windows 10 computer and then installing Lubuntu (a distribution of Linux). Normally, 
installing a second OS involves a relatively complicated process where you need to dual- 
boot your computer. You’re not going to do that here. Instead, you will use the VirtualBox 
hypervisor that allows you to create a new virtual system on your hard drive and not affect 
your existing Windows installation. We promise you that this exercise will not mess up 
Windows on your computer! And when you’re finished, you can just uninstall VirtualBox, 
if you want, and nothing will have changed on your system. 


Installing VirtualBox and Lubuntu on Windows 10 


The first two steps are for preparation only. You need to download Oracle VirtualBox 
and a version of Lubuntu. Really, any version of Linux is fine, but we'll point you to 

a 32-bit (x86) version of Lubuntu, which should minimize any compatibility issues. 
Depending on your network speed, the download could take an hour or more. These 
directions are based on VirtualBox version 5.2.18. If you have a different version, the 
wording on some of the screens might be slightly different, but the following steps 
should still work. 


Obtaining VirtualBox and Lubuntu 


1. Download Oracle VirtualBox from ww. virtualbox.org/wiki/Downloads. 


2. Select the VirtualBox platform package for Windows hosts, unless, of course, you 
have a Mac, and then you need the one for OS X hosts. 


3. Save it to your desktop for ease of access. 


4. Download Lubuntu from http: //lubuntu.net/tags/download. There is a link on the 
page for Lubuntu i386. Choose that one. It will download a zipped file with an .iso 
extension. 


You will need that ISO file later; it will essentially act as a bootable CD for your OS 
installation. Note that this file is 1 GB, so it could take some time to download. 
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Installing VirtualBox 


Now you can begin the installation of VirtualBox. 
1. Double-click the VirtualBox icon. If you get a security warning, click the Run button. 
2. Click Next on the Setup Wizard screen. 
3. On the Custom Setup screen, click Next and then Next again. 
It will give you a warning about your network interfaces. 
4. Click Yes. (Your network connections will come back automatically.) 
5. Click Install. 


This may take several minutes. You might also need to clear another security warn- 
ing box and allow Oracle Corporation to install a device driver. 


6. Once the install is complete, click Finish. 


Configuring VirtualBox 


It’s time to configure VirtualBox. 


1. You might get a VirtualBox warning telling you that an image file is not currently 
accessible. That’s fine. Click Ignore. 


You should see a screen similar to the one shown in Figure 9.24. 


FIGURE 9.24 Welcome to VirtualBox! 


Ñ Oracle VM VirtualBox Manager = o x 
File Machine Help 
New Settings Discard Start, 
Welcome to VirtualBox! 
The left part of this window lists all virtual machines and virtual machine groups on 
your computer. The list is empty now because you haven't created any virtual 
machines yet. 


In order to create a new virtual machine, press the New button in the main tool bar 
located at the top of the window. 


You can press the F1 key to get instant help, or visit www. virtualbox.org for more 
information and latest news. 
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EXERCISE 9.3 (continued) 


2. Click the blue New icon to create a new virtual machine, and give it a name. 


The Type and Version boxes aren't critical; they don’t affect anything. If you type in 
Lubuntu for a name, it will automatically set Type to Linux and Version to Ubuntu 
(64-bit), even though you are installing a 32-bit version. Again, these boxes don’t 
affect anything tangible. 


Click Next. 


4. Inthe Memory Size window, set the memory size (or leave it at the default), and then 
click Next. 


5. Inthe Hard Disk window, the default option is Create a Virtual Hard Disk Now. Leave 
that option selected and click Create. 


You will be prompted for what hard disk file type you want to create. 
6. Leave it on VDI and click Next. 


On the next screen, you can choose to make the virtual disk a fixed size or allow its 
size to be dynamically allocated based on need. Either Dynamically Allocated or 
Fixed Size is fine. 


If you are low on disk space, go with Fixed Size, and click Next. 


8. Inthe File Location and Size window, it’s probably best to leave it at the default size 
of 10 GB. Definitely don’t make it any smaller. 


9. Click Create. 


Now you will see a screen like the one shown in Figure 9.25. 


FIGURE 9.25 One virtual machine created 





Š Oracle VM VirtualBox Manager = o x 
File Machine Help 


ee yo. A - W- 


New Settings Discard Start Machine Tools Global Tools 

ep Lubuntu Welcome to VirtualBox! 

mf © Powered Off 
The left part of this window lists all virtual machines and virtual machine groups on 
your computer. 
The right part of this window represents a set of tools which are currently opened 
(or can be opened) for the currently chosen machine. For a list of currently available 
tools check the corresponding menu at the right side of the main tool bar located at 
the top of the window. This list will be extended with new tools in future releases. 
You can press the F1 key to get instant help, or visit www.virtualbox.org for more 
information and latest news. 





Tool to observe virtual machine (VM) details. Reflects groups of properties for the currently chosen VM and allows 5] 


Details 
basic operations on certain properties (like the machine storage devices). 





Snapshots 

Tool to control virtual machine (VM) snapshots. Reflects snapshots created for the currently selected VM and fel 
allows snapshot operations like create, remove, restore (make current) and observe their properties. Allows to 

edit snapshot attributes like name and description. 
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Great! You now have a virtual machine on your hard drive. 


Installing the OS 


Now you just need to put something on it—more specifically, an OS. 


1. 
2. 


Click the Settings button. 
In the Lubuntu - Settings window, click the Storage icon on the left. 


Under one of your controllers, you should see something that looks like a disc icon 
that says Empty. It should look like Figure 9.26. 


FIGURE 9.26 Lubuntu - Settings dialog box 
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On the very right side of the window, you will have another disc icon with a little 
down arrow on it. 


Click the down arrow. A menu will pop up. 
Select Choose Virtual Optical Disk File. 


In the window that pops up, navigate to the directory where you stored the Lubuntu 
ISO file that you downloaded. 


Highlight the file, and then click Open. 
That will take you back to the Lubuntu — Settings window. 


Back on the Lubuntu — Settings dialog, your drive that was empty should now show 
the name of the .iso file you selected. 
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EXERCISE 9.3 (continued) 


7. Click OK. 
Now you are back to the Oracle VirtualBox Manager screen. 
8. With Lubuntu on the left highlighted, press the green Start arrow. 
This will begin the installation of Lubuntu. 
9. Choose a language, and then Lubuntu will continue installation. 
10. Follow the Lubuntu installation process. 


11. During the installation, you may get to a screen similar to the one shown in Figure 9.27, 
which asks you for an installation type. It looks scary, but choose the Erase Disk and 
Install Lubuntu option. 


This will install Lubuntu on the virtual disk that you created earlier with VirtualBox. It 
will not wipe out your entire hard drive. 


FIGURE 9.27 Installation type 


Installation type 


This computer currently has no detected operating systems. What would you like to do? 


Erase disk and install Lubuntu 
Warning: This will delete any Files on the disk. 


© 


You can create or resize partitions yourself, or choose 
multiple partitions For Lubuntu. 


& Something else 


Quit < Back | Continue | 





12. Continue with the installation process. When in doubt, choose the default and move 
to the next step. 


When the installation is complete, you may need to click the Restart Now button. 
If no button appears, Lubuntu will start automatically. It will look something like 
Figure 9.28. 
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FIGURE 9.28 Lubuntu running in Oracle VM VirtualBox 





Fj Lubuntu [Running] - Oracle VM VirtualBox = o x 


File Machine View Input Devices Help 


Install 
Lubuntu 18.... 





m % P 4) 17:28 © 








COLIS Am A AE 





Now that the installation is complete, play around in your new operating system! 
Some suggested additional exercises are included in this chapter's performance-based 
question. 


Summary 


In this chapter, you learned about different server roles and technologies that work on local 
networks as well as ones that work on the Internet to make the cloud possible. 

First, you learned about specific server roles. Options include web, file, print, DHCP, 
DNS, proxy, mail, authentication, and syslog servers. We talked about what each one 
of these does as well as where they should be located on the network, either inside the 
secure network or in the DMZ. In addition to servers, many networks will have Internet 
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appliances dedicated to security, such as IDS, IPS, and UTM devices. Network manage- 
ment can be made easier by endpoint management servers. Some networks also support 
legacy or embedded systems. Although these systems are old and outdated, they often pro- 
vide critical functionality on the network. 

The next topic was cloud computing. Cloud computing has become one of the hottest 
topics in IT circles. Cloud providers sell several different types of services, such as IaaS, 
PaaS, and SaaS. There are also different types of clouds, such as public, private, commu- 
nity, and hybrid. Cloud features include rapid elasticity, on-demand service, and resource 
pooling. Most cloud providers will meter or measure the service and charge appropriately. 
You can use cloud services for storage, virtual applications (such as email or word process- 
ing), or both. Cloud computing is dependent upon virtualization. 

Virtualization removes the barrier of there being a one-to-one relationship between com- 
puter hardware and an operating system. You learned about what virtualization does and 
the core piece of software, called the hypervisor. You also learned about requirements for 
client-side virtualization. The chapter finished with a long exercise on installing a hypervi- 
sor and Linux Ubuntu on a Windows computer. 


Exam Essentials 


Know the various roles that servers can play on a network. Roles include web, file, print, 
DHCP, DNS, proxy, mail, authentication, and syslog server. Web servers host web pages 
that users access across a network. File servers store files for users, and often have optical 
media and perform backups too. Print servers host printers. Proxy servers make requests on 
behalf of clients. Mail servers store, send, and receive email. Authentication servers validate 
user credentials and then allow users to access resources. A syslog server is used to log 
system events. 


Understand where on the network various servers should be placed. Every server should 
be secured behind a firewall, but some servers should be more secure and on an internal 
network, whereas others can be in the DMZ. The general rule of thumb is that if users need 
to get on the server from the Internet, then it should be in the DMZ. 


Understand how DHCP servers work. DHCP servers assign IP addresses and configura- 
tion information to client computers. Clients request the information via broadcast. Each 
DHCP server has a scope with a configured range of available IP addresses. The server may 
also provide additional configuration information, such as the address of the default gateway 
(a router) and a DNS server. 


Know what DNS servers do. DNS servers resolve hostnames to IP addresses. Without 
DNS servers, finding your favorite websites on the Internet would be an incredibly 
challenging task. 


Know the difference between an IDS and an IPS. An intrusion detection system (IDS) 
is a passive device that monitors and logs network traffic for suspicious traffic that might 
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indicate an attack is underway. An intrusion prevention system (IPS) monitors the network 
for the same activities, but it can take action to mitigate the attack. 


Understand what UTM and endpoint management servers do. Unified threat manage- 
ment (UTM) servers centralize security management and often replace traditional firewalls. 
An endpoint management server helps an administrator manage all systems on a network, 
such as by deploying security patches and updates, and configuring clients from a central 
location. 


Know what legacy and embedded systems are. Legacy systems are older technology and 
no longer supported by the manufacturer. Embedded systems are those that are critical to a 
process. 


Know the differences between SaaS, IaaS, and PaaS. All of these are cloud terms. In 
Infrastructure as a Service (IaaS), the provider supplies the network infrastructure. In 
Platform as a Service (PaaS), software development tools and platforms are also provided. 
The highest level is Software as a Service (SaaS), where the provider supplies the infrastruc- 
ture and applications. 


Understand the four different types of clouds. A cloud can be public, private, hybrid, or 
community. 


Understand cloud concepts of shared resources, cloud file storage services, and virtual 

or cloud-based applications. All clouds use shared resources, which can be internal or 
external. A pool of resources is purchased and each participant in the cloud pays for part 
of it. Cloud file storage services include iCloud and Google Cloud, and in most cases have 
synchronization apps to sync to the mobile device. Virtual and cloud-based apps can be for 
almost any type of device, including cell phones, tablets, laptops, and desktops. 


Understand the purpose of virtual machines and what they require. Virtual machines are 
designed to save providers and users money. They allow for multiple OSs to be installed on 
one computer. A virtual machine requires certain levels of resources, an emulator, security, 
and a network connection. 


Understand what virtual desktops and virtual NICs are. A virtual desktop is the collection 
of software and hardware needed to create a virtual environment. Sometimes it’s called 

a virtual desktop interface (VDI). The virtual NIC, which is controlled by the virtual 
machine, controls access to other virtual machines on the same system as well as access to 
the physical NIC. 


Know what a hypervisor does. The hypervisor is the most critical piece of software in vir- 
tualization because it allows for multiple guest OSs to be installed on one physical device. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. Your company hosts its own web server, and it allows consumers to make purchases via the 
server. The help line has been getting complaints that users are unable to access the secure 
portion of the website. You open the site and it seems fine, although the secure portion 
where transactions are completed is inaccessible. What is the most likely cause? 


A. The firewall is blocking TCP port 80. 

B. The firewall is blocking TCP port 443. 

C. The security module of the web server is malfunctioning. 
D. The web server is down. 


2. Your manager wants you to install a networked Internet appliance that prevents network 
traffic-based attacks and includes anti-malware and anti-spam software. What should you 


install? 

A. NIPS 
B. NIDS 
Cc. UTM 


D. Endpoint management system 
3. You are installing a file server for the accounting department. Where should this file server 
be located on the network? 
A. Outside of the firewall 
B. Inthe DMZ 
C. Inthe secure network 
D. On the router 


4. You have been asked to identify the right type of cloud service to help the team of develop- 
ers to provide programming elements such as runtime environments. Which service do you 


recommend? 
A. PaaS 

B. IaaS 

C. SaaS 

D. Daas 


5. Which of the following are services that a print server should provide? (Choose two.) 
A. Accepting print jobs from clients 
B. Turning off printers on demand 
C. Providing clients with the appropriate printer driver during installation 
D 


Notifying users when the print job is complete 


10. 


11. 
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You are setting up a cloud contract with a provider. Your team needs the ability to increase 
capacity without intervention from the provider. What do you request? 


A. Rapid elasticity 

B. On-demand self-service 
C. Resource pooling 

D. Measured service 


Which type of server is responsible for preventing users from accessing websites with 
objectionable content? 


A. Proxy 
B. Web 
C. DHCP 
D. DNS 


Your company wants to move to a cloud provider to be able to scale resources quickly, but 
it is concerned about the security of confidential information. Which of the following types 
of cloud models might be the most appropriate for your company? 


A. Public 

B. Private 

C. Community 
D. Hybrid 


What does a DHCP server need to be configured with to operate properly? 

A. DNS server 

B. Scope 

C. Range 

D. DHCP relay agent 

You have been asked to advise a group of several universities that want to combine research 
efforts and store data in the cloud. Which type of cloud solution might be best for them? 
A. Public 

B. Private 

C. Community 

D. Hybrid 


When configuring a DNS server, administrators must create which of the following? 
A. Zone file 

B. Hosts file 

C. Scope file 

D. DNS proxy 
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12. 


13. 


14. 


15. 


16. 


17. 
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Your manager wants to use the cloud because everyone seems to be talking about it. What 
should you include when you are listing the benefits of using the cloud? (Choose all that 


apply.) 

A. Increased security 
B. Increased scalability 
C. Lower cost 

D. Improved reliability 


You are configuring two email servers on your company’s network. Which network 
protocol do the servers use to transfer mail to each other? 


A. POP3 
B. IMAP4 
C. SNMP 
D. SMTP 


You have been asked to configure a client-side virtualization solution with three guest OSs. 
Each one needs Internet access. How should you configure the solution in the most cost- 
effective way? 


A. Three physical NICs 

B. One physical NIC, three virtual NICs, and one virtual switch 

C. One physical NIC, one virtual NIC, and three virtual switches 
D. One physical NIC, three virtual NICs, and three virtual switches 


Which record type on a DNS server represents an IPv6 host? 


A. A 

B. MX 

C. CNAME 
D. AAAA 


You have been asked to install Linux in a VM on a Windows 10 client. The Windows 10 
client needs 4 GB RAM, and Linux needs 2 GB RAM. How much RAM does the system 
need at a minimum? 


A. 4GB 
B. 6GB 
C. 8GB 


D. Unable to determine from the question 

A computer using which of the following would be considered a legacy device? (Choose all 
that apply.) 

A. A 386 processor 

B. The IPX/SPX protocol 

C. An application developed in 1983 

D. Only 1GBRAM 
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18. You have been asked to set up client-side virtualization on an office computer. The host OS 
is Windows 7, and there will be three Windows 7 guest OSs. Which of the following is true 
about the need for antivirus security? 


A. The host OS needs an antivirus program, but virtual machines can’t be affected by 
viruses. 


B. The host OS antivirus software will also protect the guest OSs on the VMs. 
C. Installing antivirus software on the virtual switch will protect all guest OSs. 
D. The host OS and each guest OS need their own antivirus software installed. 
19. You have been asked by your manager to brief the group on security appliances. What is 
the difference between IDS and IPS? 
A. IDS is active, whereas IPS is passive. 
B. IDS is passive, whereas IPS is active. 


C. IDS monitors internal network traffic, whereas IPS monitors traffic coming from the 
Internet. 


D. IDS monitors traffic coming from the Internet, whereas IPS monitors internal network 
traffic. 
20. You have been asked to set up client-side virtualization on a computer at work. The manager 
asks for a Type 2 hypervisor. What is the disadvantage of using that type of hypervisor? 
A. The guest OS will compete for resources with the host OS. 
B. The guest OS will be forced to a lower priortity with the CPU than the host OS. 
C. The guest OS will be forced to use less RAM than the host OS. 
D. The virtual guest OS will not be able to get on the physical network. 


Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answer compares to the authors’, refer 
to Appendix B. 

Using Lubuntu, perform the following administrative tasks: 


1. Create a user account. 


2. Manage the hard drives. See how much hard drive space is available. Determine which 
filesystem is used. 


Create files and folders. Copy or move them from one location to another. 
Change the desktop background. 


Configure accessibility options for users with special needs. 
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THE FOLLOWING COMPTIA A+ EXAM 
220-1001 OBJECTIVES ARE COVERED 
IN THIS CHAPTER: 


vy 1.1 Given a scenario, install and configure laptop 
hardware and components. 


a Keyboard 

a Hard Drive 
a SSD vs. hybrid vs. magnetic disk 
a 1.8in vs. 2.5in 

a Memory 

= Smart card reader 

= Optical drive 

a Wireless card/Bluetooth module 

a Cellular card 

= Video card 

= MiniPCle 

= Screen 

a DC jack 

= Battery 

= Touchpad 

= Plastics/frames 

= Speaker 

= System board 

= CPU 


vy 1.2 Given a scenario, install components within the 
display of a laptop. 


a Types 
a LCD 
a OLED 





WiFi antenna connector/placement 
Webcam 

Microphone 

Inverter 


Digitizer/touch screen 


Given a scenario, use appropriate laptop features. 


Special function keys 





s Dual displays 
= Wireless (on/off) 
a Cellular (on/off) 
a Volume settings 
= Screen brightness 
= Bluetooth (on/off) 
= Keyboard backlight 
= Touchpad (on/off) 
a Screen orientation 
a Media options (fast-forward/rewind) 
= GPS (on/off) 
= Airplane mode 
=» Docking station 
= Port replicator 
= Physical laptop lock and cable lock 


= Rotating/removable screens 


Z 3.9 Given a scenario, install and configure common 
devices. 


a Laptop/common mobile devices 
a Touchpad configuration 
= Touch screen configuration 


a Wireless settings 





As recently as the early 1990s, portable computers were luxu- 
ries that were affordable to only the wealthy or the select few 
businesspeople that traveled extensively. As with all other 
technologies, though, portable systems have gotten smaller, lighter (more portable), more 
powerful, and less expensive. Because the technology and price disparity between the two 
platforms has decreased significantly, laptops have outsold desktops since the mid-2000s. 
Every indication is that the movement toward mobile computing will continue, so you defi- 
nitely need to be well versed in portable technologies, which contain both nifty features and 
frustrating quirks. For this discussion, assume that a portable computer is any computer that 
contains all of the functionality of a desktop computer system but is portable. Most people 
define portability in terms of weight and size. So that we can discuss things on the same level, 
let’s define portable as less than 10 pounds and smaller than an average desktop computer. 





Of course, laptops are not the only types of portable computers in the market 
TE today. There are Chromebooks, tablets, and a variety of handheld smart- 

phones that can also lay claim to being called computers. For the purpose of 

this chapter, we'll focus primarily on laptops, but many of the principles will be 


applicable to other, smaller portable computers as well. For specific material 
on smaller mobile devices, see Chapter 11, “Understanding Mobile Devices.” 


The original portable computers were hardly portable—hence, the unofficial term 
luggable. They were the size of a small suitcase and could weigh 50 pounds. Not only were 
they greatly inferior to desktops in technology, they were also outrageously expensive. It’s 
no wonder few people purchased them. Compaq, Kaypro, IBM, and Osborne made some of 
the first luggable computers. 

Laptops were the next type of portable computer. They contain a built-in keyboard, 
pointing device, and a liquid crystal display (LCD) screen in a clamshell design. They are 
also called notebook computers because they resemble large notebooks. Most portable 
computers in use today are laptop computers. 

In this chapter, you will learn about laptop computer architecture and how it differs 
from desktop computer architecture, including specific laptop hardware technologies. After 
we examine the components, we’ll give examples of how to replace or repair them. 


Working with Laptops 


Laptops are similar to desktop computers in architecture in that they contain many parts 
that perform similar functions. However, the parts that make up a laptop are completely 
different from those in desktop computers. The obvious major difference is size; laptops 
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are space challenged. Another primary concern is heat. Restricted space means less airflow, 
meaning parts can heat up and overheat faster. 

To overcome space limitations, laptop parts are physically much smaller and lighter, 
and they must fit into the compact space of a laptop’s case. It might not sound like much, 
but there really is a major difference between a 4.5-pound laptop and a 5.5-pound laptop 
if you’re hauling it around in its carrying case all day. Also, laptop parts are designed to 
consume less power and to shut themselves off when not being used, although many desk- 
tops also have components that go into a low-power state when not active, such as video 
circuitry. Finally, most laptop components are proprietary—the motherboard is especially 
proprietary, and the LCD screen from one laptop will not necessarily fit on another. 

Manufacturers have also pushed out smaller and smaller portables as technology has 
improved. For example, in 2007 the first netbooks were introduced. A netbook is an extremely 
small laptop computer that is lighter in weight and more scaled down in features than a stan- 
dard laptop. The term netbook is rarely used today, but Chromebooks are an example of that 
type of technology. Users are attracted to Chromebooks because of their enhanced portabil- 
ity and affordability. The features that remain are ideal for Internet access and emailing. 
However, many users would find them insufficient for mainstream business usage. 

In the following sections, you will learn about the various components that make up 
laptops and how they differ from desktop computer components. If you don’t remember 
exactly what each component does, it may help you to refer back to earlier hardware chap- 
ters occasionally as you read this chapter. 


Laptops vs. Desktops 


If you’ve shopped for a laptop, you have no doubt noticed that the prices of desktop PCs 
are often quite a bit lower than those for notebook computers, yet the desktops are usually 
faster and more powerful. If you’ve ever wondered what makes a laptop so much different 
from a PC, here are the primary differences between laptops and desktops: 


Portability This is probably the most obvious difference. Laptops are designed to be porta- 
ble. They run on batteries, so you aren’t tied to one spot at home or at the office. Networking 
options are available that allow you to connect to a network wirelessly and do work from just 
about anywhere, including malls, airports, coffee shops, and so on. As anyone who has tried 
to bring their mini-tower PC to a LAN party can tell you, desktops just aren’t that portable. 


Cost Laptops tend to cost more than desktop computers with similar features. The pri- 
mary reason is that portability requires small components and unique proprietary designs 
so that those components fit into the small size necessary. Miniature versions of components 
cost more money than standard-sized (desktop) versions. The cost discrepancy between 
desktops and laptops has shrunk considerably in the last several years, but it still exists. 


Performance By and large, laptops are always going to lose out somewhere in the 
performance department. Compromises must often be made between performance and 
portability, and considering that portability is the major feature of a laptop, performance 
is what usually suffers. While it is possible to have a laptop and a desktop with comparable 
performance, the amount of money one would have to spend for a “desktop replacement” 
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laptop is considerable. This is not to say that a laptop can’t outperform a desktop, it’s just 
that the “bang for the buck” factor is higher in a desktop. 


Expandability Because desktop computers were designed to be modular, their capabilities 
can be upgraded quite easily. It is next to impossible to upgrade the processor or mother- 
board on most laptops. Other than memory and hard drives, most laptop upgrades consist 
of adding an external device through one of the laptop’s ports, such as a USB port. 


Quality of Construction Considering how much abuse laptops get, it is much more impor- 
tant that the materials used to construct the laptop case and other components be extremely 
durable. Durability is important in a desktop too, but it won’t be tested as much as in a laptop. 








Building Your Own 


This anecdote comes from one of the authors: “During an A+ course, | gave the class 

the assignment to go out on the web and put together the most powerful and complete 
computer they could for under a thousand dollars. The class was for non-degree-seeking 
adults, so nothing was graded; it was simply to provide experience with spec’ing out and 
pricing the parts that go into making a complete system. 


“One of the students had her eye on a new laptop for personal use. Because she noticed the 
trend toward being able to build a desktop computer for less than she could buy one, the 
student assumed the same about laptops. Unfortunately, | had not specifically mentioned the 
fact that there are no standards for building complete laptop clones, unlike with desktops. 


“You can’t reliably build your own laptop. Because laptop components are designed to exact- 
ing specifications to fit properly inside one manufacturer’s notebook, there generally are 

no universal motherboards, video boards, and so on for laptops. Memory and hard drives 
are the exception. You can get different brands of memory and hard drives for laptops, but 
you can’t buy a motherboard from one company and the video circuitry from another. Even 
things as common as optical drives may work only with a specific brand or model.” 





Now that we’ve illustrated the primary differences between laptops and desktops, let’s 
examine some principles for taking laptops apart and putting them back together. 


Disassembling and Reassembling Laptops 


Desktop computers often have a lot of empty space inside their cases. This lets air circulate 
and also gives the technician some room to maneuver when troubleshooting internal hard- 
ware. Space is at a premium in laptops, and rarely is any wasted. With a desktop computer, 
if you end up having an extra screw left over after putting it together, it might not be a big 
deal. With laptops, every screw matters, and you’ll sometimes find yourself trying to iden- 
tify visually miniscule differences between screws to make sure that you get them back into 
the right places. 
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Even though repairing a laptop poses unique issues, most of the general troubleshoot- 
ing and safety tips that you use when troubleshooting a desktop still apply. For example, 
always make sure that you have a clean and well-lit workspace and be cautious of electro- 
static discharge (ESD). General safety tips and ESD prevention are covered in Chapter 26, 
“Safety and Environmental Concerns.” For now, our general advice is to use anti-static 
mats or wrist straps if they’re available. 


_ Throughout this section, we'll use the word laptop almost exclusively. The 
‘Gr principles covered here apply to nearly all portable devices, though, even 
tablets and smartphones. 


One of the key principles for working with laptops is using the right tools to tear the 
thing apart. It’s doubtful that any technician goes into a job thinking, “Hey, I’m going to 
use the wrong tools just to see what happens.” With laptops, though, it’s especially impor- 
tant to ensure that you have exactly the tools you’ll need for the job. The two main camps 
of materials you need are the manufacturer’s documentation and the right hand tools. We’ll 
also emphasize the importance of organization. 


Using the Manufacturer’s Documentation 


Most technicians won’t bat an eye at whipping out their cordless screwdriver and getting 
into a desktop’s case. The biggest difference between most desktops is how you get inside 
the case. Once it’s opened, everything inside is pretty standard fare. 

Laptops are a different story. Even experienced technicians will tell you to not remove a sin- 
gle screw until you have the documentation handy unless you’re incredibly familiar with that 
particular laptop. Most laptop manufacturers give you access to repair manuals on their web- 
site. Table 10.1 lists the service and support websites for some of the top laptop manufacturers. 


TABLE 10.1 Laptop manufacturers’ service and support websites 





Company URL 

Apple https://support.apple.com/mac 

Asus https: //www.asus.com/support 

Dell https: //www.dell.com/support 

HP https: //support.hp.com/ 

Lenovo https://support. Lenovo.com 

Sony https: //www.sony.com/electronics/support 


Toshiba https://support.toshiba.com 
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If the site you need isn’t listed, a quick Google search should do the trick. Once you are 
at the right website, search for the manual using the laptop’s model number. 


ZL Some laptop manufacturers have a policy that if you open the case of a 
INING laptop, the warranty is voided. Be sure to understand your warranty status 


and implications of cracking the case open before you do it. 


Using the Right Hand Tools 


Once you have the manual in hand or on your screen, you need to gather the right hand 
tools for the job. For some laptops, you only need the basics, such as small Phillips-head 
and flat-head screwdrivers. For others, you may need a Torx driver. Gather the tools you 
need and prepare to open the case. A small flashlight might also come in handy. Small PC 
technician toolkits are readily available online or from your favorite electronics retailer. 
They may have a few different sizes of screwdrivers, hex drivers, Torx drivers, tweezers, 
a screw grabber, and a few other assorted goodies, all in a convenient carrying case. An 
example is shown in Figure 10.1. Find one you like and never leave home without it. 


FIGURE 10.1 PC technician toolkit 


ii 
s 
H 
a| 











The Consequences of Using the Wrong Tools 


It’s been said once, but it’s important to say it again: Always use the right tool for the job 
when repairing laptops. If the documentation says that you need a T-10 Torx driver, make 
sure that you have a T-10 Torx driver. 


Not using the right tools can result in the stripping of the screw head. If you strip a screw 
head in a desktop, you might have alternative methods of removing the screw. Laptops 
are far less forgiving. If you strip a screw head and are unable to turn the screw, you may 
never be able to remove it. That could result in needing to scrap the device. 
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Organization and Documentation 


Before you crack open the case of your laptop, have an organization and documentation 
plan in place. Know where you are going to put the parts. Have a container set aside for the 
screws. You can purchase small plastic containers that have several compartments in them 
with lids that snap tightly shut, into which you can place screws. You can also use contain- 
ers designed to organize prescription pills or fishing tackle. The bottom of an egg carton 
works well too, provided that you don’t need to transport the screws from place to place. 
You don’t want the screws falling out and getting lost! 

For documentation, many technicians find it handy to draw a map of the computer they’re 
getting into, such as the one shown in Figure 10.2. It can be as complex as you want it to be, 
as long as it makes sense to you. Taking pictures with your phone is also a smart move, pro- 
vided that you’re allowed to use your phone and don’t violate any security or privacy policies. 


FIGURE 10.2 Laptop repair “road map” 
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The drawing in Figure 10.2 shows the locations of the screws, and it also calls out where 
the screws should be placed once they’re removed. Again, this type of documentation can 
be as simple or complex as you want it to be, as long as it makes sense and helps you stay 
organized. 

Now that we’ve covered some key principles, let’s take a look at specific components, 
technologies involved, and how to deal with them. 


Working with Laptops 549 


Laptop Case 


A typical laptop case is made up of three main parts: 
=a The display—usually an LCD or light emitting diode (LED) display 


= The case structure, which is the metal reinforcement inside the laptop that provides 
rigidity and strength and to which most components are mounted 


= The case, or the plastic or aluminum cover that surrounds the components and 
provides protection from the elements 


The cases are typically made of some type of plastic (usually ABS plastic or ABS com- 
posite) to provide for reduced weight as well as strength. 


Some notebooks have cases made of a strong, lightweight metal, such as 
TE aluminum or titanium. However, the majority of laptop cases are made of 


plastic. 


Laptop cases are made in what is known as a clamshell design. In a clamshell design, the 
laptop has two halves, hinged together at the back. The display portion, called the top half, 
often includes a webcam, microphone, and Wi-Fi antenna. All other components, including 
the motherboard, memory, storage, keyboard, battery, cooling fan, and speakers, are in the 
bottom half. 

Occasionally, part of the laptop’s case or the device’s frame (occasionally referred to 
as plastics) will crack and need to be replaced. However, you usually can’t just replace 
the cracked section. Most often, you must remove every component from inside the lap- 
top’s case and swap the components over to the new one. This is a labor-intensive process 
because the screws in laptops are often very small and hard to reach. 

Often, repairing a cracked case may cost several hundred dollars in labor alone. Most 
times, people who have cracked laptop cases wait until something else needs to be repaired 
before having the case fixed. Or, they just wait until it’s time to upgrade to a new system. The 
decision on when to repair or replace the laptop boils down to a few factors. The primary one 
is if the user can live with the damage. While they can be annoying, most case problems don’t 
inhibit the operation of the machine. The secondary factor is money. The user (or company) 
needs to decide if it’s really worth spending the money needed to fix the issue immediately. 


P In the A+ objectives, you will see the words plastics and frames used 
OTE together. These terms are basically interchangeable with the term laptop 
case. It just depends on whom you talk to. In real life, the term plastics is 
used infrequently, probably because it sounds kind of weird and not all 
cases are plastic. Know that the terms all mean basically the same thing, 
and use the one that best suits your tastes. 


One of the components you may need to service is the speakers, which are generally 
built into the bottom part of the case. Exercise 10.1 will provide an example of removing 
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speakers from a Dell Inspiron 13 7000 laptop. We’ll use that model for an example 
throughout this chapter. We realize that you might not have this model, but the exercises 
can help you understand the process. If you have a different model, download its service 
manual and perform the necessary steps. 


To get the most out of the exercises in this chapter, it’s best if you're able 

P to perform them on a laptop. However, we realize that not everyone has 
access to a laptop they can tear apart. If you don't have a laptop you can 
perform surgery on, here are a few options you can try: 


m Download a service manual for the laptop you have (or another 
model that seems interesting). Look for directions on how to 
remove or replace the components we describe, so you can get a 
feel for how you would perform the tasks. 


=m Visita local computer repair shop and ask if they have any old 
laptops that they are going to take to recycling. Explain that you are 
studying for the A+ exam and would like to get experience taking 
apart a laptop. See if they will let you take one apart at their facility. 
(You never know until you ask!) 


a Visit YouTube or www.ifixit.com and look up videos for how to 
replace components on your laptop or another model that seems 
interesting. 


Before we get to Exercise 10.1, we want to remind you of a few safety steps to take 
before working on a laptop. We’re not going to repeat these instructions before every exer- 
cise, but always perform these steps before beginning digging into a laptop (or a desktop, 
for that matter): 


1. Turn off the computer. 


2. Disconnect all external peripherals and cables, such as keyboards, mice, monitors, and 
network cables. 


Unplug it from the power source. 
Ensure that your workspace is free of clutter and well lit. 


Have the manual or help videos handy, just in case. 


on Fw 


Make sure you have the proper tools readily available. (This might include a phone to 
take pictures with.) 


7. Ground yourself with an ESD wrist strap or other anti-static protection. 


Removing Speakers from a Laptop 


1. Remove the bottom cover. As shown in Figure 10.3, this model requires removing 
nine screws to take the cover off. 
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FIGURE 10.3 Removing nine screws to take off the bottom cover 





2. Make a mental note of the key components and their location, or better yet, take a 
picture with your phone like the one in Figure 10.4. 


FIGURE 10.4 Inside the Inspiron 13 7000 
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EXERCISE 10.1 (continued) 


3. Disconnect the speaker cable from the motherboard, as shown in Figure 10.5. 


FIGURE 10.5 Disconnecting the speaker cable 





4. Remove the speaker cable from the wire routing guides on the base assembly. 


Figure 10.6 shows the speaker wire that travels from the left speaker to the right speaker. 


FIGURE 10.6 The speaker wire 
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5. Remove the rubber grommets that hold the speakers in. 
Figure 10.6 shows the two from the right speaker. The left speaker has three. 
6. Carefully remove both speakers from the base assembly. 


To replace the speakers, follow the steps in reverse order. Insert the new speakers, 
replace the grommets, run the speaker wire through the guides, and connect the speaker 
to the motherboard. 


Removing the speakers from the Dell Inspiron 13 7000 was relatively easy. On some 
laptops, the speakers or speaker wire are completely buried underneath several other com- 
ponents, and you need to remove those first. As we move through this chapter, you will see 
situations where you need to remove several components before you can get to the one you 
want. Motherboards are a classic example. 


Motherboards and Processors 


As with desktop computers, the motherboard of a laptop is the backbone structure to 
which all internal components connect. However, with a laptop, almost all components 
must be integrated onto the motherboard, including onboard circuitry for the USB, video, 
expansion, and network ports of the laptop. With desktop systems, the option remains 

to not integrate such components. Because of the similarities between laptop and desktop 
components, some material in the next few sections will be familiar to you if you have read 
Chapter 1, “Motherboards, Processors, and Memory.” 


Laptop Motherboards 


The primary differences between a laptop motherboard and a desktop motherboard are 
the lack of standards and the much smaller form factor. As mentioned earlier, most moth- 
erboards are designed along with the laptop case so that all the components will fit inside. 
Therefore, the motherboard is nearly always proprietary, and that’s what we mean by 
“lack of standards.” They use the technologies you’re used to, such as USB and Wi-Fi, but 
it’s very unlikely that you’re going to be able to swap a motherboard from one laptop to 
another, even if both laptops are from the same manufacturer. Figure 10.7 shows an exam- 
ple of a laptop motherboard. Its unusual shape is designed to help it fit into a specific style 
of case with the other necessary components. 
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FIGURE 10.7 A laptop motherboard 
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The A+ objectives use the term system board, which is synonymous with 
ITE motherboard. 


To save space, components of the video circuitry (and possibly other circuits as well) may 
be placed on a thin circuit board that connects directly to the motherboard. This circuit 
board is often known as a riser card or a daughterboard; an example is shown in Figure 
10.8. We also labeled them in the Dell in Figure 10.4. They’re harder to see when they’re 
in the case with other components, but you may be able to tell that they have very different 
shapes from those in Figure 10.7 and Figure 10.8. 


Dell happens to call this daughterboard an input/output board, or I/O 

OTE board. This model also has another daughterboard. If you were ordering 
parts, you'd want to specify I/O board or daughterboard, but for general 
purposes, the term daughterboard is applicable. 
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FIGURE 10.8 _ A laptop daughterboard 





Having components performing different functions (such as video, audio, and networking) 
integrated on the same board is a mixed bag. On one hand, it saves a lot of space. On the other 
hand, if one part goes bad, you have to replace the entire board, which is more expensive than 
just replacing one expansion card. Exercise 10.2 walks you through the steps to remove the 
motherboard from the Dell Inspiron 13 7000. As you'll see, you need to remove several com- 
ponents and disconnect several connectors before you can get the motherboard out. 





Removing the Motherboard from a Laptop 
1. Remove the bottom cover. 

Remove the battery. 

Remove the fan. 

Remove the heat sink. 


Remove the solid-state drive. 


Or Ol oe IN 


Disconnect all the connectors plugged into the motherboard. 


Be careful, because two of them (for the I/O cable and the display cable) have a latch 
that needs to be released first. By our count, there are nine connectors. We've high- 
lighted them in Figure 10.9. The two with latches have rectangles around them, and 

the rest have ovals. 
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EXERCISE 10.2 (continued) 


FIGURE 10.9 Disconnecting the motherboard connectors 





7. Remove the two screws from the system board bracket. They're shown in 
Figure 10.10 with circles around them. 


FIGURE 10.10 Removing the screws 
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8. Remove the system board bracket. 


9. Remove the three screws that hold the motherboard to the base assembly. In 
Figure 10.10, they are highlighted with squares around them. 


10. Lift the motherboard off of the base assembly. 


To replace the motherboard, follow the steps in reverse order. 


Laptop Processors 


Just as with desktop computers, the central processing unit (CPU) is the brain of the laptop 
computer. And just like everything else, compared to desktop hardware devices, laptop 
hardware devices are smaller and not quite as powerful. The spread between the speed 

of and number of cores in a laptop CPU and that of a desktop model can be significant. 
Fortunately, the gap has closed over the years, and laptop processors today are pretty fast— 
most people think they perform just fine. It’s up to the user to determine if the difference in 
speed hurts their usage experience. 

Laptops have less space than desktops, and therefore the CPU is usually soldered onto 
the motherboard and is not upgradable. You can see the processor of the Dell we’ve been 
working on in Figure 10.10—it’s the small silver square to the left of the RAM. Within 
confined computing spaces, heat is a major concern. Add to that the fact that the processor 
is the hottest-running component, and you can see where cooling can be an issue. To help 
combat this heat problem, laptop processors are engineered with the following features: 


Streamlined Connection to the Motherboard Nearly all desktop processors mount using 
pin connectors, whether on the CPU or on the motherboard (as is the case with LGA sockets). 
Pins and sockets are big and bulky, meaning they’re not a laptop’s friends. Laptop processors 
are generally either soldered directly to the motherboard or attached using the Micro-FCBGA 
(Flip Chip Ball Grid Array) standard, which uses balls instead of pins. In most cases, this 
means that the processor cannot be removed, meaning no processor upgrades are possible. 


Lower Voltages and Clock Speeds To combat heat, you can either slow the processor 
down (run it at a lower speed) or give it less juice (run it at a lower voltage). Again, perfor- 
mance will suffer compared to a desktop processor, but lowering heat is the goal here. 


Active Sleep and Slowdown Modes Most laptops will run the processor in a lower power 
state when on battery power in an effort to extend the life of the battery. This is known as 
processor throttling. The motherboard works closely with the operating system to determine 
if the processor really needs to run at full speed. If it doesn’t, it’s slowed down to save energy 
and to reduce heat. When more processing power is needed, the CPU is throttled back up. 


While many portable computers will have processors that have just as many features as 
their desktop counterparts, others will simply use stripped-down versions of desktop pro- 
cessors such an Intel Core series processor. While there’s nothing wrong with this, it makes 
sense that components specifically designed for notebooks fit the application better than 
components that have been retrofitted for notebook use. Consider an analogy to the auto- 
mobile industry: It’s better to design a convertible from the ground up than simply to cut 
the top off an existing coupe or sedan. 
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Memory 


Laptops don’t use standard desktop computer memory chips, because they’re too big. In 
fact, for most of the history of laptops, there were no standard types of memory chips. If 
you wanted to add memory to your laptop, you had to order it from the laptop manufac- 
turer. Of course, because you could get memory from only one supplier, you got the privi- 
lege of paying a premium over and above a similar-sized desktop memory chip. 

However, there are now two common types of laptop memory packages: SODIMM and 
MicroDIMM. Nevertheless, modern laptop manufacturers may still opt to go the propri- 
etary route due to design considerations that favor a custom solution. In fact, many ultra- 
thin laptop models will have the RAM soldered onto the motherboard to save space. Such 
systems are not upgradable. To see what kind of memory your laptop uses, check either the 
manual or the manufacturer’s website. You can also check third-party memory producers’ 
websites (such as www. crucial. com). 


SODIMM 


The most common memory form factor for laptops is called a small outline DIMM 
(SODIMM), which we introduced in Chapter 1. Recall that they’re much smaller than 
standard DIMMs, measuring 67.6 millimeters (2.6”) long and 32 millimeters (1.25”) 
tall. SODIMMs are available in a variety of configurations, including older 32-bit 
(72-pin and 100-pin) and 64-bit (144-pin SDRAM, 200-pin DDR/DDR2204-pin 
DDR3, and 260-pin DDR4) options. DDR4 SODIMMs are slightly longer (69.6 mm) 
than other SODIMMs (67.6 mm). You probably won’t be able to tell the difference 
unless they are right next to each other, or they don’t fit in the socket right. (You should 
never have the latter problem, though, because you will check the documentation first!) 
Figure 10.11 shows a laptop DDR3 SODIMM under a desktop DDR2 DIMM for a size 
comparison. 


FIGURE 10.11 Desktop DIMM and laptop SODIMM 


© 168 2Ax8 PC2-5300U-555-12-E3 





Working with Laptops 559 


You'll also see SODIMM spelled as SO-DIMM. 
OTE 


Just as with desktop computers, make sure the SODIMM you want to put into the lap- 
top is compatible with the motherboard. The same standards that apply to desktop memory 
compatibility apply to laptops. This means that you can find DDR, DDR2, DDR3, and 
DDR4 SODIMMs for laptops. DDR has topped out at 1 GB per module, while DDR2 and 
DDR3 SODIMM modules can be purchased in sizes up to 8 GB and DDR4 up to 16 GB 
(at the time this book was being written), which lags desktop DIMM capacity by a bit. 
Exercise 10.3 shows you how to replace SODIMMs in a laptop. 


Replacing Laptop Memory 
1. Remove the bottom cover. 
2. Remove the battery. 
3. Locate the system memory. 
In the Dell Inspiron 13 7000, the two RAM modules are under Mylar flaps. 


4. Pull a Mylar flap back to reveal the RAM, as shown with one of the SODIMMs in 
Figure 10.12. 


FIGURE 10.12 SODIMM ina laptop 
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EXERCISE 10.3 (continued) 


5. Carefully spread apart the metal securing clips on each end of the memory module. It 
will pop up as shown in Figure 10.13. 


FIGURE 10.13 Removing a SODIMM 
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6. Lift the memory module out of the slot. 


When replacing the SODIMM, be sure to align the notch, and insert the module at the 
approximate angle it was at when it popped up after being released. Slowly press down 
on the module until it clicks into place. If it doesn’t click into place, it’s not inserted 
properly. 


MicroDIMM 


Although it’s been around a while, the MicroDIMM is a newer form factor for laptop 
memory modules. The MicroDIMM is an extremely small RAM form factor. In fact, it 

is over 50 percent smaller than a SODIMM—only about 45.5 mm (about 1.75”) long and 
30 mm (about 1.2”, a bit bigger than a U.S. quarter) wide. Another major difference is that 
the MicroDIMM does not have any notches on the bottom. Figure 10.14 shows a 172-pin 
MicroDIMM;; notice that it’s a lot closer to being square-shaped than the RAM shown in 
Figure 10.11, in addition to being a lot smaller. It was designed for the ultralight and por- 
table subnotebook style of computer. Common MicroDIMM form factors include 64-bit 
modules with 172 or 214 pins for DDR2/DDR3. 
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FIGURE 10.14 = 172-pin MicroDIMM 
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P MicroDIMMs are becoming less popular over time. It’s difficult to find 
PN DDR3 MicroDIMMs in the market, and as of the time of writing, there are no 
DDR4 MicroDIMMs. 


Storage 


Storage is important for every computer made. If you can’t retrieve important files when 
you need them, the computer isn’t very useful. While the trend is moving toward storing 
more data online (in the cloud), there’s still considerable need for built-in storage. For lap- 
tops, this typically means two types of devices: hard drives and optical drives. 


Laptop Hard Drives 


Laptops don’t have the room for the full-sized 3.5” hard drives that desktop computers use. 
Smaller form factor drives at 2.5” or 1.8” that are less than 1/2” thick are common. These 
drives share the same controller technologies as desktop computers; however, they use 
smaller connectors. Figure 10.15 shows an example of a standard 3.5” hard drive compared 
to a 2.5” laptop hard drive. 

To save space and heat, most laptops today use a solid-state drive (SSD), which we intro- 
duced in Chapter 2, “Internal Expansion, Storage Devices, and Power Supplies.” Recall 
that, unlike conventional magnetic hard drives, which use spinning platters, SSDs have no 
moving parts. They use the same solid-state memory technology found in the other forms 
of flash memory; think of them as bigger versions of the flash drives that are so common. 
Otherwise, they perform just like a traditional magnetic HDD, except they’re a lot faster. 

Connecting a regular SSD in a desktop is usually just like connecting a regular HDD; they 
have the same PATA/SATA and power connectors. Laptops often have a specialized con- 
nector and a single cable that handles both data and power, as shown in Figure 10.16. Most 
manufacturers also make them in the same physical dimensions as traditional hard drives, 
even though they could be made much smaller, like removable flash drives. (This is probably 
to preserve the “look” of a hard drive so as to not confuse consumers or technicians.) 
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FIGURE 10.15 A desktop hard drive (left) compared to a laptop hard drive (right) 











FIGURE 10.16 2.5” SSD, motherboard connector, and cable 
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Newer SSDs may come in the even smaller M.2 form factor. In fact, the Dell Inspiron we’ve 
been working on in this chapter has an M.2 SSD. Figure 10.17 shows the SSD and the M.2 
connector it plugs into. Exercise 10.4 walks you through removing an M.2 SSD from a laptop. 


FIGURE 10.17 M.2SSD and M.2 connector 
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Removing an M.2 SSD from a Laptop 
1. Remove the bottom cover. 
2. Remove the screw that holds the SSD to the base assembly. 


The drive will pop up slightly. The screw is highlighted in Figure 10.18. 


FIGURE 10.18 Removing an M.2 SSD 
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3. Slide the drive directly out of the connector. 
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Removing 2.5” or 1.8” SSDs from a laptop will require a few more steps than Exercise 
10.4 did. First, disconnect the drive cable from the motherboard (refer to Figure 10.16), and 
then remove the two to four screws that hold the drive or its mounting bracket in place. 
Figure 10.19 shows an example of an SSD in a Lenovo ThinkPad that uses three screws— 
we’ve already removed them but highlighted the holes for you. Then lift out the drive (and 
bracket as needed). We show the disconnected drive next to the laptop in Figure 10.20. 


FIGURE 10.19 2.5” SATA SSD 





FIGURE 10.20 Disconnected SATA SSD 
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’ SSDs are perfect for laptops because they are faster, produce less heat, 
TE and are more shock resistant than conventional hard drives. They are more 
expensive per gigabyte, but that’s the trade-off you have to make for better 
performance. 


A third type of hard drive on the market is called a hybrid hard drive. As you might 
expect based on the name, it combines the features of a standard hard drive with those of 
an SSD. It contains moving platters and some high-speed flash memory. The intent is that 
the frequently used files will be stored in flash memory, making for faster access, while 
other files are stored on the magnetic plates. Pretty much everything about a hybrid drive is 
a fusion of the other two technologies. Performance, size, and price will all fall somewhere 
within the HDD to SSD spectrum. 


Laptop Optical Drives 


Nearly all laptops have a hard drive, but not all laptops have an internal optical drive. 
Many times, there just isn’t room for one. If that’s the case, you can attach an external opti- 
cal drive via an expansion port such as USB. It might be a bit slower than an internal drive, 
but it’s better than not having one at all. 

Optical drives on laptops are necessarily smaller than their desktop counterparts as 
well. Figure 10.21 shows an example of a desktop DVD-ROM drive compared to a laptop 
CD-ROM drive. (We know that CD-ROMs are dated, but DVD-ROMs and Blu-ray drives 
are of similar size.) Note that the laptop drive is very small, but it has the same functional- 
ity as a desktop unit. The drive mechanism and circuits have all been miniaturized to save 
space. As a result, the functionality is basically the same, but the cost is usually higher. 
Anytime a component’s functionality remains the same while its size decreases, you will 
notice an increase in price over the standard-sized item. 


FIGURE 10.21 A desktop DVD drive (left) compared to a laptop CD drive (right) 
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P devices. Simply copy the contents of the hard drive (or just important files) 


w CD, DVD, and Blu-ray burners are great to have with laptops as backup 
to the optical discs and store them in a safe location. 


Input Devices 


Because of the small size of laptops, getting data into them presents unique challenges to 
designers. They must design a keyboard that fits within the case of the laptop. They must also 
design some sort of pointing device that can be used with graphical interfaces like Windows. 
The primary challenge in both cases is to design these peripherals so that they fit within the 
design constraints of the laptop (low power and small form factor) while remaining usable. 


Keyboards 


A standard-sized desktop keyboard wasn’t designed to be portable. It wouldn’t fit well with 
the portable nature of a laptop. That usually means laptop keys are not normal size; they 
must be smaller and packed together more tightly. People who learned to type on a type- 
writer or a full-sized keyboard often have a difficult time adjusting to a laptop keyboard. 


Special Function Keys 


Because of the much smaller space available for keys, some laptop keys (like the number 
pad, Home, Insert, PgUp, and PgDn keys) are consolidated into special multifunction keys. 
These keys are accessed through the standard keys by using a special function (Fn) key. 
It’s typically near the Windows key on the keyboard and can be labeled in lettering of an 
alternate color (usually blue) that matches the lettering of the labels for alternate functions 
on other keys. To use a multifunction key, you press and hold the Fn key (as you would 

the Shift, Ctrl, and Alt keys) and then tap the key labeled with the function you want and 
release the Fn key. Figure 10.22 shows an example of a function key. 


FIGURE 10.22 Function (Fn) key 
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The function key combinations can control many laptop functions, but the most com- 
mon are video, audio and media, and network connectivity. There may also be a function 
key to disable the touchpad. The specific keys used and functions provided will vary by 
laptop model, but there are usually icons on the keys that perform the functions to help you 
figure out what does what. 

Video adjustments come in two varieties: changing the video output and dimming or 
brightening the screen. Dimming and brightening the screen is pretty straightforward, but 
the video output function can throw people off. Remember that nearly every laptop has a 
video connector on the back or the side to plug in an external monitor or a projector. You 
will need to use the video toggle key to get this external port to work. Usually there are 
three or four states: laptop only, external output only, duplicate, or extend the desktop, 
which provides different screens on dual displays (Some models won’t have extend the desk- 
top.) Figure 10.23 shows examples of the keys that handle video functions. 


FIGURE 10.23 Video adjustment keys F4 (LCD toggle), F7 (dim), and F8 (brighten) 





Note that the LCD toggle (the F4 key in Figure 10.23 and F7 in Figure 10.24) may have 
different symbols—there is no real standard. Some will look like an old VGA-style connec- 
tor, others may look like a projector, and others yet might have a symbol that looks like a 
laptop with another monitor peeking out from behind it. This lack of standardization holds 
true for all function keys. For example, in Figure 10.23, the dimming key has a sun with an 
arrow pointing down, and the brightening key has a sun with an arrow pointing up. Some 
manufacturers will use a small sun on the dimming key and a large sun on the brightening 
key, or sun icons with a plus or minus, as you see in Figure 10.24 on the FS and F6 keys. 


FIGURE 10.24 Audio adjustment keys F1 (speaker mute), F2 (quieter), F3 (louder), and 
F4 (microphone mute) 
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The audio settings can often be adjusted using the function keys too. To lower the vol- 
ume, look for an icon with a speaker with a minus sign next to it (as in Figure 10.24) or 
only one “wave” coming out of it (as in Figure 10.25). The volume is increased with the 
speaker with a plus sign or several waves, the mute button will have a speaker with an X 
or a circle with a line through it, and the microphone mute will show a microphone with 
the same. Media settings, such as rewinding and fast-forwarding, might be included too. If 
you look at Figure 10.25, the F4 key is for rewind, FS is for play/pause, and F6 is for fast 
forward. 


FIGURE 10.25 Media option keys 





Finally, there are the network connectivity settings. There aren’t really a lot of choices 
here; it’s a matter of turning the connection on or off. Options for your laptop might 
include any or all of the following: 


= Wireless networking (Wi-Fi) 
= Bluetooth 


= Cellular 
= Airplane mode 
= GPS 


There are several scenarios in which you might need to turn off these services 

quickly: 

= Taking off or landing in an airplane is one of the most obvious ones. You might want 
to do some work, but there are restrictions as to what you can have turned on and 
when. 

=a Another situation might be if you are in a public place on public Wi-Fi and you suspect 
that someone might be trying to use the network to attack your computer. Turning off 
Wi-Fi will stop the attack. 

=a Finally, sometimes the communications just seem to “hang”—that is, they stop work- 
ing at random times. If the connection isn’t working, turning it off and back on might 
reset it to a working condition. 


Figure 10.26 shows two examples of Wi-Fi toggle switches. 
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FIGURE 10.26 Wi-Fi toggle switches on laptops (F8 and PrtScr) 





Sometimes, the Fn keys handle disabling communications options. At other times, 
separate buttons or switches near the keyboard handle them. The symbol for Wi-Fi usu- 
ally looks like a small antenna. If you’re using Bluetooth, the symbol will be Bluetooth’s 
trademarked B. Cellular options usually show bars (like what you see on a phone), airplane 
mode has an airplane icon, and GPS looks like the “pins” that you see which mark loca- 
tions on online maps. (Honestly, it’s pretty uncommon to see GPS built into a laptop, but it 
does happen.) 

The point is, look around if you don’t see the right function key on the keyboard itself. 
It’s bound to be there somewhere. 


Po Some laptops include a backlight for the keyboard as well. These can also 
TE be dimmed or brightened, or turned off and on, with the use of a function 
key. For example, the right combination might be Fn+Z. Keep in mind that 
on laptop models with an ambient light sensor, such as the MacBook Pro, 


the backlight settings may be controlled automatically by the operating 
system; you might not be able to turn it off unless it’s already on. 


Removing the Keyboard 


Keyboards may need to be replaced if keys are missing or are stuck and won’t function. If 
a user has spilled a beverage onto their keyboard, it could cause problems that necessitate a 
replacement. 

Laptop keyboards are built into the lower portion of the clamshell. Sometimes, they 
can be removed easily to access peripherals below them, like memory and hard drives, as 
in the Lenovo ThinkPad series. Other times, removing the keyboard is one of the most 
challenging tasks, because nearly all other internal components need to be removed first. 
Exercise 10.5 illustrates the joy of removing the keyboard from the Dell Inspiron 13 7000. 
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Removing a Laptop Keyboard 
1. Remove the bottom cover. 
Remove the battery. 

Remove the SSD. 

Remove the wireless card. 
Remove the fan. 

Remove the heat sink. 

Remove the display assembly. 


Remove the I/O board. 


© Onn pwn 


Remove the power adapter port. 


=- 
(=) 


. Remove the motherboard. 


= 
=Ú 


. Remove the speakers. 


_ 
N 


. Remove the 14 screws that hold the keyboard shield to the base assembly. 
13. Lift the keyboard from the base assembly. 


As you can see, it was necessary to remove 11 components before we got to the 
keyboard. With a laptop like this, replacing the keyboard is not a quick service item. 


Pointing Devices 


In addition to using the keyboard, you must have a method of controlling the onscreen 
pointer in the Windows (or other graphical) interface. Most laptops today include multiple 
USB ports for connecting a mouse, and you can choose from a wide range of wired or 
wireless full-size or smaller mice. There are several additional methods for managing the 
Windows pointer. Here are some of the more common ones: 


a Trackball 
=a Touchpad 
a Point stick 


a Touch screen 


P Because of different pointing-device preferences, some laptops include 
‘i multiple pointing devices to appeal to a wider variety of people. 
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Trackball 


Many early laptops used trackballs as pointing devices. A trackball is essentially the same 
as a mouse turned upside down. The onscreen pointer moves in the same direction and at 
the same speed that you move the trackball with your thumb or fingers. 

Trackballs are cheap to produce. However, the primary problem with trackballs is that 
they do not last as long as other types of pointing devices; a trackball picks up dirt and oil 
from operators’ fingers, and those substances clog the rollers on the trackball and prevent it 
from functioning properly. 


Touchpad 


To overcome the problems of trackballs, a newer technology that has become known as the 
touchpad was developed. Touchpad is actually the trade name of a product. However, the 
trade name is now used to describe an entire genre of products that are similar in function. 

A touchpad is a device that has a pad of touch-sensitive material. The user draws with 
their finger on the touchpad, and the onscreen pointer follows the finger motions. Included 
with the touchpad are two buttons for left- or right-clicking (although with some touch- 
pads, you can perform the functions of the left-click by tapping on the touchpad, and Macs 
will have one button). Figure 10.27 shows a touchpad. 


FIGURE 10.27 Laptop touchpad 





One problem people have with a touchpad is the location. You'll notice that the touchpad 
is conveniently placed right below the laptop keyboard, which happens to be where your 
palms rest when you type. Sometimes this will cause problems, because you can inadvertently 
cause your mouse cursor to do random things like jump across the screen. Most touchpads 
today have settings to allow you to control the sensitivity, and they will also differentiate 
between a palm touching them and a finger. In addition, if you have a sensitive touchpad that 
is giving you trouble, you can disable it altogether. Exercise 10.6 shows you how to do that 
in Windows 10. The specific steps to disable the touchpad will differ by manufacturer—you 
will almost always be able to disable it through the operating system, and some laptops have 
a function key to disable it as well. The steps in Exercise 10.6 were performed on a Lenovo 
ThinkPad laptop. Consult the laptop documentation if you are unable to locate the setting. 
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Disabling a Touchpad in Windows 10 
1. Open the Mouse app within Control Panel. 


You can do so by clicking Start, typing Control, and then clicking Control Panel when 
it appears under Best Match. 


2. Set Control Panel to View by Large Icons or Small Icons, to see the Mouse app. 
3. Click the ThinkPad tab, as shown in Figure 10.28. 


The tab might have a different name, or could be Properties, depending on how the 
manufacturer set it up. 


FIGURE 10.28 Mouse Properties 
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4. Remove the check from the Enable TouchPad box to disable the touchpad. 


Notice there are options to enable and disable the TrackPoint as well. The TrackPoint 
(also known as a point stick) is the button in the middle of the keyboard, between the 
G, H, and B keys. 


5. To examine additional settings, click the Settings button. 


You may have more options, such as the ones shown in Figure 10.29. 


Input Devices 573 


FIGURE 10.29 Additional touchpad configuration options 


@ General 7% Click % Scroll © Gestures Advanced 


TouchPad Pointing Speed 7 ®© 


Tapping 





wv Tr ‘ Tap one or more fingers to click. 


Scrolling 


wi Scrolling Slide two fingers anywhere or one finger on the right edge to scroll. 


Scrolling Method @ Traditional - Scroll the window under the mouse pointer. 


Standard - Scroll the active window only. 


TrackPoint Pointing Speed 





Slow 


TrackPoint Middle Button 





Scrolling Method @ Traditional - Scroll the window under the mouse pointer. 


Standard - Scroll the active window only. 


| Restore All Defaults 





6. Click OK to save the settings. 


Although touchpads are primarily used with laptop computers, you can also buy exter- 
nal touchpads that connect to a computer just as you would connect a mouse. 


The touchpad can be replaced if it becomes defective, just like most other 
TE laptop components. Before you replace it, first be sure that it’s not just 


disabled in the operating system. 


Point Stick 


With the introduction of the ThinkPad series of laptops, IBM introduced a new feature 
known as the Touchpoint, generically known as a point stick. (ThinkPads are now 
produced by Lenovo.) The point stick is a pointing device that uses a small rubber-tipped 
stick. When you push the point stick in a particular direction, the onscreen pointer goes in 
the same direction. The harder you push, the faster the onscreen pointer moves. The point 
allows fingertip control of the onscreen pointer, without the reliability problems associated 
with trackballs. Figure 10.30 shows a point stick. 
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FIGURE 10.30 Point stick 





Point sticks have their own problems, however. Often, the stick does not return to center 
properly, causing the pointer to drift when not in use. You might also notice the rubber 
cover for the stick becoming a bit gummy with extended use. Most manufacturers supply 
replacement covers of varying textures with new systems. Some later systems employ a con- 
cave version of the cover and updated workings that tend to minimize a lot of these concerns. 


Touch screen 


Touch screens have exploded in popularity in recent years. They are pretty much standard 
fare for smartphones and tablets, and many laptop computers as well. The idea is pretty 
simple: It looks like any other display device, but you can touch the screen and the system 
senses it. It can be as simple as registering a click, like a mouse, or it can be more advanced, 
such as capturing handwriting and saving it as a digital note. 

Although the technical details of how touch screens work are beyond the scope of this 
chapter, there are a few things to know: 


= Some touch screens work with any object touching them, whereas others require a con- 
ductive input, such as your finger. iPhones are a great example of this, to which anyone 
who lives in cold climates and wears gloves can attest. 


= Some touch screens are coated with a film that is sensitive to touch. Cleaning these 
screens with regular glass cleaner can ruin the touch screen nature of the device. It’s 
best to clean those devices only with a damp cloth, as needed. 


= Some touch screens need to be calibrated in order to properly interpret the user’s input. 
See the manufacturer’s documentation for details. 


User options to configure touch screens are often limited to calibrating the screen for 
touch input or pen input. If the touch screen seems to be sensing input incorrectly or not 
detecting input from the edges of the screen, it might be time to recalibrate it. In Windows, 
open Control Panel > Tablet PC Settings, and then click Calibrate. Windows will ask the 
user to specify pen or touch input. Once specified, the user will be able to draw on the 
screen with their desired input tool, and the system will sense it. (In most cases, there will 
be a crosshairs on the screen and the user needs to touch where it is.) At the end, the user 
needs to save the calibration data for it to take effect. 


Many laptops sold today are advertised as 2-in-1 devices, meaning that the 
OTE top portion of the clamshell that holds the display folds completely over, 
effectively turning the laptop into a glorified tablet. These devices use 
touch screens, and when they are in tablet mode, the keyboard is disabled. 
Some will also automatically change the screen orientation to landscape or 
portrait, depending on how it’s being held, just like a smartphone or tablet. 
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Internal Expansion 


Although laptop computers are less expandable than their desktop counterparts, many can 
be expanded to some extent. The two primary forms of internal expansion used in laptops 
today are Mini PCIe and M.2. 


Mini PCle 


Mini PCIe technology replaced Mini PCI, much like PCIe has replaced PCI in desktop com- 
puters. Since around 2005, Mini PCIe has been the most common slot for laptop expansion 
cards. These cards reside inside the case of the laptop and are connected via a 52-pin card 
edge connector. Mini PCIe cards come in two sizes. The full size cards are 30 mm wide 

and 51 mm long. Half-size cards (one is shown in Figure 10.31, with the connector at the 
bottom) are 30 mm wide and 27 mm long. Mini PCle cards support USB (2.0, 3.0, 3.1, 
Type-C) and PCIe x1 functionality, and at the same speeds. Additionally, Mini PCIe cards 
have the 1.5V and 3.3V power options. 


FIGURE 10.31 Mini PCle card in a laptop 





M.2 


We introduced M.2 (pronounced “M dot 2”) in Chapter 2, so we won’t go into a great 
amount of detail here. Figure 10.18 earlier in this chapter shows an M.2 hard drive 
and slot. For purposes of comparing it to Mini PCle, know that it uses a narrower 
connector (22 mm vs. 30 mm) that has more pins (66-pin vs. 52-pin). M.2 supports 
USB 2.0 and newer. The slowest M.2 slots support PCIe x2 and M-keyed slots support 
PCle x4, making it much faster than Mini PCIe. Most M.2 expansion cards focus on 
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communications or storage. Common types of cards you will see in the market include 
the following: 


a Wi-Fi network cards 
= Bluetooth cards 

a Cellular cards 

» SSDs 


Many laptops don’t come with any free internal expansion slots, either M.2 or Mini 
PCle. For example, the Dell we’ve been working on has two M.2 slots, but both are 
filled. One has the SSD, and the other is used by the Wi-Fi card. Be sure to check the 
documentation before you buy an expansion card for a laptop, to see what it supports. 


Power Systems 


Because portable computers have unique characteristics as a result of their portability, they have 
unique power systems as well. Portable computers can use either of two power sources: batteries 
or adapted power from an AC or DC source. Regardless of the source of their power, laptops 
utilize DC power to energize their internal components. Therefore, any AC power source needs 
to be rectified (converted) to DC. Most laptop display backlights, on the other hand, require 
high-voltage, low-amperage AC power. To avoid a separate external AC input, an inverter is 
used to convert the DC power that is supplied for the rest of the system to AC for the backlight. 
In case it’s not obvious, converters and inverters perform opposite functions, more or less. 


Batteries 


There are many different battery chemistries that come in various sizes and shapes. Nickel 
cadmium (NiCd), lithium-ion (Li-ion), and nickel-metal hydride (NiMH) have been the 
most popular chemistries for laptop batteries. A newer battery chemistry, lithium-polymer 
(Li-poly), has been gaining in prominence over recent years for smaller devices. 

Figure 10.32 is a photo of a removable Li-ion battery for an HP laptop. 


FIGURE 10.32 A removable laptop Li-ion battery 
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Some laptops have removable batteries, which make them very easy to replace in the 
event of a battery failure. Thinner laptops will make use of an internal battery, such as the 
one shown in Figure 10.33. This particular battery is very thin—only 5 mm (1/4”) thick. 
Exercise 10.7 shows you how to remove an internal laptop battery. 


Removing an Internal Laptop Battery 
1. Remove the bottom cover. 
2. Disconnect the battery from the motherboard. 


Its connector is highlighted with a rectangle in Figure 10.33. 


FIGURE 10.33 Internal laptop battery 





3. Remove the four screws holding the battery in place. 
In Figure 10.33, the screws are highlighted with circles. 
4. Lift the battery out of the base assembly. 


Even though replacing an internal battery requires slightly more effort than replacing an 
external battery, it’s still generally a simple operation. 


Battery chemistries can be compared by energy density and power density. Energy density 
measures how much energy a battery can hold. Power density measures how quickly the 
stored energy can be accessed, focusing on access in bursts, not prolonged runtime. An anal- 
ogy to the storage and distribution of liquids might help solidify these concepts. A gallon 
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bucket has a higher “energy density” and “power density” than a pint bottle; the bucket 
holds more and can pour its contents more quickly. Another common metric for battery 
comparison is rate of self-discharge, or how fast an unused battery reduces its stored charge. 








E Real World Scenario 


Is That Battery Really Dead? 


Some batteries, such as nickel cadmium (NiCd) batteries, suffer from a performance- 
affecting chemical memory loss. Others, such as lithium-ion (Li-ion), don’t suffer from 
this affliction but do suffer from so-called digital memory loss that plagues the built-in 
gauges that monitor the charge left in the battery. This effect can be observed in software 
gauges that read the battery’s charge level. The digital memory effect manifests itself 

as a sudden loss of power when the gauges register, say, 30-percent remaining capacity. 
The fix, much like the fix for chemical memory in NiCd batteries, is to allow a full dis- 
charge once a month or so. This is called battery calibration and can be performed right 
in the device while it’s using the battery. 


Other than this occasional full discharge, Li-ion batteries last longer when you partially 
discharge them and then recharge them, making them ideal for laptops and personal 
handheld devices, such as smartphones, that tend to get used sporadically on battery 
power before being plugged back in to charge. 





Power Adapters 


Most notebook computers can also use AC power with a special adapter (called an AC 
adapter) that converts AC power input to DC output. The adapter can be integrated into the 
notebook, but more often it’s a separate “brick” with two cords: one that plugs into the back 
of the laptop and another that plugs into a wall outlet. Figure 10.34 is a photo of the latter. 


FIGURE 10.34 A laptop AC adapter 
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Another power accessory that is often used is a DC adapter, which allows a user to plug 
the laptop into the round DC jack power source (usually called an auxiliary power outlet) 
inside a car or on an airplane. An example is shown in Figure 10.35. These adapters allow 
people who travel frequently to use their laptops while on the road. 


FIGURE 10.35 ADC jackin a car 





Use caution when selecting a replacement AC adapter for your laptop. You should 
choose one rated for the same or higher wattage than the original. You must also pay 
special attention to the polarity of the plug that interfaces with the laptop. If the laptop 
requires the positive lead to be the center conductor, for instance, then you must take care 
not to reverse the polarity. Look for symbols like the ones shown in Figure 10.36, and 
make sure the new power supply is the same as the old one. 


FIGURE 10.36 Polarity symbols 
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positive polarity negative polarity 


Regarding the input voltage of the adapter, care must also be taken to match the adapter 
to the power grid of the surrounding region. Some adapters have a fixed AC input require- 
ment. Purchasing the wrong unit can result in lack of functionality or damage to the 
laptop. Other adapters are autoswitching, meaning that they are able to switch the input 
voltage they expect automatically based on the voltage supplied by the wall outlet. These 
units are often labeled with voltage-input ranges, such as 100V to 240V, and frequency 
ranges, such as 50Hz to 60Hz, and are able to accommodate deployment in practically any 
country around the world. Nevertheless, you should still ascertain whether some sort of 
converter is required, even for autoswitching adapters. 
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Laptop Displays 


The display system is the primary component in the top half of the clamshell case. (The 
wireless antenna often resides here too, and we’ll get to that in just a bit.) Much like all 
other laptop components, the display is more or less a smaller version of its desktop coun- 
terpart. What is unique to laptop displays, though, is that for some time, the technology 
used in them was actually more advanced than what was commonly used in desktops. This 
is due to LCD technology. 

Before LCD technology, computer displays used cathode-ray tube (CRT) technology (like 
old-school televisions) and were big, bulky, and hardly mobile. We talked about LCD and 
organic light emitting diode (OLED) concepts in Chapter 3, “Peripherals and Connectors,” 
but we’ll do a quick refresher in the “Screen” section later. Let’s focus now on the different 
components that are required to make these types of displays work on a laptop. 


P Some laptops feature screens that rotate orientation depending on how 
‘GQ they are held (much like smartphones and tablets), or the screens them- 
selves will rotate horizontally or be entirely removable. Rotating and 
removable screens cost more money, so consider your needs or the needs 
of the user when recommending such features. 


Video Card 


The video card in a laptop or desktop with an LCD monitor does the same thing, regardless 

of what type of machine it’s in. It’s responsible for generating and managing the image sent to 
the screen. LCD monitors are digital, so laptop video cards generate a digital image. Laptop 
manufacturers put video cards that are compatible with the given display in a laptop, and most 
laptop manufacturers choose to integrate the LCD circuitry on the motherboard to save space. 


PP Odds are that the laptop you're using has an integrated video card. If the 

A: video card fails, you're likely looking at a motherboard replacement. Some 
laptops do have a replaceable video card. If it fails or if you choose to 
upgrade it, the procedure will probably resemble replacing system memory. 








E Real World Scenario 
Video Memory Sharing 


If your video card is built into your motherboard, odds are that it doesn’t have its own mem- 
ory but shares system memory with the processor. Note that there is nothing wrong with 
this type of setup; in fact, it often brings the cost of the laptop down. It’s just that instead of 
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having 8 GB of RAM and 1 GB of video RAM (for example), you would have only 8 GB 
total. So if your video card were using 1 GB, the system would be left with only 7 GB. 


How much of a difference does all of this make? Well, it depends on what you're doing 
with your laptop. If you’re using it for the Internet and light work, probably not much 
difference. If you're working with more video-intensive applications, using a computer 
with shared memory might slow you down some. This usually brings up two ques- 
tions: What’s the optimal balance? And where do | change this? 


To answer the first question, again, it depends on what you are doing. If you perform 
more video-intensive operations (or if you’re gaming), then you might want to set aside 
more memory for the video card. If you're not as concerned with rapid pixilation, then 
less is fine. Which brings us to the second question: Where do you set it? Shared mem- 
ory is configured in the system BIOS. Each BIOS is different, so be sure to consult your 
owner's manual if you have any questions. Keep in mind that some BIOSs will allow 
you to set aside only a certain amount of memory—say, 512 MB—for video memory. 


How does this affect your computer when you upgrade the memory? First, keep in 
mind that some of your memory will be taken by the video card, so you might want to 
upgrade to more memory than you originally had planned, if the laptop supports it. 
Second, after upgrading the memory, you will need to go into the BIOS and reconfig- 
ure how much memory you want allocated to the video card. 





Backlight 


LCD displays do not produce light, so to generate brightness, LCD displays have a back- 
light. A backlight is a small lamp placed behind, above, or to the side of an LCD display. 
The light from the lamp is diffused across the screen, producing brightness. The typical 
laptop display uses a cold cathode fluorescent lamp (CCFL) as its backlight. As their name 
implies, they are fluorescent lights, and they’re generally about 8” long and slimmer than a 
pencil. You might see laptops claiming to have 2-CCFL, which just means that they have 
two backlights. This can result in a laptop with a brighter screen. CCFLs generate little 
heat, which is always a good thing to avoid with laptops. 

Another backlight technology uses LEDs instead of CCFLs. Instead of CCFL tubes, they 
have strips of LED lights, and most LEDs do not need an inverter. Smaller devices, such 
as tablets and phones, almost exclusively use LED backlighting, which is smaller and con- 
sumes less power than CCFLs. 


Inverter 


Fluorescent lighting, and LCD backlights in particular, require fairly high-voltage, high- 
frequency energy. Another component is needed to provide the right kind of energy, and 
that’s the inverter. 
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The inverter is a small circuit board installed behind the LCD panel that takes DC 
current and inverts it to AC for the backlight. If you are having problems with flickering 
screens or dimness, it’s more likely that the inverter is the problem, not the backlight itself. 

There are two things to keep in mind if you are going to replace an inverter. First, they 
store and convert energy, which means they have the potential to discharge that energy. To 
an inexperienced technician, they can be dangerous. Second, make sure the replacement 
inverter was made to work with the LCD backlight that you have. If they weren’t made for 
each other, you might have problems with a dim screen or poor display quality. 


ZL Inverters can discharge energy, which can cause severe injury to you. Be 
NING careful when working with them! 
Screen 


The screen on a laptop does what you might expect—it produces the image that you see. 
The overall quality of the picture depends a lot on the quality of the screen and the technol- 
ogy your laptop uses. Current popular options include LCD, LED, and OLED. LCD and 
OLED are A+ exam objectives, so let’s review them here. 


Liquid Crystal Display 


First used with portable computers, liquid crystal displays (LCDs) are based on the concept 
that when an electrical current is passed through a semi-crystalline liquid, the crystals align 
themselves with the current. When transistors are combined with these liquid crystals, pat- 
terns can be formed. Patterns can then be combined to represent numbers or letters. LCDs 
are lightweight and have low power requirements. 

Liquid crystals produce no light, so LCD monitors need a lighting source to display an 
image—the backlight that we already discussed. If you see a laptop advertised as having an 
LED display, know that it’s really an LCD monitor with LED backlighting. 


Organic Light-Emitting Diode 

Organic light-emitting diode (OLED) displays, unlike LED displays, are really the image- 
producing parts of the display, not just the light source. An organic light-emitting com- 
pound forms the heart of the OLED, and it is placed between an anode and a cathode, 
which produce a current that runs through the electroluminescent compound, causing it to 
emit light. An OLED, then, is the combination of the compound and the electrodes on each 
side of it. The electrode in the back of the OLED cell is usually opaque, allowing a rich 
black display when the OLED cell is not lit. The front electrode should be transparent, to 
allow the emission of light from the OLED. 

If thin-film electrodes and a flexible compound are used to produce the OLEDs, an 
OLED display can be made flexible, allowing it to function in novel applications where 
other display technologies could never work. 

Because OLEDs create the image in an OLED display and supply the light source, there 
is no need for a backlight, with its additional power and space requirements, unlike in the 
case of LCD panels. Additionally, the contrast ratio of OLED displays exceeds that of LCD 
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panels, regardless of backlight source. This means that in darker surroundings, OLED dis- 
plays produce better images than LCD panels produce. The power to drive an OLED dis- 
play is, on average, less than that required for LCDs. Generally speaking, OLED monitors 
are the highest-quality monitors you will find on the market today. OLED is even found in 
smaller devices such as smartphones as well. 


Digitizer 

A digitizer is a device that can be written or drawn on, and the content will be converted 
from analog input to digital images on the computer. Digitizers take input from a user’s 
finger or a writing utensil, such as a stylus. When built into the display, they might be the 
glass of the display itself, or they might be implemented as an overlay for the display. For 
touch screen devices, the digitizer might be the primary method of input. For other devices, 


such as a laptop with a touch screen, users might find the digitizer helpful for capturing 
drawings or handwritten notes. 


Other types of digitizers are not built into the screen and may be pads on 
OTE the palm rest of a laptop or next to the touchpad or peripheral USB devices 
that look like notepads. 


Webcam and Microphone 


Webcams are nearly universal on laptops today. The most common placement is right 
above the display on the laptop. Most laptops with webcams will also have a smaller circle 
to the left of the lens, which has a light that turns on to illuminate the user when the web- 
cam is on. Some people are a bit paranoid about their webcams, and they will put a piece of 
Scotch tape over the camera when it’s not in use. 

If you’re going to use a webcam to conduct a video call with someone, it helps if they can 
hear you too. That’s where the microphone comes into play. Microphones can be built into 
the monitor as well. The webcam shown in Figure 10.37 has the illumination light to the left 
and the microphone inputs on both sides of the lens. Microphones can also be built into the 
bottom half of the clamshell, either above the keyboard or somewhere on the front bezel. 


FIGURE 10.37 Webcam and microphone 
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Wi-Fi Antenna 


The vast majority of laptops produced today include built-in Wi-Fi capabilities. Considering 
how popular wireless networking is today, it only makes sense to include 802.11 functional- 
ity without needing to use an expansion card. With laptops that include built-in Wi-Fi, the 
wireless antenna is generally run through the upper half of the clamshell case. This is to get 
the antenna higher up and improve signal reception. The wiring will run down the side of the 
display and through the hinge of the laptop case and plug in somewhere on the motherboard. 

The Wi-Fi antenna won’t affect what you see on the screen, but if you start digging around 
in the display, know that you'll likely be messing with your wireless capabilities as well. 


Replacing Components Within a Laptop Display 


While going through the exercises in this chapter, you’ve probably noticed that the inside 
of a laptop is tight and complex, and navigating it can be a challenge. Laptop displays are 
the same way. There are not as many components as compared to the bottom half of a lap- 
top, but space is even tighter. Within a display, the components you might need to replace 
include the screen (or touch screen/digitizer, which some manufacturers call the display 
panel), Wi-Fi antenna, webcam, microphone, and inverter. 

In most cases, servicing components within the display means removing the display 
assembly from the base assembly. Exercise 10.8 shows you how to do that. 


EXERCISE 10.8 


Removing the Display Assembly 
1. Remove the bottom cover. 
2. Remove the wireless NIC from the base assembly. 


3. Open the latch for the display cable and disconnect it from the motherboard. It’s the 
left connector shown in Figure 10.38. 


FIGURE 10.38 Display cable and touch screen board cable connectors 
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4. Disconnect the touch screen board cable from the motherboard. It’s the right connec- 
tor shown in Figure 10.38. 


5. Open the computer so that the display assembly is parallel with the base assembly, 
and lay it screen-side down on a flat surface. 


We recommend that you place it on a soft surface to avoid scratching the screen. 


6. Remove the screws that secure the display assembly to the base assembly. There are 
two screws for each hinge, and they are highlighted in Figure 10.39. 


FIGURE 10.39 Display assembly hinge screws 





7. Lift the display assembly off of the base assembly. 


Note that the NIC antenna wires, display cable and connector, and touch screen 
board cable and connector will go with the display assembly. 


If you’re replacing the entire display unit, all you need to do is get the new unit and 
reverse the steps you followed in Exercise 10.8. If you’re replacing a component within the 
display unit, you need to go further. To get to the Wi-Fi antenna, webcam, microphone, 
and inverter, you need to also remove the display panel. Exercise 10.9 gives you the general 
steps needed to accomplish this. 


Removing the Display Panel 

1. Remove the bottom cover. 

2. Remove the display assembly. 

3. Remove the display cable from the routing guides inside the hinge covers. 
4 


Use a plastic scribe to pry apart the back of the display assembly and the display 
panel. 


Step 4 is a tricky step. There’s not much of a gap between the display panel and the 
back of the display assembly. It’s generally best to try to start prying it apart near 
the center of one of the sides of the panel—that’s where you're likely to get the most 
separation to get the scribe in there. 


Also, we highly recommend using a plastic scribe. You can use a very thin flat screw- 
driver, but the metal is more likely to mark up or damage the case than the plastic 
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EXERCISE 10.9 (continued) 


scribe. Once you start getting separation, gently work your way around the edge of 
the display panel to separate the whole thing. 


5. Identify the component you need to replace, and remove it. 


Figure 10.40 shows a Lenovo ThinkPad with the display bezel removed. You can see 
wires running along the side and top. Some of the wires go to the webcam, and oth- 
ers are for the wireless antenna. As always, consult the laptop’s documentation to 
identify the proper components. 


FIGURE 10.40 Wires inside a laptop display 





Other Internal Components 


There are a few internal components we’ve referenced in chapter exercises, but we’ve not 
given explicit details on how to remove them. That’s what this section is for. Note that 
these components aren’t currently on the exam objectives, but it helps to know how to 
remove them anyway. The four components we’ll examine are the fan, heat sink, wireless 
NIC, and CMOS battery. And since we’ll be talking about CMOS, which is related to the 
BIOS, we should look at how to upgrade (or flash) the BIOS as well. Exercise 10.10 shows 
you how to remove the system fan. 


EXERCISE 10.10 


Removing the System Fan 
1. Remove the bottom cover. 


2. Remove the two screws that hold the system fan in place. They are highlighted in 
Figure 10.41. 
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FIGURE 10.41 Removing the system fan 
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3. Lift the fan away from the base assembly. 


Now that the fan is removed, Exercise 10.11 shows you how to remove the CPU heat 
sink. 





Removing the CPU Heat Sink 

1. Remove the bottom cover. 

2. Remove the system fan. 

3. Loosen the four screws holding the heat sink in place, as highlighted in Figure 10.42. 


The screws will not completely come out of the heat sink bracket. 
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EXERCISE 10.11 (continued) 


FIGURE 10.42 Removing the heat sink 





4. Lift the heat sink straight up off of the processor. 


It might stick a bit, as most are adhered with a thermal compound. 


Exercise 10.12 shows you how to remove the wireless NIC. Perhaps ironically, it actually 
does have wires, but those are for the antenna that runs up into the display. 


Removing the Wireless NIC 
1. Remove the bottom cover. 


2. Remove the screw holding the wireless card bracket in place. It’s circled in Figure 10.43. 
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FIGURE 10.43 Removing the wireless NIC 
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3. The wireless card will pop up, as shown in Figure 10.44. 
4. Disconnect the two antenna wires that are attached to the end of the card. 


FIGURE 10.44 Disconnect the two antenna wires. 
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5. Pullthe wireless NIC straight out of the M.2 socket. 


When reconnecting the wireless card, the white antenna cable will go on the main post, 
which is indicated by a white triangle. The black antenna cable attaches to the auxiliary 
connector, which is marked with a black triangle. 


Exercise 10.13 shows how to remove the CMOS battery. In most laptops, the CMOS 
battery is covered by a black rubber coating. 
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Removing the CMOS Battery 
1. Remove the bottom cover. 


2. Disconnect the connector from the motherboard. It’s highlighted with a box in Figure 10.45. 


FIGURE 10.45 Disconnect the CMOS battery. 
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3. Peel the battery off of the base assembly. 


Odds are good that it’s been glued into place, so you might have to pull hard. 


Replacement batteries often come with a small amount of adhesive to secure the new 
battery in place. 

Flashing the system BIOS is usually a pretty straightforward process. You can download 
a BIOS update from the manufacturer’s website and then run the program. Exercise 10.14 
shows sample steps for flashing the BIOS on a Dell laptop. 


EXERCISE 10.14 


Flashing the System BIOS 
1. Turn on the computer. 
2. Visit www.dell.com/support. 


3. Navigate to Drivers & Downloads. 
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Select the operating system installed on your laptop. 
Find the BIOS section. 
Select the file and click Download to download the BIOS. 


After the download is complete, locate the file on your laptop. 


on Own RA 


Double-click the file to run it and begin the BIOS update process. Follow the 
on-screen instructions. 


External Peripherals 


Laptops are mostly self-contained units, which aids in their portability. Other than needing 
to plug in and charge for a while, a laptop doesn’t require anything to be plugged into it to 
provide a user with full functionality. With that said, there are a number of devices that can 
be plugged into a laptop to enhance functionality or provide security. This section exam- 
ines cable locks, docking stations and port replicators, and USB peripherals. 


Cable Locks 


Portability defines what makes laptops truly useful. They’re not as fast or as strong as their 
desktop cousins, but the fact that we can easily haul them around wherever we go gives 
them a special status within our hearts. It also presents less-scrupulous types with ample 
opportunity to quickly make away with our prized possessions and personal data. Laptop 
theft is a major concern for companies and individual owners alike. 

One way that you can help to physically secure your laptop is through the use of a physi- 
cal laptop lock, also known as a cable lock. Essentially, a cable lock anchors your device 
to a physical structure, making it nearly impossible for someone to walk off with it. Figure 
10.46 shows a cable with a number combination lock. With others, small keys are used to 
unlock the lock. If you grew up using a bicycle lock, these will look really familiar. 


Sometimes a cable lock is called a Kensington lock (named after a com- 
4 TE pany that makes them) or a K-lock. 


FIGURE 10.46 A cable lock 
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Here’s how it works. First, find a secure structure, such as the permanent metal supports 
of your workstation at work. Then, wrap the lock cord around the structure, putting the 
lock through the loop at the other end. Finally, secure the lock into your cable lock hole on 
the back or side of your laptop (Figure 10.47), and you’re secure. If you forget your combi- 
nation or lose your key, you’re most likely going to have to cut through the cord, which will 
require a large cable cutter or a hack saw. 


FIGURE 10.47 Cable lock insertion point 





If someone wants your laptop bad enough, they can break the case and dislodge your 
lock. Having the lock in place will deter most people looking to make off with it, though. 


Docking Stations and Port Replicators 


Most laptops are designed to be desktop replacements. That is, they will replace a standard 
desktop computer for day-to-day use and are thus more fully featured than other laptops. 
These laptops often have a proprietary docking port. A docking port (as shown in 

Figure 10.48) is about 1” to 2.5” wide and is used to connect the laptop to a special laptop- 
only peripheral known as a port replicator, or a similar device called a docking station. 


FIGURE 10.48 A docking port 





External Peripherals 593 


A port replicator reproduces the functions of the ports on the back of a laptop so that 
peripherals that don’t travel with the laptop, such as monitors, keyboards, printers, and 
so, on can remain connected to the dock and don’t all have to be unplugged physically 
each time the laptop is taken away. A docking station (shown in Figure 10.49) is similar 
to a port replicator but offers more functionality. Docking stations also replicate ports 
but can contain things like full-sized drive bays, expansion bus slots, optical drives, 
memory card slots, and ports that are not otherwise available on a laptop. For example, 
a laptop might have only two USB ports and an external HDMI port, but its docking 
station might have eight USB ports along with DVI and DisplayPort for external moni- 
tors as well. 


FIGURE 10.49 The back and front of a docking station 





PP Docking ports and docking stations are proprietary. That is, the port works 
A: only with docking stations designed by the laptop's manufacturer and vice 
versa. 


USB Ports 


Like desktops, laptops use USB ports for expansion. Because of the lack of internal expan- 
sion in laptops, the majority of peripherals for laptops are USB expansion devices. 


594 Chapter 10 = Understanding Laptops 


By now, you probably know that there are USB expansion devices of almost every type; 
USB is known for its versatility. You can also get USB devices that act as adaptors to other 
types of connections or provide extended functionality. These are very handy if the laptop 
doesn’t have the connector or functionality built in. Here are some examples: 


= USB to RJ-45 
= USB to Wi-Fi 
= USB to Bluetooth 
USB to HDMI 
USB to Thunderbolt 
SB to DisplayPort or Mini DisplayPort 
SB keyboards, mice, and other pointing devices 
SB hard drives 


U 
U 
U 
USB optical drives 





= USB smart card readers 


USB-to-other port adapters are often called dongles. Figure 10.50 shows a simple USB 
Bluetooth adapter as well as a USB to RJ-45 dongle. A USB optical drive is handy because 
it can be moved from laptop to laptop, and if you don’t need it, you can leave it at the office 
or home and not have to carry the extra weight around. Just plug it in and the operating 
system will detect and configure it. 


FIGURE 10.50 A USB Bluetooth adapter and a USB to RJ-45 dongle 
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USB smart card readers (see Figure 10.51) are popular external peripherals as well, 
because they are rarely built-in to laptop cases. A smart card is a credit-card-sized 
plastic card with embedded circuits in it that can be used to store or process data. 
They can be used in security applications or for receiving payments with credit cards. 
If you have ever seen a credit card with what looks like a microchip built in to it, 
that’s a smart card. 
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FIGURE 10.51 A USB smartcard reader 





P Laptops may have additional ports as well, such as Mini DisplayPort (MDP), 
A: Thunderbolt, and HDMI. USB ports are ubiquitous and have the most types 
of peripherals available. 


Summary 


In this chapter, you learned about the various laptop issues that the A+ technician faces. We 
discussed differences between laptops and desktops, including the various components that 
make up a laptop and how they differ in appearance and function from those on a desktop. 

We broke the chapter into several sections to discuss different components. We started 
with the case, and then moved on to motherboards and processors, memory, storage, input 
devices, internal expansion, power systems, displays, and external peripherals. In each sec- 
tion, we covered specifics related to laptop versions of these components and included exer- 
cises to show you how to service them. 

The chapter puts particular emphasis on the components of a display, including the type 
of display (LCD or OLED), the screen (which may be a touch screen or include a digitizer), 
Wi-Fi antenna placement, webcam, microphone, and inverter. We discussed special func- 
tion keys that control many features, such as dual displays, volume and media settings, 
screen brightness and orientation, and turning off communications such as Wi-Fi, cellular, 
Bluetooth, and GPS (or all at once with Airplane mode). 

Finally, we ended the chapter by examining cable locks, docking stations and port repli- 
cators, and USB peripherals, such as smart card readers. 


Exam Essentials 


Know the differences between laptop processors and desktop processors. Laptops have 

less room in them, so it makes sense that laptop processors are smaller than their desktop 
brethren. They also operate at lower voltages, have more advanced power-down or sleep 

modes, and are often soldered directly to the motherboard. 
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Understand the differences between laptop memory standards and desktop memory 
standards. Continuing a main theme of this chapter, memory in laptops needs to be 
smaller than in desktops, and so it is. The main standard for laptop memory is SODIMM, 
and there are also MicroDIMMs. 


Know how to install and configure laptop hardware and components. Hardware and 
components you need to be familiar with are keyboards, hard drives, memory, smart card 
readers, optical drives, wireless network cards, Bluetooth modules, cellular cards, video 
cards, Mini PCIe, the screen, DC jack, battery, touchpad, plastics/frames, speaker, system 
board, and CPU. 


Understand the components within a laptop display. Within a laptop display, there is the 
screen and the technology it uses (LCD or OLED, touch screen/digitizer), Wi-Fi antenna, 
webcam, microphone, and inverter. 


Understand the various power sources for laptops. You should know that the Li-ion bat- 
tery is the preferred rechargeable power source for laptops and that active power supplies 
that plug into AC and DC power sources are available. Additionally, knowing the differ- 
ence between autoswitching and fixed power supplies is essential. 


Know the various input devices and expansion buses and ports found on laptop 
computers. Although many of these technologies are available in desktop computers as 
well, the science behind outfitting laptops with similar functionality presents unique details 
that the A+ technician should know. 


Know where to get service manuals for laptops. Service manuals can be downloaded from 
the laptop manufacturers’ websites. 


Know what the special function keys do. Using the function (Fn) key, users may be able 
to configure dual displays, volume settings, screen brightness, keyboard backlight, screen 
orientation, and media options. They may also be able to turn on or off communications 

settings such as wireless networking, cellular, Bluetooth, and GPS. This includes Airplane 
mode. 


Understand how to configure common laptop devices. Devices include configuring the 
touchpad and touch screen, and changing wireless settings using keyboard function keys. 


Know how to replace hardware devices from laptops. Laptop components are typically 
accessed either from the bottom of the case or by removing the keyboard and accessing 
them from the top. Each laptop is different, so be sure to consult your documentation. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 
1. A client has a laptop with which you are unfamiliar. You are asked to perform a memory 
upgrade. How can you obtain the service manual for this laptop computer? 
A. By pressing F1 while in Windows 
B. By pressing F2 while the system is booting up 
C. By reading the paper copy that comes with the laptop 
D. By searching the manufacturer’s website 
2. Your manager tells you to replace the inverter on a broken laptop. Where will you find this 
component? 
A. Underneath the keyboard 
B. In the display 
C. Next to the heat sink and fan 
D. Near the CPU 
3. You need to replace an LCD on a defective laptop. Which of the following are components 
of an LCD? (Choose all that apply.) 


A. Inverter 


B. Screen 
C. Wi-Fi card 
D. Backdrop 


4. A user complains that his mouse cursor randomly jumps to different places on the screen 
when he types. Which device might you want to disable to prevent this from happening? 


A. Touchpad 
B. Mouse 
C. Point stick 
D. Trackball 
5. One of the users on your network needs to travel, and she wants to work on the airplane. 
Which laptop accessory will allow her to power her laptop from the airplane? 
A. AC adapter 
B. DC adapter 
C. Battery converter 
D 


Airplane mode 
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10. 


11. 
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You need to replace defective DDR4 memory in a laptop. How many pins will the replace- 
ment memory module have? 


A. 200 
B. 204 
C. 260 
D. 288 


A user complains that his 2-in-1 laptop screen does not properly detect where he places his 
finger on the screen. What should you do first to resolve the issue? 


A. Replace the touch screen. 
Replace the touchpad. 
Recalibrate the touch screen. 


B 
c 
D. Recalibrate the touchpad. 
E. Degauss the touch screen. 
F. 


Degauss the touchpad. 
You are sitting in a coffee shop and using the public wireless network. You suddenly notice 
suspicious activity on your laptop. Which laptop feature should you use? 
A. Wi-Fi function key 
B. Cellular function key 
C. Bluetooth function key 
D. Laptop lock 
There has recently been a string of hardware thefts in your office building. What should 
you recommend that your users implement to help avoid this problem? 
A. Enable GPS tracking. 
B. Use a docking station. 
C. Use a cable lock. 


D. Use the screensaver lock. 


Which of the following describes the job of an inverter in a laptop? 
A. It changes the screen orientation when the laptop is rotated. 
B. It converts AC power into DC power for the display backlight. 
C. It converts DC power into AC power for the display backlight. 
D. It allows the laptop display to function in tablet mode. 


Which of the following laptop features turns off all wireless communications? 
A. Wireless function key 
B. Cellular function key 
C. Bluetooth function key 
D 


Airplane mode function key 


12. 


13. 


14. 


15. 


16. 


17. 
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A user on your network wants to be able to draw images on a screen and have the laptop 
capture them. What type of device needs to be installed on his laptop? 


A. Inverter 

B. Capturer 

C. Digitizer 

D. Touchpad 

A user has requested a laptop memory upgrade. The technician attempts to put in new 


memory, but the memory module is barely too wide for the slot. What is the most likely 
scenario? 


A. The technician is trying to install DDR4 into a motherboard with DDR3 slots. 

B. The technician is trying to install DDR3 into a motherboard with DDR4 slots. 

C. The technician is trying to install MicroDIMMs into SODIMM slots. 

D. The technician is trying to install DIMMs into SODIMM slots. 

You have a user who needs to keep desktop devices such as keyboard, monitor, and mouse 


permanently connected so that they can be used by an attached laptop. What type of device 
do you recommend that they use? 


A. Docking station 

B. Keyboard, video, mouse (KVM) switch 
C. Print server 

D. USB hub 


The process by which the processor slows down to conserve power is officially called 


Underclocking 


A. 

B. Cooling 

C. Disengaging 
D. Throttling 


You need to replace a failed AC adapter for a client’s laptop. When replacing the adapter, 
which of the following purchases is acceptable to obtain the same or better results? 


A. An AC adapter with a higher voltage rating than the original 

B. An AC adapter with a higher wattage rating than the original 

C. ADC adapter with the same voltage rating as the original 

D. An AC adapter with a lower voltage and wattage rating than the original 

What should you do for a Li-ion battery that appears to charge fully but does not last as 
long as the battery’s meter indicates that it will last? 

A. Replace the battery. 

B. Exercise the battery. 

C. Calibrate the battery. 

D. Short the terminals to discharge the battery. 
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18. You are giving a seminar to new technicians on replacing laptop hard drives. A student asks 
how do laptop hard drives differ from desktop hard drives. What do you tell them? 


A. 


B. 
Cc. 


D. 


Laptop hard drives use completely different standards from those used by desktop hard 
drives for communication with the host. 


Laptop hard drives are solid-state, whereas desktop hard drives have spinning platters. 


Laptop hard drives require a separate power connection, whereas desktop hard drives 
are powered through the drive interface. 


The most common form factors for laptop hard drives is smaller than that of a desktop 
hard drive. 


19. One of your network users has an older laptop with no Bluetooth support. He recently 
received a Bluetooth headset that he needs to use with his laptop. What is the quickest and 
cheapest way to make the headset compatible with his laptop? 


A. 
B. 
C. 
D. 


Buy a Wi-Fi-compatible headset 
Buy a USB Bluetooth adapter 

Buy a Mini PCIe Bluetooth adapter 
Replace the laptop 


20. A user wants her laptop to have a full-sized optical drive and external hard drive. Which of 
the following accessories is most likely to have full-sized bays for these devices? 


A. 


B. 
C. 
D 


Laptop base 
Port replicator 
Docking station 
Mini PCle dock 


Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answer compares to the authors’, refer 
to Appendix B. 

The hard drive on a Dell Inspiron 13 7000 computer failed. You have an extra hard 
drive of the exact same type. What would you do to replace it? 
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THE FOLLOWING COMPTIA A+ EXAM 
220-1001 OBJECTIVES ARE COVERED 
IN THIS CHAPTER: 


y 1.4 Compare and contrast characteristics of various 
types of other mobile devices. 


= Tablets 

= Smartphones 

a Wearable technology devices 
a Smart watches 
= Fitness monitors 
a VR/AR headsets 

a E-Readers 


a GPS 


vZ 1.5 Given a scenario, connect and configure 
accessories and ports of other mobile devices. 


=» Connection types 
a Wired 
= Micro-USB/Mini-USB/USB-C 
a Lightning 
=» Tethering 


= Proprietary vendor-specific ports 
(communication/power) 


= Wireless 
= NFC 
= Bluetooth 
a IR 


= Hotspot 








Accessories 

= Headsets 

a Speakers 

= Game pads 

= Docking stations 

= Extra battery packs/battery chargers 
a Protective covers/waterproofing 

= Credit card readers 


a Memory/MicroSD 


For about 20 years, laptop computers enjoyed a status as the 
most popular mobile computing device available. Desktop 
BEASTS computers were more powerful and cheaper, but with a laptop, 
users weren’t tethered to a desk. Even though the first laptops weren’t exactly easy to lug 
around, they were still preferable to desktops for users on the go. Technology kept improv- 
ing, components kept getting smaller, and prices kept falling, which made laptops explode 
in popularity. As of the mid-2000s, more laptops were sold than desktops each year. 

Technology has an inevitable way of progressing. The radio was the most popular source 
of information and entertainment until the television came along. Black-and-white televi- 
sions were cutting edge until color models were developed. Today, televisions barely resem- 
ble their ancestors. The same can pretty much be said of the mobile devices in the market 
today. Technology has progressed, components are getting smaller, and so are the devices 
that we legitimately call computers. In stark contrast to the computers of yesteryear, today’s 
mobile devices can be so small that the likelihood of misplacing them is a real and ongoing 
concern. 

This chapter covers the characteristics of modern mobile devices. Examples include tab- 
lets and smartphones, along with wearable technology, which is the most recent big wave 
among computing devices. Along with the various types of mobile devices, we will discuss 
the common accessories and ports used to make connectivity easier. For now, it’s cutting- 
edge technology. No doubt that 20 years from now, this chapter will seem as outdated as 
one that were to gush about the promise of mobile desktops today! 
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To be totally fair, laptop computers are mobile devices. Calling this chapter “Computers 
Smaller Than Laptops” or referring to the devices in this chapter in this manner would get 
tedious in a hurry. So instead we call them mobile devices, which we hope that you will 
agree (at least for this chapter) are computers smaller than laptops. 

We start off this chapter by discussing the characteristics that make mobile devices what 
they are. Then we’ll explain the characteristics of the following types of mobile devices: 
= Tablets 
= Smartphones 
a  E-readers 
» GPS 


= Wearable technology devices 
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We will finish by discussing connection types related to mobile devices and specific 
accessories that users may find helpful. 


Characteristics of Mobile Devices 


If you were asked to define the primary characteristic of mobile devices, you would prob- 
ably answer, “They are small,” and you wouldn’t be wrong. There are three overarching 
characteristics of mobile devices that make working with them unique versus working with 
laptops or desktops: field servicing and upgrading, input methods, and secondary storage. 
We'll discuss each one in turn. 


Field Servicing and Upgrading 


Ever since the dawn of the portable computer, manufacturers and service providers have 
based a percentage of their success on warranties and “house calls” to repair devices on the 
fritz. It’s a fact that quasi-permanent components, such as displays and motherboards, are 
widely considered replaceable only with identical components in laptops and similar devices. 
However, technically minded users could take it upon themselves to expand the capabili- 
ties of their own system by, for instance, upgrading the hard drive, increasing RAM, using 
expansion cards and flash devices, attaching wired peripherals, and inserting discs. 

Although the ability to repair and expand the functionality of portable devices in the 
field has become all but obviated, it has been shown with current and past generations of 
mobile devices that users are not averse to giving up expandability and replaceable parts as 
long as functionality and convenience outshine the loss. 

Although many Android and other non-Apple devices allow the replacement of batteries 
and the use of removable memory cards as primary storage, even this basic level of access is 
removed in Apple’s mobile devices, including its iPad line of tablet computers. In an effort 
to produce a sleeker mobile phone, even Android devices have been developed without user 
access to the battery. For Apple, however, in addition to producing a nice compact package, 
it is all part of keeping the technology as closed to adulteration as possible. Supporters of 
this practice recognize the resulting long-term quality. Detractors lament the lack of options. 

To service closed mobile devices of any size, it may be necessary to seek out an autho- 
rized repair facility and take or send your device to them for service. Attempting your own 
repairs can void any remaining warranty, and it can possibly render the device unusable. 
For example, a special tool is required to open Apple’s devices. You cannot simply dig 
between the seams of the case to pop the device open. Even if you get such a device to open, 
there is no standard consumer pipeline for parts, whether for repair or upgrading. If you 
want to try the repair yourself, you could be on your own. You may be able to find helpful 
videos on YouTube or ww.ifixit.com to provide some guidance, though. 

Anyone who has been around the business for more than just a few years has likely seen 
their fair share of components and systems with no user-serviceable parts. For these situ- 
ations, an authorized technician can be dispatched to your location, home or work, with 
the appropriate tools, parts, and skills to field-service the system for you. On a slightly dif- 
ferent, perhaps subtler note, the bottom line here is that many of today’s mobile devices, 


Understanding Mobile Devices 605 


including some of the larger tablet-style devices, have no field-serviceable parts inside, let 
alone user-serviceable parts. In some extremes, special work environments similar to the 
original clean manufacturing environment have to be established for servicing. 


Input Methods 


With decreased size comes increased interaction difficulties. Human interfaces can become 
only so small without the use of projection or virtualization. In other words, a computer 
the size of a postage stamp is fine as long as it can project a full-sized keyboard and a 60” 
display, for example. Using microscopic real interfaces would not sell much product. Thus, 
the conundrum is that users want smaller devices, but they do not want to have to wear a 
jeweler’s loupe or big-screen virtualization glasses to interact with their petite devices. 

As long as the size of the devices remains within the realm of human visibility and inter- 
action, modern technology allows for some pretty convenient methods of user input. Nearly 
all devices, from tablet size down, are equipped with touch screens, supplying onscreen 
keyboards and other virtual input interfaces. On top of that, more and more of the screens 
are developing the capability to detect more than one contact point. 


We discuss touch screens more in the section “Tablets” later in this 
s STE chapter. 


Generically, this technology is referred to in the industry as multi-touch, and it is avail- 
able on all Apple devices with touch input, including the touch pads of the Apple laptops. 
Apple, through its acquisition of a company called FingerWorks, holds patents for the 
capacitive multi-touch technology featured on its products. Today, multi-touch is more 
about functionality than novelty. Nevertheless, the markets for both business and pleasure 
exist for multi-touch. 

Certainly, touch screens with the capability to sense hundreds of separate points of con- 
tact can allow large-scale collaboration or fun at parties. Imagine a coffee table that can 
allow you to pull out a jigsaw puzzle with the touch of an icon, remembering where you 
and three friends left off. Imagine all of you being able to manipulate pieces independently 
and simultaneously and being able to send the puzzle away again as quickly as you brought 
it out, so that you can watch the game on the same surface. This technology exists, and it 
is for sale today. Early examples were built on Microsoft’s PixelSense technology, including 
the Samsung SUR40. Companies like Ideum build multi-touch platform tables, including a 
monster 86” 4K Ultra HD display with 100 touch points. 

On a smaller scale, our mobile devices allow us to pinch and stretch images on the screen 
by placing multiple fingers on that screen at the same time. Even touch pads on laptops can 
be made to differentiate any number of fingers being used at the same time, each producing 
a different result, including pointing and clicking, scrolling and right-clicking, and drag- 
ging—all one-handed with no need to press a key or mouse button while gesturing. 

HTC created an early touch screen software interface called TouchFLO that has 
matured into HTC Sense, and it is still in use today on its Android-based mobile devices. 
TouchFLO is not multi-touch capable, nor does it specify the physical technology behind 
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the touch screen, only the software application for it. Theoretically then, TouchFLO and 
multi-touch could be combined. 

The primary contribution of TouchFLO was the introduction of an interface that 
the user perceives as multiple screens, each of which is accessible by an intuitive fin- 
ger gesture on the screen to spin around to a subsequent page. On various devices 
using this concept, neighboring pages have been constructed side by side or above and 
below one another. Apple’s mobile devices employ gestures owing to the contributions 
of TouchFLO, bringing the potential of combining TouchFLO-like technology and 
multi-touch to bear. 

Users of early HTC devices with resistive touch screen technology met with difficulty and 
discord when flowing to another screen. The matte texture of the early resistive screens was 
not conducive to smooth gesturing. Capacitive touch screen technology is a welcome addi- 
tion to such a user interface, making gestures smooth and even more intuitive than ever. 


P Resistive touch screens use pressure from a stylus or finger to register the 

A: contact. Capacitive touch screens use electrical conductivity, which makes 
the human finger the perfect stylus. Resistive touch screens allow for more 
granularity because they can account for more sensors per square inch. 
Capacitive touch screens are more responsive and better suited to multi- 
touch applications, but generally don’t work if the user is wearing gloves, 
which can block the finger’s electrical current. If you need help remember- 
ing the difference, think of resistive screens as providing resistance or 
needing pressure. And for capacitive screens, think of a capacitor, which 
stores electricity (and capacitive touch screens utilize conductivity). 


Secondary Storage 


Computers of all sizes and capabilities use similar forms of RAM for primary storage—the 
storage location for currently running instructions and data. Secondary storage—the usu- 
ally nonvolatile location where these instructions and data are stored on a more permanent 
basis—is another story. As of the time of writing, larger systems still favor conventional 
hard disk drives—with magnetic spinning disks, larger overall capacity, and less cost 

per byte—over the newer solid-state drives (SSDs), although SSDs are quickly gaining in 
popularity. By the year 2021, it’s projected that SSDs will be installed more in new devices 
than conventional hard drives. This discussion was presented first in Chapter 2, “Internal 
Expansion, Storage Devices and Power Supplies.” 

The primary concern with smaller devices is the shock they tend to take as the user 
makes their way through a typical day. Simply strapping a phone to your hip and taking the 
metro to work presents a multitude of opportunities for a spinning disk to meet with catas- 
trophe. The result would be the frequent loss of user information from a device counted on 
more and more as technology advances. 

Just as many telephony subscribers have migrated from a home landline that stays put to 
a mobile phone that follows them everywhere, many casual consumers are content to use 
their mobile device as their primary or only computing system, taking it wherever they go. 
As a result, the data must survive conditions more brutal than most laptops because laptops 
are most often shut down before being transported. 
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The most popular solution is to equip mobile devices with SSDs in place of traditional 
magnetic disk drives. There are no moving parts; the drive stays cooler and resists higher tem- 
perature extremes; and SSDs require less power to run than their conventional counterparts. 


Tablets 


The tablet computer has been available for longer than you probably think. GRiD Systems 
released the first commercial tablet, called the GRiDPad, in 1989 (see Figure 11.1). It ran 
the MS-DOS operating system and had a touch screen input. You can see some of its other 
characteristics in Table 11.1. Its display size isn’t atypical for a tablet today, but it’s pretty 
heavy by even today’s laptop standards (much less a tablet). 


FIGURE 11.1 GRiDPad Tablet from 1989 





Photo credit: http: //oldcomputers.net 


TABLE 11.1 GRiDPad specifications 





Feature Specification 

CPU Intel 80C86 @ 10 MHz 

RAM 1 MB internal 

Display 10” LCD, 640 x 400 graphics 
Storage Two RAM card slots 

Ports RS-232 (serial), mini-DIN keyboard 
OS MS-DOS 3.3 


Weight 4.5 Ibs 
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The defining characteristic of a tablet computer has always been the touch screen. Touch 
screens come in two varieties: resistive and capacitive. Resistive touch screens respond 
to pressure, and they are highly accurate in detecting the position of the touch. These 
types of touch screens require the use of a stylus or other hard object, such as a fingernail. 
Capacitive touch screens are a little less accurate but more responsive. They respond to 
changes in electrical current, so the human fingertip works great as the facilitator of input. 

More modern tablets were hitting the market in the year 2000, when Microsoft showed 
off the Tablet PC at the popular technology conference, Comdex. For as innovative as it 
was, the Tablet PC never sold very well. More tablets came along. Many were laptops with 
screens that would rotate and then fold over the top of the keyboard (like the one shown in 
Figure 11.2), so they could be used as a traditional laptop or a tablet. When used like a tab- 
let, they were said to be in slate mode. Little did they know at the time that their inventions 
were precursors to the now-popular 2-in-1 laptops. 


FIGURE 11.2 HP Tablet PC from 2006 





HP Tablet PC running Windows XP (Tablet PC edition) (2006), by Janto Dreijer—own work. Licensed under 
Public Domain via Wikimedia Commons: https: //commons.wikimedia.org/wiki/File:HP_Tablet_PC_ 
running_Windows_XP_(Tablet_PC_edition)_ (2006) .jpg 


The watershed moment for tablets came in 2007 when Apple launched the iPad, running 
the iOS operating system. The iPad became popular instantly, following in the footsteps 
of the iPod and growing up together with the iPhone. The dominant tablet OS today is 
Google’s Android OS, with Apple’s iOS a distant second and Microsoft Windows-based 
tablets in third place. 
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We will cover iOS and Android in depth in Chapter 15, “Operating System 
Basics.” 


Today, tablets are still known for their touch screens, although you can easily find key- 
board accessories that attach to the tablet. Some are for temporary use, and others look a 
little more permanent and make the tablet look like a small clamshell-style laptop. Listing 
the characteristics of all tablets in a forum like this isn’t practical, but Table 11.2 gives you 
some specifications for a few popular tablets at the time of this writing. Screen sizes typi- 
cally fall anywhere between about 7” and 13”, although you can find much larger ones with 
24” displays as well. All tablets come equipped with Wi-Fi and Bluetooth, and many have 
cellular and GPS capabilities as well. 


TABLE 11.2 Popular tablet specifications 





Feature Samsung Galaxy Tab S4 Apple iPad Pro Microsoft Surface Pro 6 
CPU i Snapdragon A10X Fusion 64-bit Intel Core i5 8th gen 
RAM 4 GB 4 GB 8 GB 

Display and 10.5”, 2560 x 1660 12.9”, 2732 x 2048 12.3”, 2736 x 1824 
resolution 

Storage 256 GB 256 GB 256 GB 


Rear camera 


13 megapixel 1080p 


12 megapixel 1080p 


8 megapixel 1080p 


Ports USB-C, 3.5mm audio, Lightning USB 3.0, microSD 
microSD 

OSs Android 8.1 Oreo Apple iOS 10 Windows 10 Home 

Battery life 16 hours 10 hours 13.5 hours 

Weight 17 oz 23.8 oz 27.2 OZ 

Cost $750 $950 $1199 


Tablets running iOS or Android come with an installed web browser and some apps, 
and you can download additional apps from their respective stores (App Store or Google 
Play). Windows-based tablets can run apps designed for current versions of Windows, or 
you can download apps from the Microsoft Store. 
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Smartphones 


The smartphone is by far the most popular computer device in the world today. Whereas 
households might have one or maybe two desktop or laptop computers each, it seems like 
everyone from grandparents to preschoolers has their own smartphone. From highly industri- 
alized nations to developing countries, smartphones have permeated every corner of the globe. 
Any mobile phone with its own processor and operating system can be considered a 
smartphone. Touch screens are ubiquitous, and nearly all devices also come with features 
such as a web browser, email access, media player, GPS, camera, and various apps. They 
are able to connect wirelessly via cellular, Wi-Fi, Bluetooth, and in many cases, near field 
communication (NFC) or infrared (IR). Their small screen size, generally no more than 5” 
to 7”, makes them poorly suited for business applications such as creating documents or 
spreadsheets, but they are the perfect size to carry around and read email, text, listen to 
music, and surf the Internet. Some people even actually use them to make phone calls. 


PX Apps can be downloaded from the same app stores that we mentioned 

Qo" in the section on tablets. The vast majority of apps for an OS can run on 
either tablets or smartphones, but always be sure to check compatibility 
before purchasing an app. 


The IBM Simon Personal Communicator, released by BellSouth in 1994 and shown in 
Figure 11.3, is considered to be the first ever smartphone. By today’s standards, it was pretty 
remedial, but back then it was revolutionary (although perhaps a bit ahead of its time). It 
included a touch screen with a stylus, its own OS, and a few basic apps. You can see the basic 
specifications in Table 11.3. BellSouth sold about 50,000 units (at the low price of $899 and 
with a two-year contract) during the six months or so that it was for sale. In part because of 
its size, weight (just over a pound), and expense, the device didn’t gain widespread popularity. 


FIGURE 11.3 Simon Personal Communicator 





IBM's “Simon Personal Communicator” by Bcos47—http: //commons.wikimedia. org/wiki/File: IBM_SImon_ 
in_charging_station.png. Licensed under Public Domain via Wikimedia Commons. 
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TABLE 11.3 Simon Personal Communicator specifications 





Feature Specification 

CPU Vadem 16 MHz 

RAM 1 MB 

Display 4.5” x 1.4” monochrome backlit LCD 

Storage 1 MB 

Connectivity Cellular, 2,400 bps modem, fax, PCMCIA type 2 
OS Datalight ROM-DOS 

Dimensions 8” x 2.5” x 1.5” 

Weight 18 oz 


Japan was the first country to see widespread smartphone adoption in 1999, with 
a phone released by telecom giant NTT DoCoMo. By 2001, it’s estimated that NTT 
DoCoMo had 40 million subscribers. The technology didn’t really start to take off in 
the United States until after 2003, when a company called Research In Motion (RIM) 
launched the modern BlackBerry. The early BlackBerry 6210 is shown in Figure 11.4. 
The built-in hardware keyboard was a key defining feature; indeed, even as recently 
as 2017, BlackBerry released a phone with a physical keyboard to please their loyal 
buyers. 


FIGURE 11.4 BlackBerry 6210 
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The defining year for smartphones came in 2007 with Apple’s release of the iPhone, 
running the iOS operating system. It was the first popular device with a capacitive touch 
screen and an onscreen keyboard that users could operate with their fingers. An Android- 
based phone was launched a year later, in 2008, in the form of the HTC Dream. It wasn’t 
quite as advanced as the iPhone, but it had similar capabilities. Although iPhones and 
Android-based phones are each slightly better at certain tasks, today they are more or less 
comparable in technology. 


P Google’s Android OS and Apple’s iOS are discussed in depth in 
‘Qi Chapter 15. 

In terms of current usage, Android-based smartphones dominate market share, with 
Apple iOS second. You might occasionally stumble across a Windows-based smartphone, 
and BlackBerry devices are rare as well. Figure 11.5 and Table 11.4 show comparisons of 
selected iPhone versions. In Figure 11.5, you can see the size differences as newer models 
have come out. There are so many different Android smartphones in the market that it 
would be unrealistic to try to compare them all. The biggest manufacturers are Samsung, 


HTC, LG, Sony, and Motorola. 


TABLE 11.4 Selected iPhone specifications 





Feature 1st Gen 4 6 XS Max 
Release date June 2007 June 2010 September 2014 September 2018 
Initial OS iPhone OS 1.0 iOS 4 iOS 8 iOS 12 
Display size 3.5” 3.5” 4.7” 6.5” 
Weight 4.8 oz 4.8 oz 4.6 oz 7.3 OZ 
Storage 4 GB, 8 GB, 8 GB, 16 GB, 16 GB, 64 GB, 64 GB, 256 GB, 

or 16 GB or 32 GB or 128 GB or 512 GB 
Processor 620 MHz 1 GHz A8 1.4 GHz dual Al2 Bionic 

core six-core 

802.11 spec b/g b/g/n a/b/g/n/ac a/b/g/n/ac 
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Feature 1st Gen 4 6 XS Max 
Camera 2 megapixel 5MP £/2.8, 8MP f/2.2, 1080p 12MP f/1.8, 2180p 
(MP) f/2.8 720p HD HD video HD video 

video 

Battery life (hours of N/A 10 10 13 

Wi-Fi Internet use) 

Other No GPS Added NFC Face ID, no 
gyroscope fingerprint sensor 


FIGURE 11.5 A visual 10-year iPhone history 





iPhone iPhone 4 iPhone 4S iPhone 5 
2007 2010 2011 2012 





iPhone 5S iPhone 6 iPhone 6S iPhone 7 iPhone X 
2013 2014 2015 2016 2017 
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PX The largest phone in Figure 11.5 is the iPhone X, with a 5.8” display. 2018 
Qo" saw the release of the iPhone XR, with a 6.1” display, and the iPhone XS 
Max, with a 6.5” screen. 








G Real World Scenario 
The Fall of a Giant 


The naturalist Charles Darwin is famously quoted as saying, “It’s not the strongest of the 
species that survives, but the one that is most adaptable to change.” That may be true in 
nature, but it is most certainly true in the rapidly evolving world of technology. 


In 1999, a Canadian telecommunications company named Research In Motion (RIM) intro- 
duced what many consider to be the predecessor to the first modern smartphone. The 
first BlackBerry was basically a two-way pager with email support, but within a few years 
it would support mobile calls, email, text messaging, Internet faxing, and web browsing. 
With the focus on providing mobile email, BlackBerry quickly gained a significant pres- 
ence in the mobile space. 


One of the primary features of the BlackBerry was that it had a full keyboard. It wasn’t 
full-sized, but each letter had its own key, which made typing emails and texts signifi- 
cantly easier than on the cell phones in use at the time. Over the course of its history, the 
physical keyboard became both a symbol of BlackBerry as well as part of its downfall. 
Similarly to Apple, RIM produced both the hardware and the software together. The hard- 
ware devices ran the Java-based BlackBerry OS. 


BlackBerry devices went through several revisions, much like their competitors, with the 
addition of new features. However, RIM was not as able to adapt quickly to changing mar- 
ket conditions as its competitors, and it went from being a strong player to being mostly 
irrelevant in the mobile space. As of 2009, BlackBerry commanded about a 20 percent 
share of the global mobile market and a 43 percent share in the United States. In 2011, 
the global figure had dropped to about 10 percent, and by 2014 it was down to below 2 
percent. The introduction of the iPhone severely hurt sales, and the launch of Android a 
year later just made things worse. Critics complained that the BlackBerry had a dated look 
and feel, and it wasn’t as good at browsing the Internet. The BlackBerry App World had 
some apps but not enough, and developing new ones was expensive. Moreover, RIM held 
a strong belief that consumers would not want to use a virtual keyboard, and it turned 

out they were wrong. The company did eventually introduce touch screen smartphones, 
some with and some without physical keyboards, but by that time, the damage had 
already been done. 


In 2013, RIM changed its name to BlackBerry Limited, released the BlackBerry 10 OS 
(based on the UNIX-like QNX platform), and announced that BlackBerry would stop 
producing operating systems. In 2015, BlackBerry introduced its first Android-based 
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smartphone. The slide continued, as in 2016 BlackBerry announced that it would no lon- 
ger make its own phones (but would license the name to other manufacturers). The last 
BlackBerry Limited-designed smartphone was released in February 2017, complete with a 
4.5” screen and a trademark physical keyboard. 


BlackBerry is a great case study for what happens to a technology company when it bets 
on the wrong trends or when it focuses on the wrong consumer benefits and the rest of 
the industry leapfrogs it in what seems to be an instant. 





© Real World Scenario 


Whither the Phablet? 


Throughout the 1990s and early 2000s, miniaturization was the biggest trend in mobile 
phones. First there were brick designs, then flip phones, and then sliding phones—each 
one getting smaller and smaller. Several popular movies and television shows made fun 
of the trend by showing characters using impossibly small devices, and some wondered 
if or when we would see the day when phones were simply a small microchip implanted 
inside a person’s head. 


Something funny happened on the road to cellular phone implants, though, and that was 
the smartphone. Smartphones made the device so much, well, smarter than a regular 
phone. Among other things, they incorporated Internet access and video players, and 
users wanted to be able to clearly see the content. So, instead of devices getting smaller, 
they started getting bigger. You saw an example of this with iPhones in Figure 11.5. 


At the same time, tablet computers were becoming more popular and smaller. It was 
inevitable that, at some point, a device would blur the line between smartphone and tab- 
let, and that device was called a phablet. Technically, a phablet was a smartphone with a 
display size between 5” and 7”. 


From about 2011 to 2014, phablet was a hot buzzword in tech circles; in fact, Reuters 
called 2013 “The Year of the Phablet.” The New York Times forecasted that phablets 
would become the dominant computer device of the future. Phablet-sized devices were 
in a weird middle ground, though. For a phone replacement, they were a bit too big to be 
conveniently stuffed into a pocket, and for many users they were too large to be comfort- 
ably used with one hand. But at the same time, they were smaller than a tablet or laptop, 
so they couldn't be easily used for work applications like spreadsheets. So while the 
larger phones remain popular, it’s possible that they have reached their high-water mark. 


The term phablet isn’t used at all today; they're simply seen as large phones. (And if 
you're curious, phablets are not listed in the A+ exam objectives.) In fact, a recent search 
of the term phablet on a few popular electronics retailers’ websites returned no phones 
but only a few accessories. At the end of the day, a phablet is simply a big smartphone, 
and it has all of the same features that you would expect from that type of device. 
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E-readers 


An e-reader is a device similar to a tablet in size but optimized for reading digital 
books, magazines, and newspapers. The main characteristics that differentiate an 
e-reader from a tablet are the type of display, smaller on-board storage, and longer 
battery life. 

Most e-readers use a technology called electrophoretic ink, or E Ink, which is a propri- 
etary type of electronic paper. Although E Ink is available in color, many consider its best 
applications to be in grayscales or pure black and white. While e-readers might not look as 
fancy as tablets, there are two clear advantages of E Ink displays: 


= Lower energy use than other LCD displays, which greatly prolongs battery life; many 
e-readers can go several weeks between charges. 


= Much easier to read in bright conditions, such as sunlight. 


Although the term E /nk is used to discuss a general technology, the term 

sb TE is a trademark of E Ink Holdings, Inc. (http: //www.eink.com). E Ink is also 
marketed under the name Vizplex. Other competitors exist in this field, but 
Vizplex products lead the market. 


The most popular e-reader is the Amazon Kindle, shown in Figure 11.6. Others include 
the Barnes & Noble Nook, Kobo Aura and Kobo Glo, Onyx BOOX, PocketBook, and 
the Sony DPT-S1, which has a large 13.3” screen that can display full 8.5” x 11” pages, 
and comes with a stylus users can use to write with. Specifications differ by manufacturer 
and model, but generally speaking, e-readers have about a 6” touch screen, 2 GB to 4 GB 
storage, Wi-Fi connectivity (and maybe cellular as well), and weigh 6 oz to 8 oz. Some 
relatively common features are a built-in web browser, a backlight for reading in dim- 
light settings, and a microSD memory card reader. Most e-readers have a file system that 
allows users to store their titles in folders. (Kobo calls them shelves.) Users either subscribe 
to a service for a certain amount of monthly content, or they pay for each item that they 
choose to download. 


The Kindle Fire series devices run a version of Android and are consid- 
4, TE ered tablets, not e-readers. The Fire uses a traditional LCD display, not 


E Ink. 


Based on market sales data, it would appear that the e-reader peak was in about 2011. 
Since then, sales have slowly declined, possibly due to the overlap between tablets and 
e-readers. Tablets with e-reader apps give the user much more flexibility than a simple 
e-reader. E-readers are much less expensive, though, and they fill a specific niche for those 
who read a lot. 
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FIGURE 11.6 A basic Kindle e-reader 

















PROLOGUE 
— 





had just come to accept that my life would 
be ordinary when extraordinary things 
began to happen. The first of these came as 
a terrible shock and, like anything that changes 
you forever, split my life into halves: Before and 
After, Like many of the extraordinary things to 
come, it involved my grandfather, Abraham 
Portman. 

Growing up, Grandpa Portman was the most 
fascinating person I knew. He had lived in an 
orphanage, fought in wars, crossed oceans by 
steamship and deserts on horseback, performed 


GPS 


Global Positioning System (GPS) is a satellite-based navigation system that provides loca- 
tion and time services. It’s great technology for those who are perpetually lost, want to 
know the best way to get somewhere, or want or need to track down someone else. 

The most common commercial use for GPS is navigation; you can get your current loca- 
tion and directions to where you want to go. Other uses include tracking; law enforcement 
can monitor inmates with location devices, or parents can locate their children via their 
smartphones. Oil and gas companies use GPS in their geological surveys, and farmers can 
use GPS-enabled machines to plant crops automatically. There are three major compo- 
nents to GPS: the satellite constellation, the ground control network, and the receiver. The 
ground control network monitors satellite health and signal integrity. We'll look at the 
other two components next. 


GPS Satellites 


The United States Department of Defense (DoD) started developing GPS in the early 
1970s, with the goal of creating the best navigation system possible. The first GPS satellite 
launched in 1978, and today the United States government manages 32 total GPS satel- 
lites covering the globe. Twenty-four are active satellites for the service, and the rest are 
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backups. Satellites are launched into an orbit of about 12,550 miles above the earth, and 
old satellites are replaced with new ones when an old one reaches its life expectancy or 
fails. GPS is free to use for commercial purposes. 

There are additional global satellite-based navigation systems managed by other govern- 
ment entities. Collectively, they are called Global Navigation Satellite Systems (GNSSs). All 
of the systems are outlined in Table 11.5; as you might expect, no two systems are compat- 
ible with each other. 


TABLE 11.5 Global Navigation Satellite Systems 





Number of 
Name Managed By Satellites 
Global Positioning System (GPS) United States 24 
Global Navigation Satellite System (GLONASS) Russia 24 
Galileo Positioning System European Space Agency 30 
BeiDou Navigation Satellite System (BDS) China 35 
Indian Regional Navigation Satellite System (IRNSS) India 7 


At first glance, it might seem like there are an excessive number of satellites required to 
run a navigation service. GPS systems were designed to require multiple satellites. Receivers 
use a process called triangulation to calculate the distance between themselves and the 
satellites (based on the time it takes to receive a signal) to determine their location. They 
require input from four satellites to provide location and elevation or from three satellites 
to provide location. Most GNSSs provide two levels of service, one more precise than the 
other. For example, GPS provides the following two levels: 


= Standard Positioning Service (SPS) for civil use, accurate to within 100 meters horizon- 
tally and 156 meters vertically. Uses Coarse Acquisition (C/A) code. 


= Precise Positioning Service (PPS) for Department of Defense and ally use, accurate to 
within 22 meters horizontally and 27.7 meters vertically. Uses Precise (P) code. 


The accuracy numbers listed in this section are the official specifications 
e of GPS, which were calculated when the service was launched. For many 
years, GPS used a feature called Selective Availability (SA), which was an 
intentional degradation of public signals, implemented for national secu- 
rity reasons. (The government didn’t want potential enemies to be able 
to use GPS.) In 2000, the United States government discontinued the use 
of SA. Now, commercial GPS is accurate to within about 10-15 meters in 
most cases. Under ideal conditions, it can be accurate to within a centime- 
ter. Much of the accuracy depends on the quality of the receiver. 
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The two service levels are separated by transmitting on different frequencies, named 
L1 and L2. L1 transmits at 1,575.42 MHz, and it contains unencrypted civilian C/A code 
as well as military Precise (P) code. L2 (1,227.60 MHz) only transmits encrypted P code, 
referred to as Y code. In the United States, SPS is free to use; the receiver just needs to man- 
age C/A code. PPS requires special permission from the United States DoD as well as spe- 
cial equipment that can receive P and Y code and decrypt Y code. Galileo, in the European 
Union, provides free open (standard) service, but charges users a fee for the high data 
throughput commercial (premium) service. Both offer encrypted signals with controlled 
access for government use. 


GPS Receivers 


GPS receivers come in all shapes and sizes. Common forms are wearable watches and wrist- 
bands, stand-alone GPS devices (like the Garmin device shown in Figure 11.7), and ones 
built into automobiles. Most smartphones and tablets support GPS as well (Apple products 
use the name Location Services), and more and more laptops are coming with built-in GPS 
capabilities. You can also find GPS devices that come on a collar for pets. Most stand-alone 
GPS devices feature capacitive touch screens. The Garmin device shown in Figure 11.7 has 
a 4.5” touch screen; 5” to 7” devices are common as of the time of this writing. It also con- 
tains an SD memory card slot for expansion. Popular brands of automobile GPS devices are 
Garmin, TomTom, and Magellan. 


FIGURE 11.7 Garmin Nuvi GPS 


zj 


View map 





Knowing how to turn GPS on or off on a GPS receiver such as a mobile device or laptop 
is a valuable skill. The specific settings depend on the operating system, of course, but we 
can provide general guidance here. Exercise 11.1 shows you how to configure Location 
Services in iOS 12. 
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Configuring Location Services in iOS 12 


1. Click Settings > Privacy > Location Services. You will see a screen similar to the one 
shown in Figure 11.8. 


FIGURE 11.8 iOS Location Services 
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2. Atthe top, there is a slider to enable Location Services. Slide it to the on position to 
enable it (like in Figure 11.8), and off to disable it. 


Note that if you disable it, none of the apps on the device will be able to use the fea- 
ture, except for Find My iPhone. 


Each app’s capability to use Location Services is configured individually. 
3. To change an individual app, tap on it. There will be three choices: 

a Never 

a While Using the App 

=a Always 


An example is shown in Figure 11.9. 
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FIGURE 11.9 Configuring Location Services for an app 





all Verizon > 4:35 PM 7 =) 
< Back Google Maps 

ALLOW LOCATION ACCESS 

Never 

While Using the App [v 
Always 

App explanation: “To get navigation, traffic, and transit 
updates, and see info about places near you, choose 
Always Allow” 











4. Configure each app as desired. 


In the Android OS, GPS is configured through Settings as well: 


1. Either tap Settings > Location or swipe down from the top to reveal the notifications bar. 


If you do the former, you will see a screen similar to the one shown in Figure 11.10. 


FIGURE 11.10 Android GPS settings 
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2. Move the slider to the on position, as shown, to enable GPS. 


You can also configure things such as the mode, which has options for high accuracy or bat- 
tery saving settings. If you instead choose to swipe down to use the notifications bar, you 
may need to swipe down again to reveal the quick settings (unless you have already enabled 
quick settings). In quick settings (Figure 11.11), you will see a map pin labeled location. 


3. Tap it to enable or disable GPS. 


FIGURE 11.11 Android quick settings menu 
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Wearable Technology Devices 


Devices that we can call computers keep getting smaller and smaller. It’s no wonder then 
that manufacturers have designed wearable computers that can provide great functionality 
to users. Three types of wearable technology are smart watches, fitness monitors, and VR/ 
AR headsets. 


Smart Watches 


A classic American newspaper comic strip named Dick Tracy, created by Chester Gould, 
made its debut in 1931. It featured a hard-nosed detective named Dick Tracy, who by 1946 
had the coolest technologically advanced gadget: a smart watch. It wasn’t called a smart 
watch in the comic strip but a two-way wrist radio based on a walkie-talkie. If you search 
for “Dick Tracy and his watch,” you’ll probably recognize the device instantly. It’s clearly 
the inspiration for the smart watches of today. In fact, in 2015 Apple CEO Tim Cook said 
that Tracy’s watch was the impetus to make the Apple Watch. 

Throughout the 1990s and into the 2000s, many devices came on the market claiming 
to be smart watches. They were basically computerized wristwatches that offered some 
functionality, such as a calculator, but had no connection to cellular phones. By 2009, 
smart watches had the capability to connect to cell phones, and a few models had built-in 
cellular capabilities themselves. Most of these early prototypes ran some version of Linux, 
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although Microsoft dabbled in the area, as did Palm, Inc., which was famous for the Palm 
Pilot PDA and made the Palm OS. 

Modern smart watches run their own OS, often are able to make and receive cellular 
calls, provide touch screen capability, function as media players, have a camera, run apps, 
and include many of the same sensors as those found in a smartphone. In many respects, 
several smart watches are basically low-powered smartphones but strapped to the user’s 
wrist; others are designed to be an extension of a user’s phone. They are generally charged 
via a micro-USB connection. 

The two most popular brands of smart watches and their features are listed in Table 
11.6. The Samsung Gear series (now renamed to Galaxy Watch) is one of the longest- 
running smart watches, and it is one of the more popular Android-based options. In April 
2015, the Apple Watch was launched to much fanfare, because that’s what usually happens 
when Apple releases new toys. Other entrants into the market have included the LG Watch 
Urbane, Sony SmartWatch, Motorola Moto 360, Pebble Time, and Fitbit Versa, which is a 
combination of a smart watch and a fitness monitor. The Apple Watch has around 50 per- 
cent market share, and the Samsung Gear/Galaxy series has about 10 percent. All the other 
players fight for the rest of the market. 


TABLE 11.6 Selected smart watches 





Feature Apple Watch Series 4 Samsung Galaxy Watch 
Release date September 2018 August 2018 

OS watchOS 5.0 Tizen 4.0 

Display size 1.78” 1:3” 

Weight 1.69 oz 2.22 oz 

Storage 16 GB 4GB 

Processor Apple S4 dual core 1.15 GHz dual core 
Wi-Fi b/g/n b/g/n 

Bluetooth v5.0 A2DP LE v4.2 LE 

Other GPS, NFC 3G, GPS, NFC 


Fitness Monitors 


The CompTIA A+ exam objectives list fitness monitors as their own class of wearable tech- 
nology, but in many cases the functionality they provide is also provided by smart watches. 
A fitness monitor is normally worn on the wrist, and it tracks a user’s movements and 

heart rate. Some fitness monitors can track sleep patterns and have a clock, alarm, and 
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other features like an electronic or smart watch. All fitness monitors have the capability to 
sync to a device such as a smartphone, laptop, or desktop. For example, the fitness monitor 
will likely come with a smartphone app that lets the user track calories and see heart rate, 
steps taken, flights of stairs climbed, and other physical activity. The app lets the user track 
performance over time and set goals, and it gives updates on progress toward those goals. 
More than a dozen brands of fitness monitors are on the market today. The most popu- 
lar brands are Fitbit and Jawbone, but others include Polar, Garmin, Basis, Misfit, Nike, 
and Withings. Each brand has several options available, from basic step counters (pedom- 
eters) to deluxe models that track steps, flights of stairs climbed, and sleep patterns and 
have built-in wrist heart rate monitors. The wrist-based heart rate monitor, a relatively new 
feature in this category, doesn’t seem to be quite as accurate as more traditional chest strap 
heart rate monitors. But given the convenience of 24/7 heart rate monitoring without the 
need to wear a chest strap, people who choose to wear one are willing to make that sacri- 
fice. Some nicer models will also sync with a smartphone and display notifications or texts. 


PS Newer entrants into the fitness monitoring space include ring-sized fitness 
A: trackers, such as the Motiv Ring and Oura Ring. Because of their small size, 
they are obviously limited in terms of display capabilities, but they can 
track heart rate, sleep patterns, steps, and nearly everything else a wrist- 
based fitness monitor can. 


Let’s use a Fitbit as an example. The Fitbit Charge HR, a mid-level activity monitor, is 
pictured in Figure 11.12. In the upper row is the Bluetooth receiver for synchronization and 
the Charge HR itself. The device on the bottom is the proprietary USB charger. The Charge 
HR contains a three-axis accelerometer, an optical heart rate monitor (HRM), a Bluetooth 
v4.0 transceiver, and a lithium-polymer battery. A full charge on the battery lasts about five 
days. The OLED display is 1.3” wide and displays the different activity menus and a clock 
and can be synchronized to a smartphone and display caller ID. 


FIGURE 11.12 Fitbit Charge HR, Bluetooth USB dongle, and USB charging cable 





Fitbit devices will sync using Bluetooth to a smartphone, or to a desktop or laptop 
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computer if the computer has the Bluetooth transceiver plugged in. Figure 11.13 shows the 
Fitbit app dashboard, which is customizable. 


FIGURE 11.13 


Fitbit dashboard 
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Within the dashboard, you can set goals, enter data, and see progress. Fitbit, Jawbone, 
and a few others also sell Bluetooth-enabled scales with the capability to measure weight 


and body fat percentage, which will sync to your phone as well. 
As shown in Figure 11.14, and mentioned previously in the “Smart Watches” sec- 


tion, the Fitbit Versa is a fitness monitor that basically looks and acts like a smart watch. 

Features include available apps, GPS, NFC for connectionless payments, synchronization to 
smartphones, phone-free music, and, of course, fitness monitoring, including an HRM. The 
wristbands come in a variety of colors. 


FIGURE 11.14 


Fitbit Versa 
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VR/AR Headsets 


We introduced the concepts of virtual reality (VR) and augmented reality (AR) in Chapter 
3, “Peripherals and Connectors.” The most common way for users to experience VR and 
AR right now is through the use of a headset. Maybe someday technology will get to the 
point where humans can enter a room and have a virtual, interactive experience created for 
them without the use of bulky headgear, but for now, it’s all we’ve got. Let’s recap what we 
covered in Chapter 3: 


= VR is becoming more popular in gaming but can be used in commercial applications as 
well. For example, a real estate agent could take someone on a virtual tour of a home, 
or a car driving simulator could use the technology. 


= VR headsets come in two varieties. The first type plugs into a computer and is a self- 
contained unit with dual displays and integrated audio. The second kind is basically a 
head strap with blinders that a user snaps a smartphone into. In terms of quality, the 
first is preferable. 


a Oculus Rift is the current gold standard in VR headsets, but others, such as Sony, 
Samsung, Google, and HTC, play in the market as well. 


Whereas virtual reality blocks out the “real world” and gives the user a completely 
immersive experience, augmented reality keeps users in the real world, but adds additional 
information. The most famous example of an AR headset was Google Glass. Its introduc- 
tion was met with much controversy because of its camera and privacy related issues, and 
its near future mostly lies within business or industrial applications, as opposed to everyday 
people wearing them down Main Street. 


Connection Types 


Mobile devices allow users to roam about freely without the worry of being constantly 
plugged in, but they are not islands unto themselves. They still need to recharge and 
communicate with other devices. Therefore, they require connections to power sources, 
networks, and peripherals. Just as in the rest of the networking world, there are two con- 
nection classifications: wired and wireless. 


Wired Connections 


Because space is at a premium, manufacturers of mobile devices need to get creative with 
the size and shape of each component. Consequently, you will see several different types 

of proprietary, vendor-specific ports or connectors designed for power or communication. 
Wired connections are almost always used for recharging, and they are often used for sync- 
ing devices as well. 

Regardless of the connector type used on the device side, the other end of the cable will 
commonly be a USB male Type-A or USB-C connector so that it can easily plug into a lap- 
top or other device. Figure 11.15 shows the five common USB connectors that have been 
around for many years, and Figure 11.16 shows the USB-C connector compared to the 
Type-A connector. 
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FIGURE 11.15 USB connectors: micro, mini, Type-B, female Type-A, male Type-A 
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FIGURE 11.16 USB-C (top) and USB Type-A (bottom) connectors 
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Many companies choose to design their devices with a built-in micro-USB or mini-USB 
connector. Others modify the standard USB connector slightly, as Samsung has done with 
the connector for its smartphones and other devices. The cable is shown in Figure 11.17. A 
standard micro-USB cable will work to charge the phone, but charging and syncing won’t 
be as fast as it is with the Samsung cable. 
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FIGURE 11.17 Samsung compound micro-USB charging cable 





Apple products nearly always have their own proprietary connectors. Figure 11.18 shows 
the connector for an iPod Shuffle, the 30-pin Apple connector used by many iPods and 
iPhones up to the 4s, the Lightning connector used starting with the iPhone 5 series, and a 
USB Type-A connector for comparison. 


FIGURE 11.18 Apple iPod Shuffle, iPhone 4, Lightning, and USB Type-A connectors 





If you are not sure which connector to use, always check the product documentation. A 
quick Internet search will likely find the answer as well. 

Finally, there is the concept of tethering. Tethering is connecting a device to a mobile 
hotspot. The term used to be reserved only for when you connected a laptop to a smart- 
phone via USB cable to use its cellular Internet connection, but some will also use the term 
for similar wireless connections. Some cellular devices that do not function as a mobile 
hotspot may still let you tether a laptop (or other device) to it with a USB cable so that the 
mobile device can share the cellular Internet connection. 


pom We will cover hotspots in the “Hotspots” section later in this chapter. 


TE 


Wireless Connections 


Wireless connections are convenient in ways that wired connections never will be. You 
don’t need to haul around a cable, and in many cases the wireless connection can be in use 
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for things like syncing even without your intervention. The four connection types men- 
tioned in the CompTIA A+ exam objectives for this section are Bluetooth, IR, NFC, and 
hotspot. Don’t forget that many of the mobile devices that we’ve covered in this chapter 
are capable of Wi-Fi and cellular connections as well. Look again at Chapter 8, “Installing 
Wireless and SOHO Networks,” for a review of Wi-Fi and cellular specifications. 


Bluetooth 


Bluetooth is used quite often for connecting mobile accessories to a device, particularly 
headsets, full-size keyboards, and mice. It’s also used for syncing. Bluetooth specifications 
are covered in Chapter 8. The vast majority of mobile devices are Bluetooth Class 2 devices, 
meaning that they have a maximum communication distance of 10 meters. 

When setting up a Bluetooth connection between a mobile device and an accessory, you 
will most often be required to connect the two devices logically in a process called pairing. 
Pairing is basically a discovery and authentication process that validates the communica- 
tion link. The exact process for Bluetooth pairing will differ by your mobile OS and the 
device to which you are connecting. In general, though, the steps are as follows: 


1. Turn on the Bluetooth device. 
a. Enable Bluetooth. 
b. Enable pairing. 
Use your mobile device to locate and select the Bluetooth device. 
Enter the Bluetooth device’s passcode. 


Confirm pairing on the Bluetooth device by pressing a button or a combination of 
buttons. 


5. Test the connectivity. 


P More information on Bluetooth pairing, including two pairing exercises, is 
‘i provided in Chapter 12, “Mobile Device Connectivity and Synchronization.” 
Infrared 


While most mobile devices support Bluetooth, infrared (IR) is less common, especially in 
smartphones. Samsung, HTC, and LG all include IR support, whereas the iPhone does not. 
If the phone does not include built-in IR, you can buy IR-capable accessories that plug into 
the headphone (or Lightning) jack. IR specifications are covered in Chapter 8. 

Remember that IR is a short-distance, line-of-sight, point-to-point communication 
method. It’s usually used to transfer small amounts of data from one device to another. 
The maximum functional distance of IR in mobile devices is about 1 meter, with a viewing 
angle of about 30 degrees. 


P Television remote controls, which have a functional range of about 15 to 20 
PN feet, use a different infrared technology than most mobile devices use. 
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Near Field Communication 


Near field communication (NFC) is a wireless technology that has become more and more 
popular over the last several years. With Apple’s introduction of the iPhone 6, nearly every 
smartphone manufacturer today equips its phones with NFC. Many tablets and smart 
watches have NFC as well. 

NFC uses radio frequency (RF) signals, and NFC devices can operate in three different 
modes: 


= NFC card emulation mode, which lets the device act as a smart card. This is useful for 
making payments at the site of a merchant that uses NFC. 


= NFC reader/writer mode, which allows the device to read information stored in an 
NFC tag on a label or poster 


= NFC peer-to-peer mode, which allows for ad hoc data transfer between two NFC- 
enabled devices 





NFC data rates are slower than other wireless methods, as NFC operates at 106 Kbps, 
212 Kbps, and 424 Kbps. It transmits at 13.56 MHz. NFC always involves an initiator and 
a target. Let’s say that you wanted to read an NFC tag in a poster. You would move your 
phone close to the tag, and the phone would generate a small RF field that would power the 
target. Data could then be read from the tag. Tags currently hold up to 8 KB of data. 

In peer-to-peer mode, NFC data is transmitted in the NFC Data Exchange Format 
(NDEF), using the Simple NDEF Exchange Protocol (SNEP). SNEP uses the Layer 2 Logical 
Link Control Protocol (LLCP), which is connection-based, to provide reliable data delivery. 

To use NFC, a user simply moves their device within range (about 4” or 10 cm) of 
another NFC-enabled device. Then, using an app, the device will be able to perform the 
desired transaction, such as making a payment, reading information, or transferring data 
from one device to another. 

NFC uses two different coding mechanisms to send data. At the 106 Kbps speed, it 
uses a modified Miller coding (delay encoding) scheme, whereas at faster speeds it uses 
Manchester coding (phase encoding). Neither method is encrypted, so it is possible to hack 
NFC communications using man-in-the-middle or relay attacks. Because of the limited dis- 
tance of the RF signals, though, hacking is pretty hard to do. The potential attacker would 
need to be within a few meters to attempt it. 

The mobile payment feature of NFC is growing in popularity, with more and more 
merchants accepting it. Apple got into the NFC payment arena in 2014 with the launch of 
Apple Pay, which can be used from iPhones, iPads, and the Apple Watch. In 2015, Google 
introduced Android Pay, which is an update to the older Google Wallet app. It’s now been 
renamed Google Pay. 

When using Apple Pay, users with iPhones with Touch ID simply need to get the 
phone within range of the receiving device and have their finger or thumb on the Touch 
ID button. (With the iPhone X and other devices with facial recognition, they will need 
to scan their face.) The phone will transmit its secure element identifier (SEID), and the 
Touch ID will act as a mode of verification; without it, the transaction will not succeed. 
If you have an iPhone 6 or newer, you can see your SEID by going to Settings > General 
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> About > SEID. The Google Pay feature is similar. One interesting thing about Google 
Pay is that the credit card number is not actually transmitted, only a hashed version of 
it, to increase security. 

Occasionally, you may see reports in the news about Apple Pay (or Google Pay) being 
unsecure. It’s true that data breaches have happened regarding these accounts, but it’s been 
due to data stolen from merchants, not the Apple Pay or Google Pay mechanisms. 


Hotspots 


Imagine that you’re in an office building that doesn’t have Wi-Fi and you need to send an 
important document from your laptop to a key client. What can you do? If you have a 
cellular-enabled device such as a smartphone, you may be able to turn that phone into a 
mobile hotspot. By doing so, you can share your cellular Internet connection with Wi-Fi 
enabled devices, such as a laptop or tablet. 


P In order to use your smartphone as a mobile hotspot, your service contract 
‘GQ with your provider must allow it. Not all do! Be sure to check with your pro- 
vider before trying to enable a hotspot. 


Enabling an iPhone to be a mobile hotspot is done via Settings > Personal Hotspot. The 
Personal Hotspot screen is shown in Figure 11.19. A password to join the network is pro- 
vided (and can be changed) as well as instructions on how to join. On Android, you enable 
a mobile hotspot by sliding the toggle to On in Settings > Mobile Hotspot. The Mobile 
Hotspot configuration screen is shown in Figure 11.20. 


FIGURE 11.19 _ iPhone-enabled Personal Hotspot 
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FIGURE 11.20 Android Mobile Hotspot 
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There are three downsides to using your cell phone as a hotspot: 
Speed Multiple devices are now using one cellular connection. 


Cost You're using your cellular data plan, which could result in additional charges if you 
go over your data limit. Unless you know that you have plenty of capacity in your plan, use 
a hotspot sparingly. 


Security You may have noticed in Figure 11.19 that there was a password but no security 
options. iOS 7 and newer do use WPA2 security, but any wireless network has the potential 
to be hacked. Older iOS versions were susceptible to brute-force security attacks. 


Some mobile providers limit the number of devices that can join the mobile hotspot. 
For example, Verizon limits it to 5 devices for 3G phones and 10 devices for 4G LTE 
phones. 


Mobile Device Accessories 


Mobile devices pack a ton of useful features into a small package, but they don’t account 
for every need right out of the box. At times, you will need to purchase additional accesso- 
ries to get the best user experience possible from the mobile device. Considering that most 
mobile devices have a limited number of physical connectors, you’re going to be rather lim- 
ited on the number and types of accessories that you can attach. For example, iPhones have 
only one port: the Lightning port. Most Android phones have two ports, the charging port 
and a speaker/headphone jack. Any wired accessory must plug into one of those two ports, 
or you'll need something like a Lightning to female USB adapter. Here are some common 
accessories that you will see: 


Headsets Headsets are used for hands-free phone conversations and listening to music. 
Headsets can either plug into the speaker/headphone jack or be wireless. Most wireless 
headsets are Bluetooth. Figure 11.21 shows a Bluetooth headset. 
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FIGURE 11.21 A Bluetooth headset 





“Bluetooth headset.” Licensed under CC BY-SA 3.0 via Wikimedia Commons: https: //commons.wikimedia 
.org/wiki/File:Bluetooth_headset. jpg 


Speakers If you want to share music with friends or listen without needing to stuff some- 
thing into your ear, speakers are good to have. Speakers will either use the speaker/head- 
phone jack or connect via Bluetooth. 


Game Pads Many games designed for mobile devices today take advantage of touch 
screen technology. The touch screen isn’t the best interface for all games, though, such as 
games that were originally designed for a gaming console. VR games also present chal- 
lenges for touch screen aficionados, considering the mobile device may be practically 
strapped to their faces. For these games, a good game controller can enhance the gaming 
experience. 


Most of the game pads (which is what CompTIA calls a game controller) will look like 
standard video gaming console controllers and connect via Bluetooth. Popular models and 
brands include SteelSeries, PowerA MOGA, 8Bitdo, and iControlPad. 


Battery Packs and Chargers Battery life is a critical mobile currency. Without battery 
power, you’re in trouble unless a power outlet is in sight. Battery chargers help you charge 
the battery, of course, but you can also purchase extra external battery packs for many 
devices. Some smartphone battery packs simply plug into the charging port on the phone, 
whereas others are designed to be a protective cover with extra battery life included. They 
make your phone bigger and bulkier, but that’s the trade-off you make for more battery 
life. A final option is a power bank (see Figure 11.22). They are small battery packs, usually 
about 3” to 4” long and less than an inch wide, that you charge up using a USB cable and 
take with you. When your mobile device needs charging, just plug it into the power bank. 
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FIGURE 11.22 Portable power bank 





Protective Covers and Waterproofing If you have a mobile device, get a protective cover. 
The devices are relatively fragile, considering they are constantly moved from place to 
place; shoved into pockets, purses, and bags; and occasionally dropped. 


There is a large variety of protective gear out there for mobile devices, including soft and 
hard exterior cases, protective screen films and glass, and waterproof cases. Considering 
how much abuse mobile devices take, its best to get some sort of protection. Even if your 
smartphone says its waterproof, who wants to rely upon that always being true? Find the 
right protective gear for the device and be sure to use it. 


Credit Card Readers If you need to make mobile sales, you will need a credit card reader 
and an app to make the transactions. Many mobile credit card readers are small devices 
that plug into the speaker/headphone jack, like the PayPal Here shown in Figure 11.23. You 
swipe the credit card through the device and then complete the transaction on the screen. 
Other, larger and more expensive readers are available as well. 


Memory Cards and Readers Mobile devices often make use of small form factor memory 
cards, such as Secure Digital (SD), miniSD, or microSD cards. Higher capacity versions of 
these cards are SDHC, SDXC, miniSDHC, microSDHC, and microSDXC. The standard 
versions can hold up to 4 GB in storage, HC up to 32 GB, and XC up to 2 TB. Mobile 
devices may have memory card slots built in, or you can purchase an external reader. 
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FIGURE 11.23 PayPal Here mobile credit card reader 





Summary 


In this chapter, you learned about the characteristics of various types of mobile devices, 
those that are smaller than laptops. You also learned about common mobile accessories and 
connection types. 

The mobile devices covered were tablets, smartphones, e-readers, smart watches, fitness 
monitors, VR/AR headsets, and GPS devices. 

Connection types can be wired or wireless. The wired connections you should know 
are proprietary vendor-specific ports, micro-USB, mini-USB, USB-C, and Lightning. Also, 
be familiar with the concept of tethering. Wireless connections with which you should be 
familiar are Bluetooth, infrared, near field communication (NFC), and using cellular to cre- 
ate a hotspot. 

Common accessories include headsets, speakers, game pads, battery packs and chargers, 
protective covers, credit card readers, and memory cards and readers. 


Exam Essentials 


Know the characteristics of tablets. Tablet computers are usually smaller than laptops and 
have a touch screen interface. The screen size is usually between 7” and 13”, but it can be 
larger. 


Understand key characteristics of smartphones. Smartphones typically have a screen that 
is smaller than tablets, with most being in the 5” to 7” range. Smartphones also have touch 
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screens, and you may see an occasional BlackBerry with a physical keyboard. The two most 
common mobile OSs are Android and iOS. 


Understand the characteristics of e-readers. E-readers use special ink, called E Ink, which 
provides for good contrast reading and long battery life. Some may have touch screens, and 
all will have internal storage for holding media. 


Know how wearable technology devices work. Some smart watches are basically like 
smaller smartphones, and they can make cellular calls. Others are extensions of the smart- 
phone in a convenient location. Fitness monitors are primarily known for counting steps 
and measuring heart rate, but the line between the smart watch and fitness monitor has 
blurred considerably. VR/AR headsets are mostly used for gaming or adding information to 
reality, respectively. 


Know how GPS works. GPS receivers require connections to satellites in order to func- 
tion. Know the various global GNSSs and in general how GPS works. 


Know which wired connection types mobile devices frequently use. Many mobile devices 
have proprietary power or communications ports due to their small size. Almost all pro- 
prietary ports use USB, though. USB-C, micro-USB, and mini-USB are also popular. 
Lightning is Apple’s latest iPhone connector. 


Know which wireless connection types mobile devices frequently use. Most mobile 
devices are equipped with Wi-Fi capabilities, along with Bluetooth, IR, and NFC. Many 
devices also have cellular capabilities and can function as mobile hotspots. 


Know some common accessories for mobile devices. Common accessories include head- 
sets, speakers, game pads, extra battery packs, battery chargers, protective covers, credit 
card readers, and memory cards and readers. 


Review Questions 


Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. 


Which of the following is the most common input method for mobile devices? 
A. Stylus 

B. Resistive touch screen 

C. Capacitive touch screen 


D. Keyboard and mouse 


Which of the following is the operating system used by Apple Watch? 
A. watchOS 


B. iOS 
C. macOS 
D. AppleOS 


Multi-touch refers to which feature of a touch screen device? 
A. The ability to touch multiple parts of the screen at once to provide input 


B. The ability to touch the screen multiple times consecutively as part of the same input 
stream 


C. The ability for multiple people to use the touch screen device 


D. The ability to use a stylus or a finger as an input device 


The type of display that Google Glass presents to its users is called what? 


A. Retinal projection 


B. VR 
C. AR 
D. OCR 


Which of the following devices was the first commercial tablet computer in the 
marketplace? 


A. Microsoft Surface Pro 


B. Tablet PC 
C. iPad 
D. GRiDPad 


Which iPhone version introduced the Lightning connector? 
A. iPhone 4 

B. iPhone 5 
C. iPhone 6 
D. iPhone 8 


637 


638 


10. 


11. 


12. 
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You have a mobile touch screen device with a screen size of 11”. What is the most likely 
classification of this device? 


A. Tablet 

B. Phablet 

C. Smartphone 
D. GPS 


You need to set up a Bluetooth headset for a user. He wants to know the farthest he can 
be away from his phone and still have it work. You do not have the documentation handy. 
What is the most likely maximum range that this Bluetooth accessory will have? 


A. 10 centimeters 
B. 10 meters 

C. 100 meters 

D. 1 kilometer 


Apps for Android-based smartphones and tablets can be downloaded from which store? 
A. App Store 

B. Google Play 

C. Android Store 

D. Microsoft Store 

You are configuring wireless communication for several smartphones. Which of the follow- 
ing wireless communication methods has the shortest operational range? 

A. Wi-Fi 

B. Bluetooth 

C. NFC 

D. IR 

One of your friends wants to play a console-based game on her tablet. What type of acces- 
sory would you most recommend she connect and configure to help the experience? 

A. VR headset 

B. Game pad 

C. AR headset 

D. Extra battery pack 

A user is concerned about security after setting up wireless communications on his tablet. 


Which wireless communication method has an operational range of about 1 meter and a 
viewing angle of about 30 degrees? 


A. Wi-Fi 
B. Bluetooth 
C. NFC 


D. IR 


13. 


14. 


15. 


16. 


17. 


18. 
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Which of the following are advantages of e-readers using E Ink over tablets? (Choose two.) 


A. 
B. 
C. 
D. 


More vivid colors 
Longer battery life 
Easier to read in bright light 


Better screen resolution 


You are explaining various connection types to new corporate smartphone and tablet users. 
Which of the following best describes the concept of tethering? 


A. 
B. 
C. 
D. 


When a cellular device uses another device’s Wi-Fi connection to get on the Internet 
When a Bluetooth device uses another device’s Wi-Fi connection to get on the Internet 
When a Wi-Fi device uses another device’s Bluetooth connection to get on the Internet 


When a Wi-Fi device uses another device’s cellular connection to get on the Internet 


What is the number of active satellites used by GPS? 


A. 
B. 
C. 
D. 


12 
24 
30 
36 


You are configuring NFC for a smartphone user. He is concerned about the maximum data 
transfer rates of the technology. What is the fastest data transfer speeds currently supported 


by NFC? 

A. 106 Kbps 
B. 212 Kbps 
C. 424 Kbps 
D. 636 Kbps 


A user wants to attempt to ensure that their boss can’t see where they are, based on 
tracking their iPhone. Which option should they disable? 


A. 
B. 
C. 
D. 


Location Services 
GPS 

Tracking Services 
Airplane Mode 


Which of the following is the name of the protocol used to transmit data in NFC peer-to- 


peer mode? 
A. NDEF 
B. NFCP 
C. LLCP 
D. SNEP 
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19. Which GPS component is responsible for triangulation? 


A. 
B. 
C. 
D. 


Satellites 
Ground control network 
Receiver 


All three combined 


20. You need to provide users with memory cards that hold enough data for their needs. How 
much data can a microSDXC memory card hold? 


A. 


B. 
C. 
D 


4 GB 
32 GB 
128 GB 
2 TB 


Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answer compares to the authors’, refer 
to Appendix B. 

Explain the five steps to pair a smartphone with a Bluetooth device. 
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THE FOLLOWING COMPTIA A+ 220-1001 
OBJECTIVES ARE COVERED IN THIS 
CHAPTER: 


vy 1.6 Given a scenario, configure basic mobile device 
network connectivity and application support. 


a Wireless/cellular data network (enable/disable) 


Hotspot 
Tethering 


Airplane mode 


a Bluetooth 


Enable Bluetooth 

Enable pairing 

Find device for pairing 
Enter appropriate pin code 


Test connectivity 


= Corporate and ISP email configuration 


POP3 
IMAP 
Port and SSL settings 


S/MIME 


= Integrated commercial provider email configuration 


iCloud 
Google/Inbox 
Exchange Online 


Yahoo 


= PRI updates/PRL updates/baseband updates 
= Radio firmware 

a IMEI vs. IMSI 

a VPN 


vZ 1.7 Given a scenario, use methods to perform mobile 
device synchronization. 


=» Synchronization methods 
a Synchronize to the cloud 
= Synchronize to the desktop 
= Synchronize to the automobile 
= Types of data to synchronize 
= Contacts 
= Applications 
= Email 
= Pictures 
a Music 
= Videos 
= Calendar 
a Bookmarks 
a Documents 
a Location data 
= Social media data 
= E-books 
=» Passwords 
a Mutual authentication for multiple services (SSO) 
= Software requirements to install the application on the PC 


=» Connection types to enable synchronization 


Y 3.9 Given a scenario, install and configure common 
devices. 


a Laptop/common mobile devices 


= Synchronization settings 





In Chapter 11, “Understanding Mobile Devices,” we talked 
about the trend toward miniaturization in the computer 

5 industry. Devices that fit into the palm of your hand today are 
substantially more powerful than the bulky desktop systems of the 1990s, and those were 
exponentially more powerful than the room-sized supercomputers of the 1960s. 

The movement toward smaller devices also creates new needs, specifically in the area of 
interaction with the devices—and that relates directly to the operating system and hard- 
ware. Remember that the OS is the interface between the hardware and the user, meaning 
that the OS needs to interpret user input and translate that into an action for the underlying 
hardware. We won’t cover the details of mobile OSs in this chapter—that’s taken care of in 
Chapter 15, “Operating System Basics.” For this chapter, you just need to remember that 
Android and iOS are the two dominant mobile operating systems in the market. We’ll dis- 
cuss connectivity and synchronization options for each. 

In addition, small mobile devices just don’t have room for traditional desktop or laptop 
hardware. Smartphones don’t come with built-in keyboards and mice, nor do small devices 
have the storage capacity of their larger cousins. Yet with all of their physical space con- 
straints, mobile devices are still expected to perform many of the same tasks as laptops or 
desktop computers, particularly network connectivity and data storage. 

You certainly already know that mobile devices can get on a network and store data. 
They just do it in a different way than larger systems do. In addition, because of their 
limited storage capacities, mobile devices can greatly benefit from the syncing of data to 
a larger storage system, such as a desktop, the cloud, or even an automobile. This chapter 
focuses on the details of mobile device connectivity, with a particular emphasis on email, as 
well as device synchronization. 





Understanding Network 
Connectivity and Email 


Mobile devices like smartphones, tablets, and wearable devices basically exist for their con- 
venience and ability to connect to a network. No one is using their small mobile devices to 
crunch spreadsheets, create detailed presentations, or perform other tasks that are better 
suited for larger PCs and Macs. On the other hand, mobile devices are great for surfing the 
Internet, messaging friends, taking pictures and sending them to friends and family, listen- 
ing to music and watching videos, and even monitoring our health. Each of these tasks 
requires a network connection, either wired or wireless, at some point. 
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Of course, mobile devices are well known for their cellular connectivity, including the 
ability to access data services over the cellular network. Many subscribers pay a premium for 
data access, and going over your limit on a data plan can be a very expensive mistake (unless 
your plan offers unlimited data). To ease the expense involved in data-network access, nearly 
all manufacturers provide alternate access methods in their devices. For example, the service 
provider levies no additional expense for Wi-Fi or Bluetooth data access. 

There are other cellular options on mobile devices with which you may be less familiar, 
though, such as hotspots and tethering and updating the firmware. In the following sec- 
tions, we’ll dive into those topics in some detail. 

Connecting to a Wi-Fi network gives the mobile device access to resources on the network, 
such as printers, with the added bonuses of Internet access (assuming the wireless network 
has it), free texting, and perhaps Wi-Fi phone calls. Not only will this likely give the mobile 
user faster speeds than cellular, it also has the benefit of not counting against the data plan. 

Bluetooth access to other devices is designed mainly for short-range communications, 
such as between the mobile device and a nearby computer with which it can exchange or 
synchronize data. Other applications of Bluetooth generally do not involve the exchange 
of data but rather the use of a nearby resource, such as a printer to make a hard copy of a 
document or a headset to make hands-free phone calls. 

As you can see, there is a distinct advantage to being able to connect your mobile device 
to a noncellular network. Mobile devices will use Wi-Fi when connected instead of cellular 
for data operations. Android devices will ask you during an important update if you would 
like to use Wi-Fi only or if cellular is okay to use. Figure 12.1, for example, shows the 
Google Play Store Settings screen on an Android device that clearly states that apps will be 
auto-updated over Wi-Fi only. (Other options are to not auto update, or to update over any 
network, and data charges may apply.) 


FIGURE 12.1 Google Play Store Settings screen 
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The following sections detail concepts relating to cellular networking and attaching to 
noncellular networks on iPhones and Android devices. Additionally, you will be introduced 
to the tasks required to establish email connectivity over these mobile units to corporate 
and ISP connections as well as integrated commercial providers. 


Using Cellular Data Connections 


Nearly every user of a mobile device knows how to get on the Internet. iOS users have the 
built-in Safari browser, and Android users have Google Chrome available. Getting online 
when you have a cellular connection is easy to do if the device has a data plan. Another 
great feature of mobile devices is that they can share their cellular data connections 

with other devices. It’s basically the exact opposite of joining a mobile phone to a Wi-Fi 
network, which we will talk about later in this chapter. Next, we will provide details on 
using and configuring hotspots and tethering, using airplane mode, and how data net- 
work updates are handled on mobile devices. We’ll also cover a few key acronyms 

to know. 


Using Mobile Hotspots and Tethering 


We introduced the concept of mobile hotspots in Chapter 11, “Understanding Mobile 
Devices.” It’s an important concept for mobile device connectivity, so we’ll talk about it 
here as well. 


-_ Throughout this chapter, we will use iOS 12 and Android 7.0 Nougat 
‘go as example OSs for screenshots. Recognize that new versions of iOS 
and Android come out nearly every year, and the locations for features and 
settings for new OSs may change slightly. However, these examples and 
screenshots should still provide a good idea of how to configure settings 
when given a scenario either in real life or on an exam. 


Recall that a mobile hotspot lets you share your cellular Internet connection with Wi-Fi- 
capable devices. A Wi-Fi-enabled laptop, for example, would look for the mobile phone’s 
Wi-Fi network, join it, and then have Internet access. To enable an iPhone to be a mobile 
hotspot, go to Settings > Personal Hotspot. Figure 12.2 shows the personal hotspot screen. 
A password to join the network is provided (and can be changed) as well as instructions on 
how to join. 

Also recall that there are three potential challenges with using a smartphone as a mobile 
hotspot: speed, cost, and security. Cellular connections are slower than Wi-Fi, so having 
multiple devices trying to get on the Internet via one cellular link can be slow. From a cost 
standpoint, you could go over your data plan quite easily by using a hotspot, or the pro- 
vider might charge you extra just to use it. Finally, there is security. iOS 7 and newer use 
WPA2, so security is less of an issue, but wireless networks are inherently unsecure due to 
the fact that the signals are transmitted through the air. 
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FIGURE 12.2 Enabled personal hotspot in iOS 
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on your computer. 


3 Connect to iPhone from computer. 


TO CONNECT USING USB 

1 Plug iPhone into your computer. 

2 Choose iPhone from the list of network services 
in your settings. 











On the Android OS, a mobile hotspot is also enabled under Settings, under Wireless 
Networks (see Figure 12.3). On Android, when you turn mobile hotspot on, it automati- 
cally turns Wi-Fi off. 

FIGURE 12.3 Enabled mobile hotspot in Android 
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Tapping the three dots next to the On/Off toggle will show the network name (SSID) 
and hotspot password (Figure 12.4), and tapping OK takes you to the screen to manage 
connections (Figure 12.5). 


FIGURE 12.4 Android hotspot network name and password 
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FIGURE 12.5 Android hotspot configuration options 
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pom In Android, a mobile hotspot uses WPA2 encryption by default, but that 
TE 


can be turned off so the device is an open portal. It’s highly recommended 
to always leave the encryption on! You can also change the network name 
and password associated with the hotspot. 
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Some mobile providers limit the number of devices that can join the mobile hotspot. For 
example, Verizon limits it to five devices for 3G phones and 10 devices for 4G LTE phones, 
and the Android phone used in the example allows a maximum of 15 devices. 

Finally, mobile providers sell small devices that are specifically used as mobile hotspots. 
You might recall that in Chapter 8, “Installing Wireless and SOHO Networks,” we 
introduced the Verizon Wireless MiFi device. We’re showing it again in Figure 12.6 as a 
reminder. These types of devices will either use your existing mobile contract or will need 
to have an activation of their own. 


FIGURE 12.6 Verizon Wireless MiFi 
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Tethering is when you have connected a device to a mobile hotspot. The term used 
to be reserved only for when you connected via USB cable, as opposed to connecting 
via wireless. Some devices will not function as a mobile hotspot but will allow you to 
tether a laptop (or other device) to it, so the mobile device can share the cellular Internet 
connection. 


Using Airplane Mode 


The airplane mode feature was named so because, for many years, no network signals were 
allowed on airplanes. Today, some airlines allow for in-flight Wi-Fi (for a nominal fee, of 
course), but the name of the feature still sticks. It’s not restricted to airplane use, though. 

If you’re in a public area and suspect that someone is trying to hack your phone through 
the Wi-Fi or Bluetooth connection, airplane mode will quickly shut down all your external 
connections. Android and iOS both make it easy to enable airplane mode, and give you a 
few ways to get to it. 

There are two quick ways to enable airplane mode in Android. The first is to swipe 
down from the top to open the notifications area. There you may see the quick settings 
icons, as shown in Figure 12.7. If not, swipe down again to open quick settings. The air- 
plane mode icon looks like an airplane, conveniently enough. Tap it to turn it on or off. 
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FIGURE 12.7 Android airplane mode in quick settings 


The second way is to open Settings, and it’s right there at the top. Swipe the switch to 
the right to On to enable airplane mode (see Figure 12.8). When you turn airplane mode 
back off, the wireless connections you previously had turned on will be enabled again. 
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FIGURE 12.8 Android airplane mode in Settings 
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iOS also provides access to airplane mode in two easy ways. One is to open Settings, and 
it’s the first option (see Figure 12.9). When you slide it on, notice how all the other connec- 


tions are turned off. 
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FIGURE 12.9 Airplane mode in iOS 12 
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The other way is to access it from the Control Center. You can do this from both the 
lock screen and the home screen. Simply swipe your finger up from the very bottom of the 
iPhone’s touch screen, and you will get to the Control Center, similar to what’s shown in 
Figure 12.10. Tap the airplane icon in the upper-left corner to enable airplane mode. 


FIGURE 12.10 Airplane mode in iPhone Control Center 
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Understanding Cellular Updates 


When most people think of cellular updates, they probably think of an update to the 
operating system. Perhaps a new Android version is available or iTunes is alerting them to 
download the latest incarnation of iOS. Those updates are normal, and completing them 
takes the active participation of the user. Other updates can occur too, and many of these 
are transparent to the user. 

Before we talk about what those updates are, though, you must first understand that 
mobile phones don’t just have one operating system. This might come as a surprise, but most 
mobile phones actually have three operating systems. Duties are split up among the operating 
systems, simply because there are so many specialized tasks for the phone to perform. 

The first OS is pretty obvious. The other two are specialized OSs that handle specific 
functions for the device. These two OSs are very small, typically only a few hundred kilo- 
bytes in size, and they are referred to as real-time operating systems (RTOSs). They are 
designed to be lightweight and fast, and “real-time” refers to their ability to minimize lag 
in data transfers. 

First, there is a baseband OS that manages all wireless communication, which is actually 
handled by a separate processor. Some people will call the wireless communications chips 
in a mobile phone the radio or the modem. Consequently, you might hear about radio 
firmware, a radio firmware update, or a modem update. The last two terms are inter- 
changeable with baseband update, which simply means an update of the baseband OS. 








@) Real World Scenario 


Why Phones Need a Baseband OS 


One question many students ask is, “Why does a mobile phone need three OSs?” It would 
seem that phones perform fewer functions than PCs perform, and PCs run on one OS. 


The answer is that it increases flexibility and reduces software development 

issues. Think about how many different types of mobile devices are on the market, and 
then think about how many versions of each are available. We don’t know the exact 
answer, but it’s a large number. Without the baseband OS, the primary OS would need 
to know how to talk to every single type of radio hardware on the market. And when new 
hardware comes out, which happens frequently, the primary OS would need to know 
how to talk to it as well. This isn’t feasible. Therefore, phones were designed with one 
additional layer, which is the baseband OS. The baseband OS knows how to talk to the 
radio hardware, but it also knows how to talk to the primary OS. When a new hardware 
chipset is deployed, the developers just need to make the new baseband OS talk to iOS or 
Android on one side and the new hardware on the other side. 


Desktop OSs face similar issues, but Windows, macOS, Linux, and others deal with this 
by using software drivers. 
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Second, a subscriber identity module (SIM) OS manages all data transfers between the 
phone and the SIM chip, which is a small memory chip that stores user account informa- 
tion, phone identification, and security data, and it is generally tied to a specific carrier. 

These RTOSs are normally updated when a user updates an operating system, but 
occasionally the carrier will update them when the phone is not otherwise busy. Apple cur- 
rently provides no way to update either RTOS manually on iOS devices. (Users can find 
information on how to jailbreak the phone online, but that voids all warranties and is not 
recommended.) There’s more information available on how to update an RTOS on Android 
phones because Android is open source. Users or companies can provide newer versions of 
the baseband RTOS, and others can download and install them. Some will say that updating 
your baseband firmware can result in better reception, faster data throughput, and reduced 
battery usage. There is much Internet debate about the rewards versus the risks, though. 


ZL A discussion of performing a manual update of an RTOS requires 
NING three warnings: 


n Be sure that the upgrade comes from a reputable source. Look for 
reviews or comments to be sure that it delivers what you expect it 
to provide. 


a Understand that performing this update will most likely void any 
warranty that you have. 


= Always be sure to allow the updates to complete. Interrupting a 
firmware update in the middle is a nearly surefire way to brick your 
phone—that is, to make it inoperable. 


Two other updates of which you should be aware are PRI updates and PRL updates. 
Product Release Instruction (PRI) contains settings for configuration items on the device 
that are specific to the network that it’s on. The Preferred Roaming List (PRL) is the refer- 
ence guide the phone uses to connect to the proper cell phone tower when roaming. Both 
PRI updates and PRL updates also normally happen when the primary OS on the phone 
is updated. Some carriers make these two easier to update manually than the RTOS on 
Android phones, though. For example, on many Sprint devices, users can dial ##873283# 
for a PRL update, and Verizon users can dial *228 for the same. As always, check with the 
carrier before attempting to perform these updates and to determine the exact procedure. 


Key Acronyms to Know 


The last section introduced a few new acronyms to know, such as PRI and PRL. There are 
a few others that you might see in relation to mobile phones that you should know too: 


International Mobile Equipment Identity The international mobile equipment identity 
(IMEI) is a 15-digit serial number that is unique to each phone. If a phone is reported sto- 
len, the IMEI will be declared invalid and the phone disabled. The IMEI can be displayed on 
most phones by dialing *#06#. AT&T and T-Mobile were the first networks to use IMEI. 


Mobile Equipment Identifier The mobile equipment identifier (MEID) is an alternate 
form of a serial number. It’s identical to the first 14 numbers of the IMEI. Sprint and 
Verizon were the first to use MEIDs. 
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International Mobile Subscriber Identity The international mobile subscriber identity 
(IMSI) is a unique 15-digit identifier that describes a specific mobile user and their net- 
work. It’s composed of the following three elements: 


Mobile Country Code The mobile country code (MMC) is a three-digit code, such as 
310 for the United States and 234 for the United Kingdom. 


Mobile Network Code The mobile network code (MNC) is a two- or three-digit code 
that identifies the carrier. Many carriers have multiple codes. For example, in the United 
States, 006 is a Verizon code, and 170 and 410 (among others) are AT&T codes. 


Mobile Station Identifier Number The mobile station identifier number (MSIN) is a 
sequential serial number. 


Integrated Circuit Card Identifier The integrated circuit card identifier (ICCID) is a 19- 
or 20-digit identifier for each SIM chip globally. It’s like a serial number for the SIM card. 


Secure Element Identifier The secure element identifier (SEID) is a very long hexadecimal 
code that uniquely identifies the phone. It is used in security applications, NFC, and fea- 
tures like Apple Pay. 


Within iOS, you can find many of these numbers by choosing Settings > General > 
About and scrolling to the bottom, as shown in Figure 12.11. To find the same information 
in Android, go to Settings > About Phone > Status (see Figure 12.12). Note that the About 
Phone page will often show the baseband version as well. 


FIGURE 12.11 iOS phone information 





wil Verizon * 3:10 PM =; 
< General About 
Version 12.0.1 (16A404) 
Carrier Verizon 33.1 
Model MNAC2LL/A 
Serial Number 6W 
Wi-Fi Address BC:9F:EF:6F:45:B2 
Bluetooth BC:9F:EF:6F:45:36 
IMEI 18 8 
ICCID 840 
MEID 68 
Modem Firmware 5.00.00 
SEID 
Legal 
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FIGURE 12.12 Android IMEI and other identifiers 
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Establishing Wi-Fi Connectivity 


Using a cellular network is great because you can connect from nearly anywhere. The 
downsides, though, are that the connection is slow compared to other connectivity meth- 
ods, and you have to pay for the data you use. When within range of a secured Wi-Fi net- 
work, take advantage of the device’s ability to use that network instead. Not only will the 
connection be faster, it will be free. 

Before you can transfer data over a Wi-Fi network, you have to attach to the network 
in the same manner you would attach a laptop, for instance, to the same wireless network. 
You have to find the network by its service-set identifier (SSID), or you have to enter the 
SSID if it is not being broadcast. You must then satisfy any security requirements that 
might be in place, such as using WPA2 or having the right security keys. Exercise 12.1 steps 
you through the procedure on an iPhone. 


Connecting an iPhone to a Wi-Fi Network 
1. Tap the Settings app on the home screen. 
2. Tap Wi-Fi on the Settings menu. 


3. On the Wi-Fi menu, swipe the Wi-Fi switch to the right to turn it on, as shown in 
Figure 12.13. 


Tapping switches also works to toggle them to the opposite state. 
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FIGURE 12.13 Turning on Wi-Fi in iOS 
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4. Inthe Choose A Network list, tap the name of the wireless network that you want to join. 


5. Enter the password or key for the wireless network, if you are asked for one, and then 
tap the Join button. 


If it connects, it will move the network name to under the Wi-Fi switch and put a 
check next to it, as shown in Figure 12.14. 


Also note the Ask to Join Networks switch at the bottom. Turning this off means that 
you will never be interrupted with offers to join new wireless networks that are in 
range of the device. Regardless of the setting of this switch, the device will still auto- 
matically reconnect to remembered Wi-Fi networks as they come into range. 


FIGURE 12.14 Wi-Fi settings with a network that’s been joined 
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EXERCISE 12.1 (continued) 


6. Tap the Settings back button at the top left to return to the previous screen. 


Notice on this screen that the network you selected is now listed on the Settings 
page, as shown in Figure 12.15. If not, you are not connected to a Wi-Fi network. 


FIGURE 12.15 Settings page with Wi-Fi network connected 
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7. Close Settings. 
On iPhones older than the iPhone X, you can use the Home button to 
P return to the home screen at any time, but the app you leave will continue 


to remain open in the same screen as when you left it unless you restart 
the iOS device or manually force the app to end. The same can be accom- 
plished on an iPhone X by swiping up from the Home bar (the horizontal 
bar at the bottom of the screen). 


Throughout this chapter, the practice of tapping successive back buttons 


Qo in the upper-left corner of the screen, instead of clicking the Home button 
or swiping up from the Home bar, will be referred to as backing out of 
the app. 


A similar series of tasks is required when attaching an Android phone to the same type 
of network. Exercise 12.2 details that procedure. 
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Connecting an Android Phone to a Wi-Fi Network 


1. Tap the Settings app to open it. 


2. Slide the Wi-Fi switch to the On position, as shown in Figure 12.16. 


FIGURE 12.16 Enabling Wi-Fi in Android 


3. Tap Wi-Fi to see the list of available networks, as shown in Figure 12.17. 


FIGURE 12.17 
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EXERCISE 12.2 (continued) 


4. Tap the network you want to join. 
5. Enter the password for the network and tap Connect. 


The device will go back to the list of Wi-Fi networks, showing that it’s connected (see 
Figure 12.18). 


FIGURE 12.18 Connected to a network 
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6. Close the Settings app. 


When your phone is connected to a Wi-Fi network, you don’t need to use a cellular 
connection for data transfers—apps will use the Wi-Fi connection for data. But if the con- 
nection gets dropped or you move out of Wi-Fi range, the device will use the cellular con- 
nection. This might be fine, but it also might not be what you want. If you want to ensure 
that the phone does not use cellular for data connections, you can disable that option. 
Exercise 12.3 walks you through the steps of how to do that on an iPhone. When the device 
is connected to a Wi-Fi network or when paired with a Bluetooth peer, data access will be 
possible; otherwise, no data-network access will occur. 


Disabling Cellular Use for Data Networking on an iPhone 
1. Tap the Settings app on the home screen. 


2. Select Cellular from the Settings menu. 


3. Turn off the switch labeled Cellular Data, which is shown in the On position in 
Figure 12.19. 


FIGURE 12.19 


4. Ifyou would like to keep cellular data usage enabled but not allow roaming into other 
providers’ data networks, you can tap Cellular Data Options, which will bring up the 
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iOS Cellular settings 
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options shown in Figure 12.20. 


FIGURE 12.20 Cellular data options 
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receive calls) on this particular phone. 


Tap Roaming to bring up the Roaming settings, as shown in Figure 12.21. 
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EXERCISE 12.3 (continued) 


FIGURE 12.21 


Roaming options 
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If you wish to disable cellular use just for a specific function or app, scroll down in the 
Cellular settings (or look for the app in the Settings page). You may be able to turn off 
the use of cellular data for that function or app alone. 


For example, Figure 12.22 shows the Use Cellular Data switch for several apps, all of 
which are currently enabled. This page also shows you how much cellular data each 


app has used in the current period. 


FIGURE 12.22 Cellular data for individual apps 
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7. Back out of the Settings app or close it. 
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Exercise 12.4 shows you how to disable cellular data on an Android-based device. 


Disabling Cellular Use for Data Networking in Android OS 
1. Open the Settings app. 
2. Under Wireless Networks, tap Data Usage. 


It will bring up a screen similar to the one shown in Figure 12.23. 


FIGURE 12.23 Data usage in Android OS 
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3. To disable cellular data usage, slide the Mobile Data switch to the Off position. 


Note that you can leave cellular data enabled but limit the amount that can be used 
during a specified time period. The dates can be customized to match the billing 
period used by the mobile carrier. However, be warned that the carrier may track 
usage slightly differently from the phone, so it might not be a foolproof way to avoid 
excess data charges. 


4. (Optional) To see how much data each app has used in the current period, scroll 
down (see Figure 12.24). 
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EXERCISE 12.4 (continued) 


FIGURE 12.24 Viewing app data usage in Android OS 














tA g “= ll 100% 01:10 PM 

= Data usage 

Data usage is measured by your phone. Your 
carrier may account for usage differently. Set 
the dates to match the period on your bill. 
> Google Play Store 0.26 GB 
a Pokémon GO 0.08 GB 
@ Google Services 0.06 GB 
Colorfy 0.06 GB 
a Android OS 0.03 GB 
© Email 0.02 GB 














The final setting we will look at in relation to Wi-Fi networks is the virtual private 
network (VPN) configuration. A VPN is a secured network connection made over an unse- 
cure network, such as the Internet. For example, if you wanted to connect your phone to 
your corporate network over the Internet in order to read email, but you also wanted to 
secure the connection, you could use a VPN. To set up a VPN on an iPhone, perform the 
following steps: 


1. Go to Settings > General > VPN. 


You will see a screen similar to the one shown in Figure 12.25. You can see that there 
are four VPNs already configured on this device, but VPN is turned off. 


2. To add a new VPN connection, tap Add VPN Configuration (Figure 12.26). 
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FIGURE 12.25 VPN settings 
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FIGURE 12.26 Adding a VPN connection 
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3. Choose the security protocol (IKEv2, IPsec, or L2TP), provide a server name and 
remote ID, and authentication method (username or certificate) and password. 


4. If going through a proxy server is required for the VPN, configure that at the bottom 
of the screen. 


In order for the VPN to work, the server and client must be configured to 

Qe use the same security protocols. iOS provides three VPN security proto- 
col choices: Internet Key Exchange v2 (IKEv2), Internet Protocol security 
(IPsec), and Layer 2 Tunneling Protocol (L2TP). IKEv2 and L2TP are both 
extensions of the IPsec protocol suite (which is in turn part of the TCP/IP 
suite you learned about in Chapter 7, “Introduction to TCP/IP”). IKEv2 is the 
most secure and the fastest, but it isn’t supported by as many operating 
systems as L2TP. 


Once you have enabled the VPN, a new VPN option will appear on your Settings 
page, as shown in Figure 12.25. This will allow you to easily enable, disable, or configure 
the VPN. 


Po VPN connections can be made over cellular as well as over Wi-Fi. 
ITE 


Exercise 12.5 shows you the steps required to set up a PPTP or L2TP VPN connection 
in Android. 


Setting Up a VPN in Android 
1. Open Settings > Wireless Networks, and then tap More. 


Depending on the model of phone, the options may differ here. There might be a plus 
sign to add a VPN, or there could be an option to tap to add a Basic VPN or model- 
specific VPN. 


2. Onthe sample phone you are using, tap add Basic VPN. 


A screen similar to the one shown in Figure 12.27 will appear. 
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FIGURE 12.27 Adding a VPN in Android 
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3. Enter the server's VPN configuration information, such as the name, security type 
(PPTP, L2TP, or IPsec), and address, as well as the username and password. 


4. Tap Save. 
That will take you back to the Add VPN screen, with the new VPN listed. 


5. Tap the name ofthe VPN, which will open the Connect to VPN screen, shown in 
Figure 12.28. 


FIGURE 12.28 Connect to VPN screen 
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6. Enter the username and password, and tap Connect. 
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Mobile Phone Security 


This is beyond what you need to know for the A+ exam, but you might find it interest- 

ing anyway. The security options on Android devices are likely different from iOS-based 
options. For example, the phone we use in Exercise 12.5 does not support IKEv2 but does 
have Point-to-Point Tunneling Protocol (PPTP), which is a predecessor to L2TP (and far 
less secure). 


Android devices may also show options such as L2TP/IPsec PSK or L2TP/IPsec RSA. 
Pre-Shared Key (PSK) is a security key that’s generated by the server and shared with 

the client. It’s susceptible to brute force attacks and not recommended for highly secure 
environments. Rivest, Shamir, Adleman (RSA) is a somewhat more secure algorithm that 
uses asymmetric security keys. It’s a better choice than PSK but needs to be administered 
from an RSA server. 





Android also supports many apps that allow you to configure VPN connections, such as 
TunnelBear and Hola Free VPN. 

The most secure VPN standard (at the time of this writing) is called OpenVPN. If your 
network uses an OpenVPN server, know that you have to install a third-party app (such 
as OpenVPN Connect) to create the VPN connection. Android does not natively support 
OpenVPN. 


Establishing Bluetooth Connectivity 


The IEEE 802.15 standard specifies wireless personal area networks (WPANSs) that use 
Bluetooth for data-link transport. The concept is that certain paired devices will be capable 
of exchanging or synchronizing data over a Bluetooth connection, such as between a 
mobile device and a desktop or laptop computer. 

In other cases, the Bluetooth pairing can be used simply to control one device with 
another, allowing information to flow bidirectionally, even if that transfer does not result 
in its permanent storage on the destination. Examples of this latter functionality include a 
Bluetooth headset for a smartphone, a Bluetooth-attached keyboard and mouse, and pair- 
ing a smartphone or MP3 player with a vehicle’s sound system. 

In general, connecting a mobile device to another device requires that both devices have 
Bluetooth enabled. Pairing subsequently requires that at least one of the devices be dis- 
coverable and the other perform a search for Bluetooth devices. Once the device perform- 
ing the search finds the other device, a sometime-configurable pairing code must often be 
entered on the device that performed the search. The code must match the one configured 
on the device that was found in order for the pairing to occur. In some cases, this pairing 
will work in one direction only. Usually, it is the mobile device that should search for the 
other device. If both devices have the same basic capability and will be able to exchange 
data readily, then it’s not as important which device performs the search. Regardless, the 
pairing code must be known for entry into the device that requests it. 

The truth about pairing mobile devices with conventional computers is that the results 
are hit or miss. There’s never any guarantee that a given pairing will be successful to the 
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point of data transfer capability. Both devices must agree on the same Bluetooth specifica- 
tion. This turns out to be the easy part because devices negotiate during the connection. 
The part that is out of your control is what software services the manufacturer decided to 
include in their devices. If one device is not capable of file transfers over Bluetooth, then the 
pairing may go off without a hitch, but the communication process will stop there. 

For example, in our Bluetooth pairing exercises, we use a Windows 10-based Dell 
Inspiron 13 laptop and an Android-based LC K20V smartphone. It took a few tries for the 
two devices to agree to talk to each other. That happens sometimes, so always be willing to 
try a few times. In the worst-case scenario, if it’s still not working, look for documentation 
online to help. Exercise 12.6 shows the steps to connect an Android device to a Windows 
10 laptop over Bluetooth and then to transfer a file back and forth between the two. This 
exercise is split into three sections so that you can concentrate on individual stages of the 
pairing and file sharing processes. 

Exercise 12.7 steps through the process of pairing an iPhone with a vehicle in order to 
stream music to the vehicle’s sound system. Note that the procedures shown here are based 
on the specific non-mobile devices used—a Windows 10-based Dell Inspiron laptop and a 
2019 Honda. The procedure is roughly the same with other remote devices but will likely 
vary in the fine details. 


Pairing an Android Device with a Windows Laptop 


Enabling Bluetooth and Pairing 


1. On the laptop, enable Bluetooth in Settings > Bluetooth & Other Devices, as shown in 
Figure 12.29. 


FIGURE 12.29 Enabling Bluetooth in Windows 10 
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EXERCISE 12.6 (continued) 


2. On the Android device, tap Settings > Bluetooth, and turn on Bluetooth. 


Under Available Devices (Figure 12.30), you should see the name of the laptop, 
provided you are within range. 


FIGURE 12.30 Available Bluetooth devices 
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3. Tap the name of the laptop to connect to. 


It will begin pairing. A passkey will appear, as shown in Figure 12.31. Be sure the 
passkey matches the one shown on the laptop, and tap Pair. Note that you might also 
need to confirm the passkey on the laptop. 


FIGURE 12.31 Bluetooth pairing request 
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Once the devices are paired, a gear icon will appear in Android, as shown in 
Figure 12.32. 
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FIGURE 12.32 Paired Bluetooth device with gear 
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4. (Optional) To unpair the devices, tap on the gear and tap Unpair. 
You can also rename the paired device in this screen. 

Transferring Files—Sending to Android 

1. In Windows, open Settings > Bluetooth & Other Devices. 


2. Scroll down until you see the Send or Receive Files via Bluetooth option 
(Figure 12.33). 


FIGURE 12.33 Send or receive files via Bluetooth. 
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3. Click the Send or Receive Files via Bluetooth link. 
A screen will open (Figure 12.34), asking if you want to send or receive files. 


4. Click Send Files. 
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EXERCISE 12.6 (continued) 


FIGURE 12.34 Bluetooth file transfer 





@ Bluetooth File Transfer 


Transfer files using Bluetooth 


You can use Bluetooth technology to transfer files wirelessly between this computer and a 
Bluetooth device, or between this computer and another Bluetooth enabled computer. 


To continue, select if you would like to send or receive files. 


> Send files 


Make sure the computer or device where you plan to send the files is turned on and 
ready to receive them. 


—> Receive files 


This will allow your computer to receive files sent from another Bluetooth enabled 
computer or device. 


Next Cancel 











5. Choose the paired device to send files to and click Next. 


6. Browse for the files to send. You can send multiple files by holding down the Ctrl key 
while clicking files. 


7. Click Next. 


8. On the Android device, click the Accept button (Figure 12.35). 


FIGURE 12.35 Accept the file transfer. 
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On the laptop, there will be a transfer status bar. When the transfer is done, the 
laptop will say File Successfully Transferred. 


9. Click Finish. 
10. In Android, open Tools > File Manager. 
The files will be in the Download folder by default (Figure 12.36). 


FIGURE 12.36 Received file in Android 
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Transferring Files—Receiving from Android 
1. In Windows, open Settings > Bluetooth & Other Devices. 
2. Scroll down until you see the option Send or Receive Files via Bluetooth. 
3. Click or tap the Send or Receive Files via Bluetooth link. 
It will open a screen asking if you want to send or receive files. 
4. Click Receive Files. 
The next window that appears will tell you the laptop is waiting for a connection. 


5. On the Android device, find the file you want to share, and tap Share and then Blue- 
tooth (Figure 12.37). 


FIGURE 12.37 Choose Bluetooth icon to share. 
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EXERCISE 12.6 (continued) 


6. Tap the name of the device to share with. 
On the laptop, a status bar will appear as the file is being received. 


7. The laptop will ask for a location to save the file. Choose a location, as shown in 
Figure 12.38. 


FIGURE 12.38 Choose a location to save the file. 
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File name: File Name Size 
1007180927 jpg 4.62 MB 
Location: CAUsers\honey\OneDrive\Documents| | Browse... 














Finish Cancel 





8. Click Finish. 


If you plan on doing a lot of file transfers between a mobile device and a laptop or other 
paired device, it might make sense to get an app to make that job easier. The devices still 
need to be paired, but the app makes the transfer process easier. Bluetooth File Transfer 
is one example, and it’s available in the Google Play Store. The iOS App Store has several 
options available as well if you search for Bluetooth file transfer. 

The procedure in Exercise 12.7 is performed from the perspective of an iPhone pairing 
with a 2019 Honda vehicle. The exact process for Bluetooth pairing will differ based on 
your mobile OS and the device to which you are connecting. In general, though, remember 
that these are the steps: 
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1. Turn on the Bluetooth hands-free device. 
a. Enable Bluetooth. 
b. Enable pairing. 
Use your mobile device to locate and select the Bluetooth device. 
Enter the Bluetooth device’s passcode. 


Confirm pairing on the Bluetooth device by pressing a button or a combination 
of buttons. 


5. Test the connectivity. 


Pairing an iPhone with a Vehicle’s Sound System 


1. Enable Bluetooth pairing in the vehicle. It will often involve using menu or voice com- 
mands to begin the process. 


2. Confirm that the vehicle’s hands-free power is enabled. 


Hands-free power might be referred to in other ways, including simply as Bluetooth. 
Alternatively, the Bluetooth module in certain vehicles might be “always on” and not 
configurable. The key is to make sure that the vehicle is ready to accept incoming 
Bluetooth requests. 


3. When the vehicle is ready, go into Settings > Bluetooth on the iPhone, and slide the 
switch to enable Bluetooth, as shown in Figure 12.39. 


It found the car’s multimedia system as “HandsFreeLink” under Other Devices. 


FIGURE 12.39 Enabling Bluetooth on an iPhone 





mil Verizon > 4:01 PM T= 


< Settings Bluetooth 


Bluetooth «> 


Now discoverable as “Q's iPhone”. 


MY DEVICES 
Charge 2 Not Connected Gi) 
HandsFreeLink Not Connected © 


OTHER DEVICES > 
HandsFreeLink 


To pair an Apple Watch with your iPhone, go to the 
Watch app. 
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EXERCISE 12.7 (continued) 


Bluetooth pairings in this list can be Connected, Not Connected (pairing was, 
however, successful), or Not Paired. 


4. Tap the HandsFreeLink device in Other Devices. It will attempt to pair. 


The pairing screen will appear on both devices. The iPhone screen is shown in Figure 12.40. 


FIGURE 12.40 Bluetooth pairing 


Bluetooth Pairing Request 
“HandsFreeLink" would like to pair with 
your iPhone. Confirm that this code is 
displayed on "HandsFreeLink”. 


777743 


Cancel 





5. Ifthe code matches the one on the vehicle screen, tap Pair. You may also need to do 
the same on the vehicle’s touch screen. 


Both devices will likely confirm that the pairing was successful. (Although in practice, 
we've had the devices say that pairing failed, yet steps 6 and 7 below still work, indi- 
cating that the pairing was in fact successful. Sometimes this process can be finicky.) 


6. Confirm the iPhone’s connection from the vehicle’s perspective. 


If the vehicle has the ability to use the iPhone for voice calls, this feature might be 
presented to you automatically after pairing is complete. If so, this is a perfect way to 
confirm connectivity. 


7. Switch to the vehicle's Bluetooth audio mode. 


The iPhone might still need to be “connected” for this use. The pairing allows you to 
select the connection feature in the vehicle and see the iPhone as a connection option. 
Depending on the vehicle, selecting the iPhone should cause music to begin playing 
either from its default playlist or the last position where playback was stopped over 
another output source, including the iPhone’s internal speaker or headset jack. 


Future connections to the iPhone from this vehicle should be automatic when the vehicle’s 
Bluetooth mode is selected, and the iPhone should begin playing from the point where it 
last stopped playing over any output source. The specific initial and subsequent interac- 
tions between the vehicle and iPhone may vary from this description. 
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Bluetooth Pairing Steps 


The CompTIA A+ exam objectives list the Bluetooth pairing steps as follows: 


1. Enable Bluetooth. 

2. Enable pairing. 

3. Find a device for pairing. 

4. Enter the appropriate PIN code. 
5. Test connectivity. 


For purposes of the exam, it’s best to memorize these steps. However, you might have 
noticed that in the exercises in this chapter (or in real life if you've paired your own 
devices), there are some slight nuances to understand: 


a Usually, the ability to pair is enabled if Bluetooth is enabled. Therefore, step 2 might 
not be needed, but you might need to initiate pairing. 


= It used to be that one device generated a PIN and you entered it into the other. Today, 
it's more common to have both devices display a PIN, and you confirm on both 
devices that the PIN matches. 


You will also need to understand Bluetooth pairing for the 220-1002 exam, because it’s 
listed under that exam’s Objective 3.5 as well. 





Configuring Email Accounts 


Because the vast majority of the world’s email traffic flows over TCP/IP internetworks, 
which include the Internet, it is exceedingly simple to set up mobile devices to access email 
accounts. Usually, the most difficult part is finding the server settings that are used only 
during establishment of the connection, which tends to occur only once for each device. 
The other big challenge is when users have the same devices and accounts for many years; 
since they have not configured them in some time, it might be difficult for them to remem- 
ber their usernames and passwords, if needed. 

When configuring mobile devices to access email, you will be attaching to one of the fol- 
lowing two types of services: 


a An integrated commercial provider, which includes iCloud, Google/Inbox (Gmail), 
Exchange Online, and Yahoo Mail 


= A corporate or ISP-based email service 


Generally speaking, connecting to an integrated commercial provider is quite easy and 
nearly automatic. Connecting to a corporate or ISP-based account usually involves a few 
more steps, but it shouldn’t be too tricky if you know the proper server settings. In the fol- 
lowing sections, we’ll look at configuring email on a mobile device, settings to know for 
manual configuration, and special considerations for S/MIME. 
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Mobile Internet Email Configuration Options 


If your email is on a common web-based service, such as iCloud, Google/Inbox (Gmail), 
Exchange Online, or Yahoo, configuring the email feature is pretty easy. Usually, your 
email address and password are all that are required. However, if you have a corporate 

or ISP account or a custom domain, even if it’s hosted and accessible through Gmail, 
Outlook.com, or the other popular services, you may need to take a few more steps to make 
a connection. For the purposes of trying out a commercial service, you can always make a 
dummy account on the service’s website and play around with that if it helps you complete 
these exercises. Exercise 12.8 and Exercise 12.9 detail the basic steps required to config- 
ure a commercial email account on an iPhone and on an Android standard email client, 
respectively. 


Email Account Configuration on an iPhone 


1. From the home screen, tap Settings and scroll down until you see Passwords & 
Accounts. 


2. Tap Passwords & Accounts. 


It will show you configuration settings for website and app passwords and AutoFill, 
as well as accounts already set up (Figure 12.41). 


FIGURE 12.41 Passwords & Accounts 





ai! Verizon > 4:41PM 7 m; 


< Settings Passwords & Accounts 


Q Website & App Passwords 2 


AutoFill Passwords O 


ACCOUNTS 


iCloud 


Contacts, News, Photos, Stocks 


Add Account 


Fetch New Data Push 











3. Tap Add Account. 


A screen similar to the one shown in Figure 12.42 will appear. 
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FIGURE 12.42 Add an account. 
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< Accounts Add Account 


® iCloud 
GA Exchange 
Google 
YAHOO! 
Aol. 


dä Outlook.com 


Other 











Note that if you have an email account with any of the listed services, you can tap it 
to configure your client. You will be asked for your username and password. After 
entering this information, you should be done. It’s as easy as that to add an account 
for a commercial provider. For this example, complete the following steps: 


a. Tap Other > Add Mail Account. 


You will get a screen similar to the one shown in Figure 12.43. 


FIGURE 12.43 Creating a new email account 





all Verizon > 4:49 PM æ+ 
Cancel New Account Next 
Name Q Docter 
Email test@example.com 


Password eecceccee| 


Description Email Is Great 











b. Add your name, email address, password, and an optional description. 


c. Tap Next. 
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EXERCISE 12.8 (continued) 


4. Inthe New Account screen (see Figure 12.44), choose IMAP or POP. 


FIGURE 12.44 New Account screen 
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Cancel New Account 


Name Q Docter 
Email test@example.com 


Description Email Is Great 


INCOMING MAIL SERVER 


Host Name 
User Name 


Password eeeeccee 


OUTGOING MAIL SERVER 


Host Name 
User Name 


Password 











We will get into the differences between the two in the next section, but if your 
server supports it, IMAP is preferable. 


5. Here you also configure the names of the incoming and outgoing mail servers. 
Many organizations will have one server handle both functions. 
6. Once you have entered the correct information, tap Next. 


The iPhone will make connections to the server(s) to verify the username and pass- 
word. If the username and password are successful, you will get a screen asking 
which content you want to receive, such as mail, contacts, and calendars. 


7. Tap Save, and it will add your account. 


Now you can use the Mail icon on the home page to retrieve email. Note that you can 
have several email accounts configured to receive email in this app. 
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8. (Optional) To delete an account, repeat steps 1 and 2 in this exercise. On the Pass- 


words & Accounts screen, tap the account that you want to delete. 


9. (Optional) Tap Delete Account to remove it from this client. 


Exercise 12.9 details the steps required for configuring an email account on an Android 
standard email client. If the Android device does not have the email app on the home 
screen, you can add it or run it directly from the All Apps list. 


Email Account Configuration in Android 
1. Tap Settings and scroll down to the Personal section on the left side. Tap Accounts 
(see Figure 12.45). 


FIGURE 12.45 Accounts in Android 
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PERSONAL 
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Do 


Accounts 





5 Language & input 
English (United States) 











Eo Backup & reset 


G Google services 


SYSTEM 





@) Shortcut keys 








2. Atthe bottom of the screen, tap Add Account. 


3. Tap the type of account that you want to add. For this example, choose Personal 


(IMAP). 
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EXERCISE 12.9 (continued) 


4. Enter your email account name and tap Next. 
5. Enter your password and tap Next. 


You will get a screen similar to the one shown in Figure 12.46. 


FIGURE 12.46 Incoming server settings 
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M 


Incoming server settings 


test@email.com 





seeeeenes e x 





email.com 











NEXT 





6. Tap Next to validate the server settings. 


The information we entered is obviously fake, so the validation will fail. (Hopefully 
yours succeeds!) Having the validation fail gives us a chance to talk about additional 
options. 


Since the validation failed, Android tries to help out by suggesting we try changing the 
port or security type (see Figure 12.47). Notice that near the bottom of the screen, the port 
is 143 because we chose IMAP in step 3. Continue with the following steps: 
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FIGURE 12.47 Email port setting 


+RA g “= il 100% Ñ 5:15 PM 
Incoming server settings 


Try updating port and/or security type to add this 
account. 


test@email.com 











email.com 





Port 


143 


Security type 


None 
Email security not guaranteed 


NEXT 








7. Scroll down from the Port setting, where you will see the Security Type setting. 


8. Tap anywhere on the setting next to Security Type, and you can change the security 
to SSL/TLS. 


Options are shown in Figure 12.48. Changing the type to SSL/TLS will automatically 
change the port number to 993. (We will discuss SSL/TLS shortly.) 


FIGURE 12.48 Email security options 
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Try updating port and/or security type to add this 
account. 
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None X 
SSL/TLS 
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STARTTLS 

STARTTLS (accept all certificates) 


SSL/TLS 








NEXT 
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EXERCISE 12.9 (continued) 


9. Tap Next. Android will contact the server and verify the server settings. 


After verifying a connection to the server, you may be able to choose account 
options, such as sync frequency and email notification settings. 


10. Choose your settings (if applicable) and tap Next. 


You may get an account confirmation page, where you can edit the account name 
that gets displayed as well as the name that gets displayed on outgoing messages. 


11. Tap Next. 


The new account will appear in your accounts list in Settings. 


12. Access your email through the Email app on the home page. 


Manual Email Configuration Options 


In situations when you find that your email client cannot automatically configure your 
email account for you, there are often manual settings for the protocols required for send- 
ing and receiving emails. Table 12.1 details these protocols and their uses. 


TABLE 12.1 TCP/IP mail protocols 





Mail Protocol Description Default Port Number 
Simple Mail Transfer | Used to communicate between client and TCP 25 
Protocol (SMTP) server and between servers to send mail to 
a recipient’s account. The key word is send, 
as this is a push protocol. 
Post Office Protocol Used to communicate between aclient and TCP 110 
(POP) the client’s mail server to retrieve mail with 
little interaction 
Internet Message Used to communicate between aclientand TCP 143 
Access Protocol the client’s mail server to retrieve mail with 
(IMAP) extensive interaction 
"d In Table 12.1 and for the rest of this section, we refer to the POP and 
A: IMAP protocols. In practice, the current versions of each are POP3 and 


IMAPv4. For brevity, we will refer to them as just POP and IMAP—the ver- 
sion numbers do not affect the port numbers and relevant configuration 
information. 
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In a TCP/IP network using only the protocols in Table 12.1 (there are other, less com- 
mon options), you must always use SMTP for sending mail. You must decide between the 
use of POP and IMAP for interacting with the mail server to retrieve your mail with the 
client. When supported, IMAP is a clear choice because of its extensive interaction with 
the server, allowing the client to change the state or location of a mail item on the server 
without the need to download and delete it from the server. 

Conversely, POP limits client interaction with the server to downloading and deleting 
items from the server, not allowing their state to be changed by the client. In fact, the use of 
POP as your receive-mail protocol can lead to confusion because copies of the same items 
appear in multiple client locations, some marked as read and others unread. Additionally, 
where IMAP changes the state of a mail item on the server and leaves the item on the server 
for later access by the same or different client, POP settings must be configured not to 
delete the item from the server on download to each client. This, however, is what leads to 
the choice of multiple copies among the clients or only one client being able to download 
the item. 

Most, if not all, Internet mail services require secure connections. SMTP, POP, and 
IMAP are all unsecure protocols, so this poses a problem. One solution is to use Secure 
Sockets Layer (SSL) or Transport Layer Security (TLS) on top of these protocols. You 
might recognize SSL and TLS from their use on TCP port 443 for the HTTPS protocol. 
When using these protocols to secure the email protocols, mail servers and clients need to 
communicate on different ports other than the ones shown in Table 12.1. These are out- 
lined in Table 12.2. 


TABLE 12.2 Secure mail ports 





Mail Protocol TCP Port Number 
SMTP with SSL 465 
SMTP with TLS 587 
IMAP with SSL/TLS 993 
POP with SSL/TLS 995 








Using STARTTLS 


It was mildly obnoxious to have to memorize multiple port numbers (although you should 
for the exam), as well as program email clients and servers to recognize different ones. A 
different solution exists, called STARTTLS. (You saw it as an option in Figure 12.48.) 
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STARTTLS secures email communications over the three common email protocols, but 
it does not change their port numbers. And despite its name, STARTTLS doesn’t exclu- 
sively use TLS—it can use SSL as well. Some email software supports it, whereas others 
do not, so be aware of its existence and know what it does. It’s not a test objective, but 
it’s something you may run into in the real world. 





Additionally, you will need to know the server names for your service. Sometimes 
they are the same for inbound and outbound mail handling, but they may be different. 
Table 12.3 lists the servers in the United States for iCloud, Gmail, Exchange Online, and 
Yahoo Mail. Unless otherwise specified, the ports in Table 12.2 should be used for the 
protocols listed in Table 12.3. 


TABLE 12.3 Secure mail servers for common webmail services 





Service Direction and Protocol Server Name 
iCloud Outbound on SMTP with SSL smtp.mail.me.com 
Inbound on IMAP with SSL jmap.mail.me.com 


Google/Inbox (Gmail) Outbound on SMTP with SSL or TLS smtp.gmail.com 


Inbound on IMAP with SSL jmap.gmail.com 
Inbound on POP with SSL pop.gmail.com 
Exchange Online Outbound on SMTP with TLS smtp.office365.com 
Inbound on IMAP with SSL outlook.office365.com 
Inbound on POP with TLS outlook.office365.com 
Yahoo Mail Outbound on SMTP with SSL smtp.mail.yahoo.com 
Inbound on IMAP with SSL jmap.mail.yahoo.com 
Inbound on POP with SSL pop.mail.yahoo.com 


S/MIME Considerations 


The last configuration option of which you should be aware is email encryption. 
Android and iOS both support the Secure/Multipurpose Internet Mail Extensions (S/ 
MIME) standard for public key encryption. This isn’t to be confused with SSL/TLS, 
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which we just discussed. Those encrypt transmissions, whereas S/MIME encrypts the 
email message itself. 

If you can’t decrypt email, it is most likely because S/MIME settings are not properly 
enabled on your email account, which means that you must install the certificate (and, by 
extension, your private key) on your mobile device. Exercise 12.10 walks you through the 
general steps to enable S/MIME on iOS, using iOS 12 as an example. The exercise assumes 
that you already have obtained a security certificate (which comes in the form of a .p12 file) 
through a certificate authority (CA). 


Enabling S/MIME in iOS 12 


1. Transfer the security certificate to your iOS device. You need the .p12 file; download 
it directly from your CA or email the .p12 file to yourself. 


2. Open the .p12 file. iOS will automatically begin the installation process for the secu- 
rity profile. 


3. On the first screen, click Install. 
4. Ifyou get a warning that the profile is unsigned, click OK. 


5. Enter the passcode for the device, and then enter the passcode for the .p12 file. Click 
Next. 


6. Click Done to complete the certificate installation. 


Now you need to enable S/MIME for the email account you want to use it for. (This exer- 
cise uses an iCloud email account as an example.) 


1. On your iOS device, open Settings > Passwords & Accounts. 

2. Under Accounts, tap iCloud. 

3. Atthe bottom of your account settings, under Advanced, tap Mail. 
You will get a screen similar to the one shown in Figure 12.49. 

4. Atthe bottom of the screen, tap Advanced. 


5. Atthe bottom of the Advanced screen (Figure 12.50), slide S/MIME to the On position. 
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EXERCISE 12.10 (continued) 


FIGURE 12.49 Mail settings 
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FIGURE 12.50 Advanced settings for email 
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The following two options are for enabling digital signatures and encrypting messages 
by default. 


6. Turn on Sign and Encrypt By Default, if you would like. 
7. Back out of the Advanced settings. 


When sending an encrypted email, the recipient’s name will have a lock icon next to it, 
like the first recipient in Figure 12.51. The second recipient has an unlocked lock—the 
email will not be encrypted when sent to them. 


FIGURE 12.51 The first recipient will receive an encrypted email. 





New Message 
Unable to Encrypt 


T E User @ a © 


Recipient 2 @ | 


Cancel Send 


Sent from my iPhone 











Configuring Mobile Device 
Synchronization 


While some users are content to have a mobile device only, many others do not consider 
their mobile devices to be islands unto themselves. Instead, they treat their mobile devices 
as extensions of their primary computing device that, even if it happens to be portable, 
stays at work or at home while the mobile computing device goes on the road with the user. 
However, because many of the same changes to a user’s calendar, contacts, and personal 
files can be made from the mobile device as easily as from the primary computer, frequent 
synchronization of the two devices is in order. Synchronization is the act of mirroring all 
unique changes and additions from one device to the other. 

In most cases, there are multiple options as to how the mobile device will connect to the 
computer system. Some connections allow synchronization; others do not. Common con- 
nections include over USB, across Wi-Fi, and over a Bluetooth connection. Although the 
wired connections tend to be the most reliable, the convenience of wireless connections and 
their automatic unattended synchronizations cannot be ignored. 

Because each manufacturer of mobile devices must approach synchronization of data 
in the best manner for their devices, generalized discussions of data to be synchronized 
can only include the common types. The tabs in iTunes and their purpose are detailed in 
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the next section, but the following list constitutes the most common types of data to be 
synchronized by all such utilities: 


= Contacts 

= Applications 

» Email 

= Pictures 

a Music 

= Videos 

= Calendar 

= Bookmarks 

= Documents 

= Location data 
= Social media data 
= E-books 


a Passwords 


Syncing Apple iOS Devices 


Due to their size, Apple iOS devices have limited storage space, and they also have the 
potential to get lost (or stolen) somewhat easily. Therefore, it’s smart to synchronize your 
device to a desktop or laptop computer (they will be collectively referred to as desktop in 
the rest of this section) and/or make backups of the device. The differences between the 
two concepts aren’t that large. Synchronization means that the exact same copy of the data 
(music, pictures, contacts, or whatever) is on both the iOS device and the desktop. Backing 
up means taking whatever is on the phone at that time and ensuring that a duplicate is 
stored elsewhere. Synchronization can often happen both ways, whereas backups are a 
one-way process. Apple provides two options for syncing and backing up: sync to a desktop 
(using iTunes) and back up to the cloud (using iCloud). 


Using iTunes 


To sync a device with a desktop, the iTunes app must be installed on the computer. It’s 
installed by default on Macs and can be found at https: //www. apple. com/itunes/ 
download/ for non-Apple OSs. Figure 12.52 shows the Summary page of iTunes for an 
iOS device when it’s connected. Notice that the Backups section has options to back up to 
iCloud or to This Computer. In this section, we will focus on local backups. 

By default, iOS devices will automatically sync each time they are connected by USB, 
and Wi-Fi in some cases, and they are recognized under the Devices section in the left 
frame of iTunes. The exception is when iTunes is set to prevent automatic synchronization. 
Figure 12.53 shows the dialog box from iTunes attained by clicking Edit > Preferences > 
Devices. (You might need to press the Alt key to get the Edit menu to appear.) Notice that 
syncing is set to occur automatically because the Prevent iPods, iPhones, and iPads from 
Syncing Automatically check box is cleared. 


FIGURE 12.52 
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FIGURE 12.53 
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The iTunes options shown in this section are for version 12.9. Different ver- 
OTE sions may have slightly different configurations or menus. 


When synchronizing with a desktop, both the iOS device and the desktop authenticate 
each other. This two-way authentication, called mutual authentication, lets multiple ser- 
vices on the iOS device communicate with the appropriate services on the desktop. The A+ 
exam objectives refer to this as mutual authentication for multiple services (SSO). 

The selection of what is to be synchronized is a task unto itself, but iTunes provides spe- 
cific tabs on the left side of the interface for each class of data, as shown in Figure 12.54, 
under the Settings section. 


FIGURE 12.54 iTunes synchronization categories 
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You can make very granular choices about what you want to sync. The following list 
gives the basic characteristics of each tab: 


= Summary:—This setting contains general information about the device, backup set- 
tings, and general sync options. 





a Music:—This setting shows music to be synced and playlist, artist, album, and genre 
sections for making selections in partial syncing. 


a Movies:—This setting shows movies and video clips to be synced. 





a TV Shows:—This setting shows TV shows to be synced. 
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=  Photos:—This setting shows photos to be synced. 
=  Info:—This setting shows contacts, calendars, mail, and bookmarks to be synced. 


= File Sharing:—This setting specifies apps that can transfer documents between the 
iPhone and the computer. 


Below the Settings section is a section called On My Device that allows you to view 
what’s currently stored on the device. 

If the iOS device is running iOS version 5 or higher and the computer it syncs with 
is running iTunes version 10.5 or higher, you can sync your iOS device by using Wi-Fi. 
Besides these minimum version requirements, a few things have to come together before 
this will work. The following list outlines these requirements: 


a You must enable Sync with this iPhone over Wi-Fi within iTunes. This is done from the 
Options section of the Summary tab, as shown in Figure 12.55. 


FIGURE 12.55 Enable sync over Wi-Fi 


Options 


@ Automatically sync when this iPhone is connected 
@ Sync with this iPhone over Wi-Fi 
Sync only checked songs and videos 
Prefer standard definition videos 
Convert higher bit ratesongs to 128kbps > AAC 
Manually manage music and videos 
Reset Warnings 


Configure Accessibility... 


= Apple states that the iOS device must be plugged into a source of power before a sync 
will occur. It has been demonstrated that given enough battery power, the iOS device 
will sync without being plugged in. 


= The iOS device should not be plugged into the USB port of the computer with which it 
syncs. USB synchronization overrides Wi-Fi synchronization. 


a The iOS device and the computer with which it syncs must be on the same Wi-Fi net- 
work, which means that the SSID of the Wi-Fi network to which they are attached is 
the same and you are sure that the wireless network is not misconfigured to produce 
a false positive result, such as with two unconnected WAPs configured with the same 
SSID. 


= The computer with which the iOS device syncs must have iTunes running. Otherwise, 
the Sync Now button on the iOS device will be dimmed. When in this state, however, 
once iTunes is opened and all other requirements are met, Wi-Fi sync will begin auto- 
matically, if not disabled in Devices Preferences. 
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For syncing over Wi-Fi to occur, it is not necessary to remove the wired connection of 
the computer running iTunes, if one exists. Although the computer will favor the use 
of the wired connection over the wireless link for regular network traffic, iTunes forces 
the communication to the iOS device to occur over the Wi-Fi link during establishment 
of the connection and synchronization. 

If all these conditions are met, you will be able to initiate synchronization from the 
iOS device. It’s done through Settings > General > iTunes Wi-Fi Sync, as shown in 
Figure 12.56. 


FIGURE 12.56 Sync Now option on an iPhone 
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You can tell when the device is syncing because the eject arrow to the right of the device 
name changes to the rotating sync icon, like the one in Figure 12.57. (Compare it to the 
icon to the right of the phone name in Figure 12.54.) In Figure 12.57, you can also tell that 
this device is connected to the computer because the battery indicator is displayed. If it 
were syncing via Wi-Fi, the battery indicator would not be shown. 


FIGURE 12.57 Device is syncing 
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If automatic synchronization is disabled in Devices Preferences, you can start the manual 
synchronization of an iOS device by selecting the iOS device above the left frame in iTunes 
and then clicking the Sync button at the bottom-right corner of its Summary tab. 
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Using iCloud 


So far, we’ve talked about syncing with the desktop, but we haven’t mentioned storing data 
on the cloud. Apple’s version of the cloud is called iCloud, and it is available to all iOS 
users. This is the only real option for users that have ditched their desktops, and a conve- 
nient option for those who haven’t. 

When a user creates an Apple ID, it’s used to log into the iTunes store, but it can also 
be used for an iCloud account. Apple recommends that the same username be used for 
both, but it is not required. On the iOS device, it’s easy to get to iCloud settings. Open the 
Settings app, tap the Apple ID at the top of the page, and then choose iCloud. The configu- 
ration page is shown in Figure 12.58. 


FIGURE 12.58 iCloud configuration settings 
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At the top of the iCloud settings, it will show you the space available for that 
Apple ID and which types of data you are syncing or backing up. Simply slide the 
switch from off to on to turn on synchronization or backups. The default amount of 
free storage space is 5 GB. Tapping Manage Storage will give you an option to pur- 
chase more space if needed, such as 50 GB, 200 GB, or 2 TB. Synchronization and 
backups will happen when the phone is plugged into a power source, locked, and con- 
nected to Wi-Fi. 
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Syncing Android Devices 


Just as with Apple’s devices, mobile devices built for the Android operating system can be 
synced to a traditional computer. Apple’s iTunes is proprietary and has been designated as 
the application that performs synchronization of iOS devices. In a similar way, manufac- 
turers of Android devices have their own syncing utilities. Because this software and the 
connection methods allowed vary widely from one manufacturer to another, it is difficult 
to predict exactly what one manufacturer will offer in its utility and whether each Android 
device it produces will interact the same way and over the same connections. 


Many Android apps use Google Drive as the preferred cloud storage 
A TE location. In addition to manufacturer-provided tools, users can elect to use 
Google Backup & Restore. In general, though, the results are mixed and 


not quite as reliable as the iOS backup tools. Contacts are generally okay, 
but apps and settings may be hit or miss. 


For an example, let’s use the LG phone we’ve used thus far in the chapter. Perhaps the 
easiest way to get files from the phone to a desktop is to use a USB cable and perform direct 
copies. It’s not quite the same as a synchronization, but it is easy to do. Just perform the 
following three simple steps: 


1. Connect the phone to the computer using a USB cable. 


2. Open the notifications panel and tap the USB connection message (as shown in 
Figure 12.59). 


3. Choose what to use the USB connection for, as shown in Figure 12.60. 


FIGURE 12.59 USB message in notifications 
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FIGURE 12.60 Use USB connection for 
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LG has another option for synchronization, called LG PC Suite. Windows and macOS 
are available in the LG Help Library—just search for LG PC Suite. Figure 12.61 shows the 
Music sync screen from the tool. 








FIGURE 12.61 LG PC Suite 
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Most Android device manufacturers will have a tool similar to LG PC Suite. 
OTE Options include Samsung SideSync, HTC Sync Manager, and Motorola PC 
Sync. The Google Pixel does not have specific sync software. 


Common items available for synchronization include contacts, applications, email, pic- 
tures, music, videos, calendars, bookmarks, documents, location data, social media data, 
e-books, and passwords. Of course, specific options will depend on the software used. 


Syncing to an Automobile 


One of the A+ exam objectives calls out synchronizing to the automobile. Mobile devices 
can connect to nearly all modern automobile entertainment and communications systems, 
but synchronization doesn’t quite happen like it does to a PC or the cloud. 

The first step is to pair the mobile device to the automobile using Bluetooth or via a 
USB cable. We provided guidance on how to pair a device in Exercise 12.7. Once the two 
devices are paired, the automobile will be able to read key data from the mobile device, 
such as contacts and music. You may even be able to sync the contacts from a smartphone 
to the automobile. Having the phone nearby allows the auto’s communications system to 
place and receive phone calls and send and receive texts, while letting the driver operate in 
a hands-free environment. (Always drive safely—don’t text and drive!) 

Each auto manufacturer has its own specific software for connecting the vehicle to a 
mobile device. Examples include HondaLink, Ford SYNC, Chevy MyLink, Toyota Entune, 
and BMW ConnectedDrive. For the exam, it’s highly unlikely that you will be asked for 
steps on how to synchronize with a specific manufacturer—there are simply too many out 
there. Do remember that you should pair the device with the auto and always put safety 
first (think hands-free) when operating a vehicle. 


Software Installation Requirements 


As with any software, minimum hardware and disk-space requirements exist for installing 
the software that allows synchronization of mobile devices. Any computer on which a user 
would install these software applications should have USB and Wi-Fi for connectivity. It 
never hurts to make sure, though. In this section, we’ll outline the minimum requirements 
for installing iTunes and HTC Sync, a utility for the devices made by the popular manufac- 
turer HTC. 


Installation Requirements for iTunes 

Apple’s iTunes is available for macOS and Windows. The following sections list the hard- 
ware and software requirements for installing iTunes on each of these operating systems. 
Windows Requirements 


The following list details the minimum hardware requirements that a Windows machine 
must have in order to support the installation of iTunes version 12 (64-bit). Keep in mind 
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that these are minimums, so for each component, we could say “or better” or “or faster.” 
As with any other software package, better and faster hardware to support it is almost 
always a good thing: 


=a 1 GHz Intel or AMD processor 
a 512 MB of RAM 
= To play 720p HD video, an iTunes LP, or iTunes Extras: 
a 2.0 GHz Intel Core 2 Duo processor 
= 1GBofRAM 
= Intel GMA X3000, ATI Radeon X1300, or NVIDIA GeForce 6150 video card 
= To play 1080p HD video: 
a 2.4 GHz Intel Core 2 Duo processor 
=a 2 GBof RAM 


= Intel GMA X4500HD, ATI Radeon HD 2400, or NVIDIA GeForce 8300 GS 
video card 


= Screen resolution of 1024x768 or greater; 1280x800 or greater to play an iTunes LP or 
iTunes Extras 


= 16-bit sound card and speakers 
= Broadband Internet connection 
= iTunes-compatible CD or DVD recorder (optional) 


Only certain versions of Windows support iTunes. The following list contains the soft- 
ware requirements for installing iTunes in Windows: 


a Windows 7 or newer 
= The iTunes 64-bit installer for 64-bit editions of Windows 7 or Windows 8 
= 400 MB of available disk space 


Mac Requirements 


Apple includes iTunes in its operating system and on each of its new machines. 
Nevertheless, Apple publishes minimum hardware and software requirements for the instal- 
lation of iTunes 12 on a Macintosh. The following list includes hardware requirements: 


= Mac computer with an Intel processor 
= 512 MB of RAM 
= To play 720p HD video, an iTunes LP, or iTunes Extras: 
a 2.0 GHz Intel Core 2 Duo processor 
= 1GBofRAM 
= To play 1080p HD video: 
a 2.4 GHz Intel Core 2 Duo processor 
= 2 GBof RAM 
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= Screen resolution of 1024x768 or greater; 1280x800 or greater to play an iTunes LP or 
iTunes Extras 
= Broadband Internet connection 
= Apple combo drive or SuperDrive (optional) 
The Macintosh software requirements are as follows: 
= macOS version 10.10.5 or newer 
= 400 MB of available disk space 


Installation Requirements for HTC Sync 


So far in this chapter, we’ve used an LG phone as an example of an Android-based device. 
For the sake of variety, we’ll look at another manufacturer’s synchronization software for 
the installation requirements. It’s highly unlikely that the A+ exam will quiz you on specific 
hardware requirements for different Android manufacturers’ sync utilities. This section is 
intended to give you some perspective, and to remind you to ensure that the computer you 
will use to sync to supports whatever software you choose to install. 

HTC is a very popular manufacturer of mobile devices, and it produces utilities for 
syncing its devices to your computer. Its popular HTC Sync Manager supports most HTC 
devices. Older devices with HTC Sense 3.6 or older need to use the HTC Sync app. Syncing 
with HTC Sync Manager requires a USB 2.0 (or better) connection. 

The following list outlines the capabilities of HTC Sync Manager. Note the similarity to 
general syncing interests as well as to those specific to iTunes. 


a Synchronize Outlook contacts and calendar or Outlook Express contacts 
a Synchronize web browser bookmarks 
= Install third-party Android applications 
= Bring the following items to your phone: 
a Photos 
= Videos 
= Documents 
= Songs 
= Playlists 


Because we are interested in establishing the basic functionality that allows 
synchronization to occur, let’s take a look at the system requirements for installing HTC 
Sync Manager. You'll notice that they are in line with those for installing iTunes. HTC Sync 
Manager is supported for both PC and Mac. 

The following list specifies the minimum hardware requirements that a Windows 
machine must have to support the installation of HTC Sync Manager’s current version: 


= Intel or AMD dual-core processor, minimum 2 GHz 
= 2GBofRAM 
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1024x768 resolution video adapter and monitor 
512 MB of available hard disk space 
USB 2.0 
The software requirements in the following list are similar as well: 
Windows XP Home/Professional/Media Center Edition Service Pack 2 and 3 (32-bit) 


Windows Vista Ultimate/Enterprise/Business/Home Premium/Home Basic Edition 
(32-bit and 64-bit) Service Pack 1 


Windows 7 Ultimate/Professional/Home Premium/Home Basic Edition (32-bit and 
64-bit) 


Windows 8/8.1, Windows 8/8.1 Pro, Windows 8/8.1 Enterprise (32-bit and 64-bit) 
Windows 10 Home, Enterprise, or Professional edition (32-bit and 64-bit) 
Microsoft Office Outlook 2003, 2007, 2010, or 2013 (32-bit and 64-bit) 
Here are the hardware requirements for a Mac: 
Intel processor 
512 MB of RAM 
1024x768 resolution video adapter and monitor 
100 MB of available hard disk space 
USB 2.0 
The software requirements are as follows: 
macOS 10.6 or newer 
Microsoft Office for Mac 2011 


PPS If you use the older HTC Sync app, HTC reminds you to enable USB debug- 


A: ging to make sure that it works properly. This setting is for developers and 


for applications to gain a deeper access to the resources of the device. 
Most apps don’t require it, but some, such as HTC Sync, cannot function 
properly or consistently without it. To make sure that USB debugging is 
enabled on your HTC Android device, select Settings > Applications > 
Development, and then check the box beside USB Debugging. You should 
disconnect and reconnect the device after making this change. 


Summary 


This chapter introduced you to key features of mobile devices: network connectivity and 
synchronization. Establishing network connectivity means enabling cellular, Wi-Fi, or 
Bluetooth connections and configuring them properly. 
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Key cellular concepts to understand are hotspots and tethering, PRI/PRL/baseband, 
radio firmware, and IMEI/IMSI. When using Bluetooth, you need to pair the device with 
another Bluetooth device for connectivity. VPNs can be created over cellular or Wi-Fi net- 
works, and airplane mode disables all wireless connections. 

Once network connectivity is established, many users will require their devices to be 
configured as email clients. We talked about POP3, IMAP, port and SSL settings, and S/ 
MIME, as well as how to connect to commercial email providers, such as iCloud, Google, 
Exchange Online, and Yahoo Mail. 

Synchronizing a mobile device to a desktop/laptop or the cloud is a good way to ensure 
that data is saved to a more secure or permanent location. Types of data that are synchro- 
nized include contacts, applications, email, pictures, music, videos, calendars, bookmarks, 
documents, location data, social media data, e-books, and passwords. The two common 
connection types for synchronization are Wi-Fi and USB. Be sure that the computer you 
are syncing to supports the software requirements needed to install the synchronization 
software. 


Exam Essentials 


Know how to connect a mobile device to a wireless network. Wi-Fi networks have a strict 
set of guidelines for connectivity. This means that the procedure for connecting disparate 
devices is quite similar. However, each mobile operating system has its own sequence of 
screens and selections to make the connection to wireless networks. Familiarize your- 

self with the procedure in iOS and Android. Also understand the concepts of hotspots, 
tethering, and airplane mode. 


Understand the steps needed to configure Bluetooth. You need to enable Bluetooth, 
enable pairing, find a device for pairing, enter the appropriate PIN code (or confirm the 
PIN), and test connectivity. 


Know which protocols are used for email and which ports they use. POP3 (port 110) and 
IMAP (port 143) are used to receive email, and SMTP (port 25) is used to send email. None 
of these protocols are inherently secure. They can be secured with SSL or TLS. SMTP over 
SSL uses port 465, and SMTP over TLS uses port 587. IMAP over SSL/TLS uses port 993, 
and POP over SSL/TLS uses port 995. 


Know how to send secure emails. S/MIME is used to send secure (encrypted) emails. 


Be familiar with four commercial email providers and required configuration items. The 
four commercial email providers to know are iCloud, Google/Inbox, Exchange Online, 
and Yahoo Mail. Each provider has its own inbound and outbound servers, but most of the 
time that configuration information is automatically provided when you try to connect to 
them with an email client. 


Understand PRI, PRL, baseband OS, and radio firmware, and how to update them. 
Product Release Instruction (PRI) contains settings for configuration items on the device 
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that are specific to the network that it’s on. The Preferred Roaming List (PRL) is the refer- 
ence guide the phone uses to connect to the proper cell phone tower when roaming. The 
baseband OS manages all wireless communication (and may be referred to as radio firm- 
ware). When you update a mobile OS, all of these components are updated. Depending on 
the OS and carrier, they may be updated separately. 


Know the difference between IMEI and IMSI. The international mobile equipment iden- 
tity (IMEI) is a 15-digit serial number that is unique to each phone. The international 
mobile subscriber identity (IMSI) is a unique 15-digit identifier that describes a specific 
mobile user and their network. 


Know the three synchronization methods. The three methods are sync to the cloud, sync 
to a desktop (which includes laptops), and sync to an automobile. 


Know which types of data are often synchronized. Common data types for synchroniza- 
tion include contacts, applications, email, pictures, music, videos, calendars, bookmarks, 
documents, location data, social media data, e-books, and passwords. 


Know what mutual authentication for multiple services (SSO) is. When synchronizing to 
a desktop, both the iOS and the desktop authenticate each other. This two-way authentica- 
tion is called mutual authentication, and it lets multiple services on the iOS device commu- 
nicate with the appropriate services on the desktop. The A+ exam objectives refer to this as 
mutual authentication for multiple services (SSO). 


Know which connection types are used for synchronization. The two most common con- 
nection types are Wi-Fi and USB. 


Understand what is required to install synchronization applications ona PC. The PC 
must have the minimum hardware and software required to support the application. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. 


A friend asks you why she would ever disable cellular data networking. Which of the 
following is not a valid reason to disable cellular data networking? 


A. You have a limited amount of data in your monthly plan. 

B. You have access to a reliable Wi-Fi signal. 

C. You are about to download an update to your phone. 

D. Your phone calls are going out over your carrier’s cellular network. 

You need to pair two Bluetooth devices with each other. Which of the following is true 
regarding Bluetooth pairing? 

A. Bluetooth connections support wireless device control but not file transfers. 

B. Bluetooth is not yet a fully standardized protocol. 

C. Bluetooth connections do not reach as far as Wi-Fi connections. 

D. You must reboot the paired devices to complete the connection. 


A technician is configuring a mobile client to use email through an ISP. Which port number 
should he configure to use SMTP? 


A. 25 

B. 110 
C. 143 
D. 995 


You need to configure email for a mobile client. His device has a setting referring to port 
587. Which mail protocol is likely using this protocol? 


A. SMTP with SSL 

B. SMTP with TLS 

C. IMAP4 with SSL/TLS 

D. POP3 with SSL/TLS 

You are enabling email on a mobile client. Which of the following is not a standard 
integrated commercial provider for email? 

A. iCloud 

B. Hotmail 

C. Yahoo Mail 

D. Exchange Online 


10. 
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Which two communications technologies can you use to create a VPN connection? 
(Choose two.) 


A. Bluetooth 


B. Wi-Fi 
C. Cellular 
D. NFC 


A mobile device is having intermittent communications issues. Which software component 
of a mobile phone is most likely responsible for these issues? 


A. Either iOS or Android OS 
B. SIM OS 

C. Baseband OS 

D. Wireless OS 


In a mobile device, which of the following are examples of RTOSs? (Choose two.) 
A. SIM OS 

B. Baseband OS 

C. iOS 

D. Android 


You need to configure a mobile client to send encrypted emails. Which standard is used to 
encrypt and decrypt email messages on mobile devices? 


A. SSL 

B. TLS 

C. IMAPS 
D. S/MIME 


You are pairing a Bluetooth headset to a mobile device. On the mobile device, after finding 
the device for pairing, what is the next step to take? 


A. Enable Bluetooth. 

B. Test connectivity. 

C. Enter the appropriate PIN code. 
D. Enable pairing. 


704 Chapter 12 = Mobile Device Connectivity and Synchronization 


11. Which of the following are universally common items that are synced between a mobile 
device and a larger computer? (Choose all that apply.) 


A. Office documents 
B. Contacts 
C. Operating system files 
D. Email 
E. Configuration settings 
F. Apps 
12. Which of the following is not a requirement for installing iTunes on a Windows machine? 
A. A 1GHz processor or better 
B. 1 GB of RAM or higher 
C. 400 MB of available disk space 
D. Broadband Internet connection 
13. Which of the following statements about configuring email access on a mobile device is 
true? 
A. Most Internet mail services offer an Exchange option. 
B. The TCP ports used for configuring access are usually standard port numbers. 
C. Most ports used for access are UDP ports. 


D. You must download third-party apps for connecting to email services. 


14. Which of the following are disabled when airplane mode is switched on? (Choose all that 
apply.) 

A. Cellular 

B. Wi-Fi 

C. Bluetooth 

D. Settings app 

E. Lock screen 


15. You need to enable clients to synchronize their mobile devices to their laptops. Which of the 
following are common connection types to enable laptop synchronization? (Choose all that 


apply.) 

A. Cellular 
B. Bluetooth 
C. Wi-Fi 

D. USB 

E. Tethering 


16. 


17. 


18. 


19. 


20. 
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You connect two Bluetooth devices together that have been previously connected. What is 
the process called that each device uses to verify the other’s identity? 


A. S/MIME 

B. Synchronization 
C. SSO 

D. Pairing 


Which of the following most accurately describes what an IMEI is? 
A. The phone’s serial number 

B. The description of the user and mobile network 

C. The carrier code 

D. The code used for NFC pay applications 


You are looking for configuration information for a smartphone. Which code identifies the 
specific mobile user and their network? 


A. IMEI 
B. IMSI 
C. ICCID 
D. SEID 


A user needs to synchronize her mobile device to another platform. She wants to be able 
to access the synchronized data from any location with just her phone. What should she 
synchronize to? 


A. Automobile 


B. Email 
C. Desktop 
D. Cloud 


A mobile user is having cellular connectivity problems when roaming but not when near his 
home. He is told by his carrier that he needs to update his settings. Which of the following 
settings does he most likely need to update? 


A. PRI 

B. PRL 

C. Baseband 
D. IMEI 
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Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answers compare to the authors’, refer 
to Appendix B. 

Explain how to establish Wi-Fi connectivity on an Apple iPhone. 
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THE FOLLOWING COMPTIA A+ 220-1001 
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vy 5.1 Given a scenario, use the best practice methodology 
to resolve problems. 


=» Always consider corporate policies, procedures, and impacts 
before implementing changes 


= 1. Identify the problem 


= Question the user and identify user changes to computer 
and perform backups before making changes 


= Inquire regarding environmental or infrastructure changes 
= Review system and application logs 
a 2. Establish a theory of probable cause (question the obvious) 


= If necessary, conduct external or internal research based 
on symptoms 


= 3. Test the theory to determine cause 


= Once the theory is confirmed, determine the next steps to 
resolve problem 


= If theory is not confirmed re-establish new theory or 
escalate 


a 4. Establish a plan of action to resolve the problem and 
implement the solution 


a 5. Verify full system functionality and, if applicable, 
implement preventive measures 


a 6. Document findings, actions, and outcomes 





Y 5.2 Given a scenario, troubleshoot common problems 
related to motherboards, RAM, CPUs, and power. 


= Common symptoms 
a Unexpected shutdowns 
s System lockups 
= POST code beeps 
a Blank screen on bootup 
a BIOS time and setting resets 
= Attempts to boot to incorrect device 
= Continuous reboots 
= No power 
= Overheating 
= Loud noise 
= Intermittent device failure 
= Fans spin - no power to other devices 
a Indicator lights 
=» Smoke 
= Burning smell 
= Proprietary crash screens (BSOD/pin wheel) 
a Distended capacitors 


= Log entries and error messages 





Mentioning the words troubleshooting theory to many techni- 
cians can cause their eyes to roll back in their heads. It doesn’t 
sound glamorous or sexy, and a lot of techs believe that the 
only way to solve a problem is just to dive right in and start working on it. Theories are for 
academics. In a way, they’re right—you do need to dive in to solve problems because they 
don’t just solve themselves. But to be successful at troubleshooting, you must take a system- 
atic approach. 

You may hear people say, “Troubleshooting is as much of an art as it is a science,” and 
our personal favorite, “You just need to get more experience to be good at it.” While there 
is an art to fixing problems, you can’t ignore science. And if you need experience to be any 
good, why are some less experienced folks incredibly good at solving problems while their 
more seasoned counterparts seem to take forever to fix anything? More experience is good, 
but it’s not a prerequisite to being a good troubleshooter. Again, it’s all about applying a 
systematic approach. 

There’s one more detail to understand before getting into the details of specific prob- 
lems: In order to troubleshoot anything, you need to have a base level of knowledge. For 
example, if you’ve never opened the hood of a car, it will be a bit challenging for you to fig- 
ure out why your car won’t start in the morning. If you’re not a medical professional, you 
might not know why that body part hurts or how to make it feel better. In the same vein, 
if you don’t know how data is stored and accessed on a computer, it’s unlikely that you’ll 
be able to fix related computer problems. So before you get too heavy into troubleshoot- 
ing, make sure you understand how the systems on which you are working are supposed to 
function in the first place. 

Because this chapter comes after the hardware and networking chapters, we’re going to 
assume that you’ve read them already. Therefore, we’re not going to get into a lot of detail 
about how things work—it’s assumed that you know those details by now. (If you’re still 
not certain, this book is a great reference manual!) Instead, we’ll talk more about what hap- 
pens when things don’t work the way they’re supposed to: what signs to look for and what 
to do to fix the problem. 

After discussing the theory, this chapter covers troubleshooting core hardware compo- 
nents, including motherboards, RAM, CPUs, and power. The remainder of the Hardware 
and Network Troubleshooting objective is covered in Chapter 14, “Hardware and Network 
Troubleshooting.” 
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Using the Troubleshooting Best 
Practice Methodology 


corporate policies, procedures, and impacts before implementing any 
changes. Don’t perform any actions that would get you or the users into 
trouble, or would otherwise cause harm to the company. 


w No matter how skilled you may be at troubleshooting, always consider 
P 


When troubleshooting, you should assess every problem systematically and try to iso- 
late the root cause. Yes, there is a lot of art to troubleshooting, and experience plays a part 
too. But regardless of how “artful” or experienced you are, haphazard troubleshooting 
is doomed to fail. Conversely, even technicians with limited experience can be effective 
troubleshooters if they stick to the principles. The major key is to start with the issue and 
whittle away at it until you can get down to the point where you can pinpoint the problem. 
This often means eliminating, or verifying, the obvious. 

Although everyone approaches troubleshooting from a different perspective, a few things 
should remain constant: 


Creating a Backup First, always back up the data before making any changes to a system. 
Hardware components can be replaced, but data often can’t be. For that reason, always be 
vigilant about making data backups. 


Prioritizing Tasks Second, establish priorities—one user being unable to print to the 
printer of their choice isn’t as important as a floor full of accountants unable to run payroll. 
Prioritize every job and escalate it (or de-escalate it) as you need to. 


Documenting Your Process Third, but perhaps most important, document everything— 
not just that there was a problem but also the solution that you found, the actions that you 
tried, and the outcome of each. 


In the next few sections, we’ll take you through each step of the troubleshooting process. 


Identify the Problem 


There’s a famous quote attributed to Albert Einstein that states, “If I had an hour to solve 
a problem, I’d spend 55 minutes on the problem and 5 minutes on the solution.” Whether 
or not he said that may be debatable, but the premise behind the quote is spot on. Because 
while this may seem obvious, it can’t be overlooked: If you can’t define the problem, you 
can’t begin to solve it. This is true not only with computers but with every facet of life! 
Sometimes, problems are relatively straightforward, but other times they’re just a symp- 
tom of a bigger issue. For example, if a user isn’t able to connect to the Internet from their 
computer, it could indeed be an issue with their system. But if other users are having similar 
problems, then the first user’s difficulties might just be one example of the real problem. 
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DPO Ask yourself, “Is there a problem?” Perhaps “the problem” is as simple as 
‘GQ a customer expecting too much from the computer. 


Problems in computer systems generally occur in one (or more) of four areas, each of 
which is in turn made up of many pieces: 


a A collection of hardware pieces integrated into a working system. As you know, hard- 
ware can be quite complex, what with motherboards, hard drives, video cards, and 
other components. The good news is that most hardware devices are dedicated to per- 
forming a single task; so at times troubleshooting it can be easy. Other hardware issues 
are more complex. For example, to get on a wired network, the computer needs a NIC 
and a cable, and there’s the hardware at the other end too. 


=a An operating system, which in turn is dependent on the hardware. Operating systems 
contain several major, often interdependent modules. OS issues can masquerade as 
hardware issues and vice versa. 


= An application or software program that is supposed to do something. Programs such 
as Microsoft Word and Microsoft Excel are bundled with a great many features. Soft- 
ware issues can be quite perplexing. They may be as simple as a problem with a specific 
app but can also be related to the OS or even the hardware. 


= A computer user, ready to take the computer system to its limits (and beyond). A techni- 
cian can often forget that the user is a very complex and important part of the puzzle. 


Talking to the Customer or User 


Many times, you can define the problem by asking questions of the user. One of the keys 
to working with your users or customers is to ensure, much like a medical professional, 
that you have a good bedside manner. Most people are not as technically savvy as you, and 
when something goes wrong, they become confused or even fearful that they’ll take the 
blame. Assure them that you’re just trying to fix the problem but that they can probably 
help because they know what went on before you got there. It’s important to instill trust 
with your customer—believe what they are saying, but also believe that they might not tell 
you everything right away. It’s not that they’re necessarily holding back information; they 
just might not know what’s important to tell. 








A Real World Scenario 


Is the Power On? 


It’s a classic IT story that almost sounds like a joke, but it happened. A customer calls 
technical support because their computer won't turn on. After 20 minutes of trouble- 
shooting, the technician is becoming frustrated...maybe it’s a bad power supply? The 
technician asks the user to read some numbers off of the back of their computer, and the 
user says, “Hold on, | need to get a flashlight. It’s dark in here with the power out.” 
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Help clarify things by having the customer show you what the problem is. The best 
method we’ve seen of doing this is to say, “Show me what ‘not working’ looks like.” That 
way, you see the conditions and methods under which the problem occurs. The problem 
may be a simple matter of an improper method. The user may be performing an operation 
incorrectly or performing the operation in the wrong order. During this step, you have the 
opportunity to observe how the problem occurs, so pay attention. 

Here are a few questions to ask the user to aid in determining the problem: 


Can you show me the problem? This question is one of the best. It allows the user to show 
you exactly where and when they experience the problem. 


How often does this happen? This question establishes whether this problem is a one- 
time occurrence that can be solved with a reboot or whether a specific sequence of events 
causes the problem to happen. The latter usually indicates a more serious problem that may 
require software installation or hardware replacement. 


Has any new hardware or software been installed recently? Infrastructure changes can 
cause problems. For example, new hardware or software can mean compatibility problems 
with existing devices or applications. A newly installed device may want to use the same 
resource settings as an existing device. This can cause both devices to become disabled. 
When you install a new application, that application is likely to install several support files. 
If those support files are also used by an existing application, then there could be a conflict. 


Has the computer recently been moved? Environmental changes can also have an impact. 
Moving a computer can cause things to become loose and then fail to work. Perhaps all the 
peripherals of the computer didn’t complete—or weren’t included in—the move, meaning 
that there’s less functionality than the user expects. 


Has someone who normally doesn’t use the computer recently used it? That person could 
have mistakenly (or intentionally) done something to make the computer begin exhibiting 
the irregular behavior. 


Have any other changes been made to the computer recently? If the answer is yes, ask if 
the user can remember approximately when the change was made. Then ask them to tell 
you approximately when the problem started. If the two happened closely together, there’s 
a good chance that the problem is related to the change. If it’s a new hardware component, 
check to see that it was installed correctly. 


Be careful of how you ask questions so that you don’t appear accusatory. You can’t 
assume that the user did something to mess up the computer. Then again, you also can’t 
assume that they don’t know anything about why it’s not working. 








E Real World Scenario 


The Social Side of Troubleshooting 


When you're looking for clues as to the nature of a problem, no one can give you more 
information than the person who was there when it happened. They can tell you what led 
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up to the problem, what software was running, and the exact nature of the problem (“It 
happened when | tried to print”), and they can help you re-create the problem, if possible. 


Use questioning techniques that are neutral in nature. Instead of saying, “What were you 
doing when it broke?” be more compassionate and say, “What was going on when the 
computer decided not to work?” Frame the question in a way that makes it sound like the 
computer did something wrong, not the person. It might sound silly, but these things can 
make your job a lot easier. 





While it’s sometimes frustrating dealing with end users and computer problems, such as 
the user who calls you up and gives you the “My computer’s not working” line (okay, and 
what exactly is that supposed to mean?), even more frustrating is when no one was around 
to see what happened. In cases like this, do your best to find out where the problem is by 
establishing what works and what does not. 


Gathering Information 


Let’s say that you get to a computer and the power light is on and you can hear the hard 
drive spinning but there is no video and the system seems to be unresponsive. At least you 
know that the system has power, and you can start investigating where things start to break 
down. (We sense a reboot in your future!) 

The whole key to this step is to identify, as specifically as possible, what the problem is. 
The more specific you can be in identifying what’s not working, the easier it will be for you 
to understand why it’s not working and how to fix it. If you have users available who were 
there when the computer stopped working, you can try to gather information from them. If 
not, you’re on your own to gather clues. It’s like CSI but not as gory. 

So now instead of having users to question, you need to use your own investigative ser- 
vices to determine what’s wrong. The questions you would have otherwise asked the user 
are still a good starting point. Does anything appear amiss or seem to have been changed 
recently? What is working and what is not? Was there a storm recently? Can I reboot? If I 
reboot, does the problem seem to go away? Is there any information in system or applica- 
tion logs that provide clues? 


lated, identify what they are one at a time and fix them one at a time. For 
example, if the sound is not working and you can’t get on the Internet, deal 
with those separately. If they seem related, such as not being able to get 
on the Internet or access a network file server, then one solution might 
solve both problems. 


w If a computer seems to have multiple problems that appear to be unre- 
P 


The key is to find out everything that you can that might be related to the problem. 
Document exactly what works and what doesn’t and, if you can, why. If the power is out 
in the house, as in the story related earlier, then there’s no sense in trying the power cord in 
another outlet. 
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Determining If the Problem Is Hardware-or Software-Related 


This is important because it determines the part of the computer on which you should focus 
your troubleshooting skills. Each part requires different skills and different tools. 

To determine whether a problem is hardware-or software-related, you can do a few 
things to narrow down the issue. For instance, does the problem manifest itself when the 
user uses a particular piece of hardware (a DVD-ROM or a USB hard drive, for example)? 
If it does, the problem is more than likely hardware-related. 

Determining if the issue is hardware-or software-related relies on personal experience 
more than any of the other troubleshooting steps. Without a doubt, you’ll run into strange 
software problems. Each one has a particular solution. Some may even require reinstalla- 
tion of an application or the operating system. If that doesn’t work, you may need to resort 
to restoring the entire system (operating system, applications, and data) from a data backup 
done when the computer was working properly. 


Determining Which Component Is Failing (for Hardware Problems) 


Hardware problems are usually pretty easy to figure out. Let’s say that the sound card 
doesn’t work. You’ve tried new speakers that you know do work, and you’ve reinstalled the 
driver. All the settings look right, but it just won’t respond. The sound card is probably the 
piece of hardware that needs to be replaced. 

With many newer computers, several components such as sound, video, and networking 
cards are integrated into the motherboard. If you troubleshoot the computer and find a hardware 
component to be bad, there’s a good chance that the bad component is integrated into the moth- 
erboard and the whole motherboard must be replaced—an expensive proposition, to be sure. 


Laptops and a lot of desktops have components (network card, sound card, 
w video adapter) integrated into the motherboard. If an integrated component 

fails, you may be able to use an expansion device (such as a USB or PC Card 

network adapter) to give the system full functionality without a costly repair. 








Indentifying the Issue at Hand 


To summarize, step 1 of the best practice methodology is to identify the problem. This 
includes the following steps: 


= Question the user and identify user changes to the computer and perform backups 
before making changes. 


= Inquire regarding environmental or infrastructure changes. 
a Review system and application logs. 


We feel that making backups isn't an appropriate step at this point—identifying the prob- 
lem is all about asking questions and gathering information—but understand that this is 

where CompTIA places it in the exam objectives. In real life, yes, you want to make back- 
ups, but you do so before implementing changes that could impact data. 
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Establish a Theory 


In your middle school or junior high school years, you probably learned about the scientific 
method. In a nutshell, scientists develop a hypothesis, test it, and then figure out if their 
hypothesis is still valid. Troubleshooting involves much the same process. 

Once you have determined what the problem is, you need to develop a theory as to why 
it is happening. First question the obvious. Forgetting to check the obvious things can result 
in a long and unnecessary troubleshooting process. No video? It could be something to 
do with the monitor or the video card. Can’t get to your favorite website? Is it that site? Is 
it your network card, the cable, your IP address, DNS server settings, or something else? 
Once you have defined the problem, establishing a theory about the cause of the problem— 
what is wrong—helps you develop possible solutions to the problem. 


Eliminating Possibilities 


Theories can state either what can be true or what can’t be true. However you choose to 
approach your theory generation, it’s usually helpful to take a mental inventory to see what 
is possible and what is not. Start eliminating possibilities, and eventually the only thing 
that’s left is what’s wrong. This type of approach works well when it’s an ambiguous prob- 
lem; start broad and narrow your scope. For example, if data on the hard drive is inacces- 
sible, there is likely one of three culprits: the drive itself, the cable it’s on (if applicable), or 
the connector on the motherboard. Try plugging the drive into another connector or using 
a different cable. Narrow down the options. 


P bare bones. In a hardware situation, this could mean removing all interface 
cards except those that are absolutely required for the system to operate. 
In a software situation, this usually means booting up in Windows Safe 
Mode so that most of the drivers do not load. 


i A common troubleshooting technique is to strip the system down to the 


Once you have isolated the problem, slowly rebuild the system to see if the problem 
comes back (or goes away). This helps you identify what is really causing the problem 
and determine if there are other factors affecting the situation. For example, we have 
seen memory problems that are fixed by moving the memory modules from one slot to 
another. 


Using External Resources 


Sometimes, you can figure out what’s not working, but you have no idea why or what 
you can do to fix it. That’s okay. In situations like these, it may be best to fall back 

on an old trick called reading the manual. As they say, “When all else fails, read the 
instructions.” The service manuals are your instructions for troubleshooting and service 
information. Virtually every computer and peripheral made today has service documen- 
tation on the company’s website, an optical disc, or even in a paper manual. Don’t be 
afraid to use them! 
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M Before starting to eliminate possibilities, check the vendor's website for 

P any information that might help you. For example, typing in a specific error 
message on a vendor's website might take you directly to specific steps to 
fix the problem. 


If yov’re fortunate enough to have experienced, knowledgeable, and friendly co-workers, 
be open to asking for help if you get stuck on a problem. Trading knowledge between co- 
workers not only builds the skill level of the team, but it can also build camaraderie. 


P Step 2 of the best practice methodology is to establish a theory of prob- 
‘GQ able cause (question the obvious). This includes conducting external or 
internal research based upon symptoms, if necessary. 


Test the Theory 


You’ve eliminated possibilities and developed a theory as to what the problem is. Your 
theory may be pretty specific, such as “the power cable is fried,” or it may be a bit more 
general, like “the hard drive isn’t working” or “there’s a connectivity problem.” No matter 
your theory, now is the time to start testing it. Again, if you’re not sure where to begin to 
find a solution, the manufacturer’s website is a good place to start! 


Check the Simple Stuff First 


This step is the one that even experienced technicians overlook. Often, computer problems 
are the result of something simple. Technicians overlook these problems because they’re so 
simple that the technicians assume they couldn’t be the problem. Here are some examples 
of simple questions to ask: 


Will restarting the computer help? It’s amazing how often a simple computer restart can 
solve a problem. Restarting the computer clears the memory and starts the computer with 
a clean slate. Whenever we perform phone support, we always ask the customer to restart 
the computer and try again. If restarting doesn’t work, try powering down the system 
completely and then powering it up again (rebooting). More often than not, that will solve 
the problem. 


Are the cables plugged in? And plugged in at both ends? Cables must be plugged in at 
both ends to function correctly. Cables can easily be tripped over and inadvertently pulled 
from their sockets. 


Are the computer and peripherals turned on? This one seems the most obvious, but we’ve 
all fallen victim to it at one point or another. Computers and their peripherals must be 
turned on to function. Most have power switches with LEDs that glow when the power is 
turned on. 


Is the system ready? Computers must be ready before they can be used. Ready means that 
the system is ready to accept commands from the user. An indication that a computer is 
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ready is when the operating system screens come up and the computer presents you with a 
menu or a command prompt. If that computer uses a graphical interface, the computer is 
ready when the mouse pointer appears. Printers are ready when the Online or Ready light 
on the front panel is lit. 


Do the chips and cables need to be reseated? You can solve some of the strangest prob- 
lems (random hang-ups or errors) by opening the case and pressing down on each socketed 
chip (known as reseating). This remedies the chip-creep problem, which happens when 
computers heat up and cool down repeatedly as a result of being turned on and off, causing 
some components to begin to move out of their sockets. In addition, you should reseat any 
cables to make sure that they’re making good contact. 


iLL Always be sure that you’re grounded before operating inside the case. If 
Chine you're not, you could create an electrostatic discharge (ESD) that could 
damage components. 

Is the problem user error? User error is common but preventable. If a user can’t perform 
a common computer task, such as printing or saving a file, the problem is likely due to 
user error. As soon as you hear of a problem like this, you should begin asking questions 
to determine if the solution is as simple as teaching the user the correct procedure. A good 
question to ask is, “Were you ever able to perform that task?” If the answer is no, it means 
that they are probably doing the procedure wrong. If they answer yes, then you must ask 
additional questions to get at the root of the problem. 


If you suspect user error, tread carefully in regard to your line of questioning, to avoid 
making the user feel defensive. User errors provide an opportunity to teach the users the 
right way to do things. Again, what you say matters. Offer a “different” or “another” way 
of doing things instead of the “right” way. 








@ Real World Scenario 


“Is It Plugged In?” and Other Insulting Questions 


Think about how you would feel if someone were to ask you this question. Your likely 
response would be, “Of course, it is!” After all, you're not an idiot, right? You'll often get 
the same reaction to similar questions about the device being turned on. The problem is, 
making sure that it’s plugged in and turned on are the first things that you should always 
do when investigating a problem. 


When asking these types of questions, it’s not what you say but how you say it. For 
example, instead of asking if it’s plugged in, you could say something like, “Can you do 
me a favor and check to see that the cable is plugged in tightly? Maybe it got bumped.” 
That generally gets the user at least to look at it without making them feel dumb. For 
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power, something like, “What color are the lights on the front of the router? Are any of 
them blinking?” can work well. 


Remember to ask neutral and nonthreatening questions. Make it sound like the computer 
is at fault, not the user. These types of things will help you build rapport and you'll be 
able to get more information so that you can solve problems faster. 





Next Steps 


After you test the theory to determine cause, one of two things will happen. Either the 
theory will be confirmed or it won’t be. Said differently, you were right or wrong. There’s 
nothing wrong with having an initial theory turn out to be incorrect—it just means going 
back to the drawing board and looking for another explanation. More explicitly, here’s 
what to do next: 


a Ifthe theory is confirmed, determine the next steps to resolve the problem. (This is 
covered in the “Establish a Plan of Action” section next.) 


= Ifthe theory is not confirmed, re-establish a new theory or escalate the problem. 


As we just said, there’s nothing wrong with not being right with your first guess on the 
cause of the problem. We can’t count the number of times we’ve said, “Huh, maybe that 
wasn’t the problem—weird,” or some variation thereof. It happens—some problems are 
very complicated. Focus on isolating the issue to narrow down the possible culprits, and 
double-check manuals or online resources if needed. 

If you’ve tried everything you can think of, or perhaps are in a tense situation that’s 
time-sensitive and you feel in over your head, don’t be afraid to escalate the problem. 
Asking for help can be hard, because sometimes it feels like you’ve failed in some way. 
Don’t feel bad about it—sometimes getting a second opinion makes all the difference. 








Testing Your Theory 


Step 3 of the best practice methodology is test the theory to determine the cause of the 
problem. This includes: 


= Once the theory is confirmed, determine the next steps to resolve the problem. 


n If the theory is not confirmed, re-establish a new theory or escalate the problem. 





Establish a Plan of Action 


If your theory was right and the fix worked, then you’re brilliant! If not, you need to re- 
evaluate and look for the next option. After testing the theory, you need to establish a 
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plan of action to resolve the problem and implement the solution. This may take one of the 
following three paths: 


= Verify full system functionality. 
=a If the first fix didn’t work, try something else. 


= If needed, implement the fix on other computers. 








Reboot First, Ask Questions Later 


If you're running into a software problem on a computer, the first step (after understand- 
ing what the problem is and writing down any relevant error messages or capturing them 
in a screen grab) should always be to reboot. Many times, the problem will go away, and 

your work there is done. 





If the solution worked, and there are no other affected computers, verify full system 
functionality. We’ll discuss that after we talk about what to do if the first fix didn’t work, 
or you need to apply the fix to multiple systems. 


Try, Try Again 


So you tried the hard drive with a new (verified) cable and it still doesn’t work. Now what? 
Your sound card won’t play and you’ve just removed and reinstalled the driver. Next steps? 
Move on and try the next logical thing in line. 


P puter at a time. If the change doesn't fix the problem, revert the system 
back to the way it was and then make your next change. Making more than 
one change at a time is not recommended for two reasons: One, you are 
never sure which change actually worked, and two, by making multiple 
changes at once, you might actually cause additional problems. 


i When trying solutions to fix a problem, make only one change to the com- 


When evaluating your results and looking for that golden “next step,” don’t forget about 
other resources that you might have available. Use the Internet to look at the manufac- 
turer’s website. Read the manual. Talk to your friend who knows everything about obscure 
hardware (or arcane versions of Windows). When fixing problems, two heads can be better 
than one. 


Spread the Solution 


If the problem was isolated to one computer, this step doesn’t apply. But some problems 
that you deal with may affect an entire group of computers. For example, perhaps some 
configuration information was entered incorrectly into the DHCP server, giving everyone 
the wrong DNS server address. The DHCP server is now fixed, but all the clients need 

to renew their IP addresses. Or, maybe a software update that was pushed to all client 
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computers messed up a configuration, and you happened to be first on the scene. Now it’s 
time to resolve it for all computers that are affected. 


resolve the problem and implement the solution. 


PP Step 4 of the best practice methodology is to establish a plan of action to 
A: 


Verify Functionality 


After fixing the system, or all the systems affected by the problem, go back and verify full 
functionality. For example, if the users couldn’t get to any network resources, check to 
make sure they can get to the Internet as well as to internal resources. 

Some solutions may actually cause another problem on the system. For example, if you 
update software or drivers, you may inadvertently cause another application to have prob- 
lems. There’s obviously no way that you can or should test all applications on a computer 
after applying a fix, but know that these types of problems can occur. Just make sure that 
what you’ve fixed works and that there aren’t any obvious signs of something else not 
working all of a sudden. 

Another important thing to do at this time is to implement preventive measures, if possi- 
ble. If it was a user error, ensure that the user understands ways to accomplish the task that 
won’t cause the error to recur. If a cable melted because it was too close to a space heater 
under someone’s desk, resolve the issue. If the computer overheated because an inch of dust 
was clogging the fan...you get the idea. 


-_ Step 5 of the best practice methodology is to verify full system functionality 
‘Qi and, if applicable, implement preventive measures. 


Document Findings 


A lot of people can fix problems. But can you remember what you did when you fixed a 
problem a month ago? Maybe. Can one of your co-workers remember something you did to 
fix the same problem on that machine a month ago? Unlikely. Always document your work 
so that you or someone else can learn from the experience. Good documentation of past 
troubleshooting can save hours of stress in the future. 

Documentation can take a few different forms, but the two most common are personal 
and system-based. 

We always recommend that technicians carry a personal notebook and take notes dur- 
ing the troubleshooting process. Some problems are long and complex, and it may be 
hard to remember which setting you changed 15 steps ago. The type of notebook doesn’t 
matter—use whatever works best for you. The notebook can be a lifesaver, especially when 
yov’re new to a job. Write down the problem, what you tried, and the solution. The next 
time you run across the same or a similar problem, you'll have a better idea of what to try. 


Troubleshooting Core Hardware Issues 721 


Eventually, you’ll find yourself less and less reliant on your notebook, but it’s incredibly 
handy to have. 

System-based documentation is useful to both you and your co-workers. Many facilities 
have server logs of one type or another, conveniently located close to the machine. If some- 
one makes a fix or a change, it gets noted in the log. If there’s a problem, it’s noted in the 
log. It’s critical to have a log for a couple of reasons: 


= If you weren’t there the first time the problem was fixed, you might not have an idea of 
what to try, and it could take you a long time using trial and error. 


=a If you begin to see a repeated pattern of problems, you can make a permanent interven- 
tion before the system completely dies. 


We’ve seen several different forms of system-based documentation. Again, the type of 
log doesn’t matter as long as you use it. Often, it’s a notebook or a binder next to the sys- 
tem or on a nearby shelf. If you have a rack, you can mount something on the side to hold a 
binder or notebook. For desktop computers, one way is to tape an index card to the top or 
side of the power supply (don’t cover any vents), so if a tech has to go inside the case, they 
can see if anyone else has been in there fixing something too. Company-wide electronic 
knowledge bases or incident repositories are also commonly used. It is just as important to 
contribute to these systems as to use them to help diagnose problems. 


PDP The sixth and final step of the best practice methodology— don't ever skip 
‘Qo it—is to document findings, actions, and outcomes. 


Troubleshooting Core Hardware Issues 


To many who are not familiar with computers, that whirring, humming box sitting on or 
under their desk is an enigma. They know what shows up on the screen, where the power 
button is, where to put DVDs, and what not to spill on their keyboard, but the insides are 
shrouded in mystery. 

Fortunately for them, we’re around. We can tell the difference between a hard drive and 
a motherboard and have a pretty good idea of what each part inside that box is supposed 
to do. When the computer doesn’t work like it’s supposed to, we can whip out our trusty 
screwdriver, crack the case, and perform surgery. And most of the time, we can get the sys- 
tem running just as good as new. 

In the following sections, we’re going to focus our troubleshooting efforts on the three 
key hardware components inside the case: motherboards, RAM, and CPUs, as well as 
power issues. Problems with these separate components can often present similar symp- 
toms, so it’s good to discuss them all at the same time. We will look at common symptoms 
for other hardware devices in Chapter 14. 


PS The following sections focus primarily on desktop computers. Laptop- 
A: specific issues are covered in Chapter 14. 
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Troubleshooting Motherboards, CPUs, RAM, 
and Power Problems 


These four components are absolutely critical to a computer system. Without a network 
card, you won’t be able to surf the web. Without a processor, well, you won’t be able to surf 
the web—or do much of anything else for that matter. So it makes sense to get started with 
motherboards, CPUs, RAM, and power. 

As you continue to learn and increase your troubleshooting experience, your value will 
increase as well. This is because, if nothing else, it will take you less time to accomplish 
common repairs. Your ability to troubleshoot from past experiences and gut feelings will 
make you more efficient and more valuable, which in turn will allow you to advance and 
earn a better income. We will give you some guidelines that you can use to evaluate com- 
mon hardware issues that you’re sure to face. 


Identifying Hardware Symptoms and Causes 


Before we get into specific components, let’s take a few minutes to talk about hardware 
symptoms and their causes at a general level. This discussion can apply to a lot of different 
hardware components. 

Some hardware issues are pretty easy to identify. If flames are shooting out of the back 
of your computer, then it’s probably the power supply. If the power light on your monitor 
doesn’t turn on, it’s the monitor itself, the power cord, or your power source. Other hardware 
symptoms are a bit more ambiguous. We’ll now look at some hardware-related symptoms 
and their possible causes. 


Excessive Heat 


Electronic components produce heat; it’s a fact of life. While they’re designed to withstand 
a certain amount of the heat that’s produced, excessive heat can cause overheating and 
drastically shorten the life of components. There are two common ways to reduce heat- 
related problems in computers: heat sinks and cooling systems, such as case fans. 

Any component with its own processor will have a heat sink. Typically these look like 
big, finned hunks of aluminum or another metal attached to the processor. Their job is to 
dissipate heat from the component so that it doesn’t become too hot. Never run a processor 
without a heat sink! 


ING causes the CPU to produce more heat. In many cases, this voids the manu- 
facturer’s warranty and can shorten the life of the CPU. While it may be 
exciting to run the system at a faster speed, overclock with caution! 


ea Overclocking—running the processor faster than it was designed to run— 


Case fans are designed to take hot air from inside the case and blow it out of the case. 
There are many different designs, from simple motors to high-tech liquid-cooled models. 
Put your hand up to the back of your computer at the power supply fan and you should feel 
warm air. If there’s nothing coming out, you either need to clean your fan out or replace 
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your power supply. Some cases come with additional cooling fans to help dissipate heat. If 
your case has one, you should feel warm air coming from it as well. 


cold. In general, anything comfortable to us is comfortable to computers, 
although they do tend to like it colder than many of us do. They need a lot 
of clean, moving air in order to keep functioning. 


w Computers are like human beings: They have similar tolerances to heat and 
P 


Dust, dirt, grime, paint, smoke, and other airborne particles can become caked on the 
inside of computers and cause overheating as well. This is most common in automotive and 
manufacturing environments. The contaminants create a film that coats the components, 
causing them to overheat and/or conduct electricity on their surface. Blowing out these 
exposed systems with a can of compressed air from time to time can prevent damage to the 
components. While you’re cleaning the components, be sure to clean any cooling fans in the 
power supply or on the heat sink. 


When you do this, the fan will blow the contaminants out the cooling 
vents. If you spray from the vents toward the inside of the box, you'll be 
blowing the dust and grime inside the case or back into the fan motor. 


i To clean the power supply fan, blow the air from the inside of the case. 
P 


One way to ensure that dust and grime don’t find their way into your computer is to 
always leave the blanks (or slot covers) in the empty slots on the back of your box. Blanks 
are the pieces of metal or plastic that come with the case and cover the expansion slot open- 
ings. They are designed to keep dirt, dust, and other foreign matter from the inside of the 
computer. They also maintain proper airflow within the case to ensure that the computer 
doesn’t overheat. 








E Real World Scenario 
Creeping Chips 


The inside of a computer is a harsh environment. The temperature inside the case of 
many computers is well over 100° F! When you turn on your computer, it heats up. Turn it 
off, and it cools down. After several hundred such cycles, some components can’t handle 
the stress, and they begin to move out of their sockets. This phenomenon is known as 
chip creep, and it can be really frustrating. 


Chip creep can affect any socketed device, including integrated circuits (ICs), RAM chips, 
and expansion cards. The solution to chip creep is simple: Open the case, and reseat the 
devices. It’s surprising how often this is the solution to phantom problems of all sorts, 
particularly intermittent device failures, random reboots, and unexpected shutdowns. 
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Loud Noise 


Have you ever been working on a computer and heard a noise that resembles fingernails on 
a chalkboard? If so, you will always remember that sound, along with the impending feel- 
ing of doom as the computer stops working. 

Some noises on a computer are normal. The POST beep (which we’ll talk about in a few 
pages) is a good sound. The whirring of a mechanical hard drive and power supply fan are 
familiar sounds. Some techs get so used to their “normal” system noises that if anything is 
slightly off pitch, they go digging for problems even if none are readily apparent. 

For the most part, the components that can produce noise problems are those that move. 
Mechanical hard drives have motors that spin the platters. Power supply fans spin. Optical 
drives spin the discs. If you’re hearing a loud noise that you didn’t expect, these are the 
likely culprits. 

If you hear a whining sound and it seems to be fairly constant, it’s more than likely a fan. 
Either it needs to be cleaned (desperately) or replaced. Power supplies that are failing can 
also sound louder and quieter intermittently because a fan will run at alternating speeds. 

The “fingernails on a chalkboard” squealing could be an indicator that the heads in a 
mechanical hard drive have crashed into the platter. Thankfully, this doesn’t seem to be as 
common today as it used to be, but it still happens. (Future generations of technicians will 
never know this sound, with the prevalence of SSDs today!) Note that this type of sound 
can also be caused by a power supply fan’s motor binding up. A rhythmic ticking sound is 
also likely to be caused by a mechanical hard drive. 

Problems with optical drives tend to be the easiest to diagnose. Those drives aren’t 
constantly spinning unless you put some media in them. If you put a disc in and the drive 
makes a terrible noise, you have a good idea what’s causing the problem. 

So what do you do if you hear a terrible noise from the computer? If it’s still responsive, 
shut it down normally as soon as possible. If it’s not responsive, then shut off the power as 
quickly as you can. Examine the power supply to see if there are any obvious problems such 
as excessive dust, and clean it as needed. Power the system back on. If the noise was caused 
by the hard drive, odds are that the drive has failed and the system won’t boot normally. 
You may need to replace some parts. 

If the noise is mildly annoying but doesn’t sound drastic, boot up the computer with 
the case off and listen. By getting up close and personal with the system, you can often tell 
where the noise is coming from and then troubleshoot or fix the appropriate part. 


ZZ Never touch internal components when the case is off and the power is 
ING on! Doing so could result in a severe electrical shock to you and/or the 
components. 


Burning Smells and Smoke 


Burning smells or smoke coming from your computer are never good things. While it nor- 
mally gets pretty warm inside a computer case, it should never be hot enough inside there 
to melt plastic components, but it does happen from time to time. And power problems can 
sometimes cause components to get hot enough to smoke. 
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If you smell an odd odor or see smoke coming from a computer, shut it down immediately. 
Open the case and start looking for visible signs of damage. Things to look for include melted 
plastic components and burn marks on circuit boards. If components appear to be damaged, 
it’s best to replace them before returning the computer to service. 


P If you have scorch marks on a component, say a video card or a mother- 
A: board, it could be that the specific component went bad. It could also be 
a sign of a problem with the power supply. If you replace the component 

and a similar problem occurs, definitely replace the power supply. 


Indicator Lights 


Many hardware devices have status indicator lights that can help you identify operational 
features or problems with a device. Obviously, when you power on a system, you expect 
the power light to come on. If it doesn’t, you have a problem. The same holds true for other 
external devices, such as wireless routers, external hard drives, and printers. In situations 
in which the power light doesn’t come on and the device has no power, always obey the 
first rule of troubleshooting: Check your connections first! 

Beyond power indicators, several types of devices have additional lights that can help you 
troubleshoot. If you have a switch, hub, or other connectivity device, you should have an 
indicator for each port that lights up when there is a connection. Some devices will give you 
a green light for a good connection and a yellow or red light if they detect a problem. A lot 
of connectivity devices will also have an indicator that blinks or flashes when traffic is going 
through the port. Sometimes it’s the same light that indicates a connection, but at other times 
it’s a separate indicator. The same holds true for NICs. They usually have a connectivity light 
and a transmission light. If no lights are illuminated, it can indicate a lack of connection. 

Many computers also have hard drive activity lights. When disk reads or writes occur, 
the light will blink; otherwise, it will be off. A hard drive indicator that is constantly on is 
generally not a good sign; it could indicate that the hard drive is constantly busy or that the 
system is frozen, either of which is bad. 


P keys. If you believe a system is locked up, try pressing the Caps Lock or 
Num Lock key on the keyboard to see if the lights change. If they don’t, 
that’s a sign that the system is unresponsive. If no lights ever illuminate on 
the keyboard, it could be that the keyboard is disconnected or that there is 
a system power issue. 


w Most keyboards will have status lights for the Caps Lock and Num Lock 


If you have a device with lights and you’re not sure what they mean, it’s best to check the 
manual or the manufacturer’s website to learn about them. 


The manufacturer’s website is generally a great place to go for trouble- 
P shooting tips! 
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Log Entries, Alerts, and Error Messages 


An alert is a message generated by a hardware device. In some cases, the device has a dis- 
play panel that will tell you what the alert is. A good example of this is an office printer. 
Many have an LCD display that can tell you if something is wrong. Other devices, particu- 
larly rack-mounted servers or connectivity devices, will have status lights that indicate that 
there’s an issue. 

Other alerts and error messages will pop up on the computer screen. If the device is 
attached to a specific computer, the alert will generally pop up on that computer’s screen. 
Some devices can be configured to send an alert to a specific user account or system admin- 
istrator, so the administrator will get the alert regardless of which computer they are cur- 
rently logged into. 


Operating system error messages and alerts are generally logged in an 

OTE event log, such as Windows Event Viewer. Troubleshooting operating 
system errors is an objective on the 220-1002 exam, and we cover Event 
Viewer in Chapter 16, “Operating System Administration.” 


Visible Damage 


The good news about visible damage is that you can usually figure out which component is 
damaged pretty quickly. The bad news is that it often means you need to replace parts. 

Visible damage to the outside of the case or the monitor casing might not matter much 
as long as the device still works. But if you’re looking inside a case and see burn marks or 
melted components, that’s a sure sign of a problem. Replace damaged circuit boards or 
melted plastic components immediately. After replacing the part, it’s a good idea to monitor 
the new component for a while too. The power supply could be causing the problem. If the 
new part fries quickly too, it’s time to replace the power supply as well. 


Intermittent Device Failure 


Intermittent problems are absolutely the worst to deal with. They are frustrating for techni- 
cians because the system will inevitably work properly when you’re there to fix it. The users 
also get frustrated because they see the problem happen, but, of course, it works fine when 
the tech shows up! 

Treat intermittent failures just as you would a persistent issue, if at all possible. See if 
there were any error messages, or if it happens when the user tries a certain action. Maybe 
it occurs only when the system has been on for a while or when a specific application is 
open. Try to narrow it down as much as possible. In many cases, an intermittent failure 
means that the device is slowly but surely dying and needs to be replaced. If it’s something 
obvious, such as a network card or a disk read/write failure, you know what to replace. If 
not, and it’s something random like intermittent lockups, it may take trial-and-error to find 
the right part to replace, especially if there were no error messages. Intermittent or unex- 
pected lockups or shutdowns may be a motherboard, CPU, or RAM problem. If you have 
nothing else to go on, try replacing one at a time to see if that resolves the issue. 
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POST Routines 


Every computer has a diagnostic program built into its basic input/output system (BIOS) 
called the power-on self-test (POST). When you turn on the computer, it executes this set 
of diagnostics. Many steps are involved in the POST, but they happen very quickly, they’re 
invisible to the user, and they vary among BIOS vendors. The steps include checking the 
CPU, checking the RAM, checking for the presence of a video card, and verifying basic 
hardware functionality. The main reason to be aware of the POST’s existence is that if it 
encounters a problem, the boot process stops. Being able to determine at what point the 
problem occurred could help you troubleshoot. 

If the computer doesn’t perform the POST as it should, one way to determine the source 
of a problem is to listen for POST code beeps, also known as a beep code. This is a series of 
beeps from the computer’s speaker. A successful POST generally produces a single beep. If 
there’s more than one beep, the number, duration, and pattern of the beeps can sometimes 
tell you what component is causing the problem. However, the beeps differ depending on 
the BIOS manufacturer and version, so you must look up the beep code in a chart for your 
particular BIOS. AMI BIOS, for example, relies on the number of beeps and uses patterns 
of short and long beeps. 

Another way to determine a problem during the POST routine is to use a POST card. 
This is a circuit board that fits into an expansion slot (PCIe, PCI, or USB) in the system and 
reports numeric codes as the boot process progresses. Each code corresponds to a particu- 
lar component being checked. If the POST card stops at a certain number, you can look up 
that number in the manual for the card to determine the problem. Figure 13.1 shows an 
example of a PCI POST card. USB POST cards are easy to use—you don’t have to crack the 
case to check for POST errors—and they can be used to test laptops as well. 


FIGURE 13.1 PCI POST card 





POST card 98usd by Rumlin—Own work. Licensed under CC BY-SA 3.0 via Wikimedia Commons. 
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P different error messages. If you're getting a beep code during POST, check 
the Internet for information on what the beep code means. A good refer- 
ence site is BIOS Central; for example, you can find AMI BIOS beep codes 
at www. bioscentral.com/beepcodes/amibeep.htm. You can also visit the 
BIOS manufacturer’s website. 


w Motherboard manufacturers tend to use different beep codes to indicate 


Identifying BIOS/UEFI Issues 


Because we just talked about the POST routine, which is a function of the BIOS, let’s look 
at a few other BIOS issues as well. 


P In this section, we refer to the BIOS but don't mention UEFI specifically. All 
‘GQ these issues can apply to either a BIOS or UEFI BIOS. We just use the term 
BIOS here for simplicity. 


Out-of-Date BIOS First, computer BIOSs don’t go bad; they just become out-of-date. This 
isn’t necessarily a critical issue; they will continue to support the hardware that came with 
the box. It does, however, become an issue when the BIOS doesn’t support some component 
that you would like to install—a larger hard drive, for instance. 


Most of today’s BIOSs are written to an EEPROM and can be updated through the use of 
software. This process is called flashing the BIOS. Each manufacturer has its own method 
for accomplishing this. Check the documentation for complete details. 


ING unbootable. If this happens, your only option may be to ship the box to a 


Ck If you make a mistake in flashing the BIOS, the computer can become 
manufacturer-approved service center. Be careful! 


Losing a Computer’s Settings A fairly common issue with the BIOS is when it fails to 
retain your computer’s settings, such as time and date and hard drive settings. The BIOS 
uses a small battery (much like a watch battery), called the CMOS battery, on the mother- 
board to help it retain settings when the system power is off. If this battery fails, the BIOS 
won’t retain its settings. Simply replace the battery to solve the problem. 


Checking the Boot Sequence Finally, remember that your BIOS also contains the boot 
sequence for your system. You probably boot to the first hard drive in your system (the one 
that contains the OS boot files), but you can also set your BIOS to boot from a secondary 
hard drive, the optical drive, or the network. If your computer can’t find a proper boot 
device, it could be that it’s attempting to boot to an incorrect device. Check the BIOS to see 
if you need to change the boot sequence. To do this, perform the following steps: 


1. Reboot the system and look for the message telling you to press a certain key to enter 
the BIOS (usually something like F2). 


2. Once you’re in the BIOS, find the menu with the boot sequence (like the one shown in 
Figure 13.2) and set it to the desired order. 
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FIGURE 13.2 BIOS boot sequence settings 


Boot Priority [Not Installed] _ 
Boot Priority thp DUD A 16AALI 
J t Priority Untel raid1l 
Group Boot Priority [Not Installed] 





” F1:Help F5:Setup Defaults F10:Save and Exit Esc :Exit 





If the changes don’t hold the next time you reboot, check the battery. 


; There may be times that you want to boot to an alternate device, such as 
P the optical drive. During the part of the boot process when the BIOS entry 
key is shown, most systems will also show you an alternate key to press 
(such as the spacebar) to boot from the optical drive. This can be very help- 
ful when troubleshooting a system that won't load the OS properly, as long 
as you have the installation disc handy. 


Identifying Motherboard and CPU Problems 


Most motherboard and CPU problems manifest themselves by the system appearing to be 
completely dead. However, “completely dead” can be a symptom of a wide variety of prob- 
lems, not only with the CPU or motherboard but also with the RAM or the power supply. 
At other times, a failing motherboard or CPU will cause the system to lock up completely, 
or “hang,” requiring a hard reboot, or the failing motherboard or CPU may cause continu- 
ous reboots. A POST card may be helpful in narrowing down the exact component that is 
faulty. 

When a motherboard fails, it’s usually because it has been damaged. Most technicians 
can’t repair motherboard damage; the motherboard must be replaced. Motherboards can 
become damaged due to physical trauma, exposure to electrostatic discharge (ESD), or 
short-circuiting. To minimize the risk, observe the following rules: 


= Handle a motherboard as little as possible, and keep it in an antistatic bag whenever 
it’s removed from the PC case. 


= Keep all liquids well away from the motherboard; water can cause a short circuit. 
a Wear an antistatic wrist strap when handling or touching a motherboard. 


= When installing a motherboard in a case, make sure that you use brass standoffs with 
paper or plastic washers to prevent any stray solder around the screw holes from caus- 
ing a short circuit with the metal of the screw. 
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A CPU may fail because of physical trauma or short-circuiting, but the most common 
cause for a CPU not to work is overheating, and most overheating issues are due to instal- 
lation failures. This means that the heat sink and/or fan must be installed properly along 
with the processor. With a PGA- or LGA-style CPU, ensure that the CPU is oriented cor- 
rectly in the socket. With an older SECC- or ZIF-style CPU, make sure the CPU is com- 
pletely inserted into its slot or socket. 


Identifying I/O Port and Cable Problems 


Input/output (I/O) ports are most often built into the motherboard and include USB as well 
as legacy parallel and serial ports. All of them are used to connect external peripherals to 
the motherboard. When a port doesn’t appear to be functioning, make sure the following 
conditions are met: 


= The cables are snugly connected. 
= The port has not been disabled in BIOS Setup. 
= The port has not been disabled in Device Manager in Windows. 


= No pins are broken or bent on the male end of the port or on the cable being plugged 
into it. 

If you suspect that it’s the port, you can purchase a loopback plug to test its functional- 
ity. If you suspect that the cable, rather than the port, may be the problem, swap out the 
cable with a known good one. If you don’t have an extra cable, you can test the existing 
cable with a multimeter by setting it to ohms and checking the resistance between one end 
of the cable and the other. 

Use a pin-out diagram, if available, to determine which pin matches up to which at the 
other end. There is often—but not always—an inverse relationship between the ends. In 
other words, at one end pin 1 is at the left, and at the other end it’s at the right on the same 
row of pins. You see this characteristic with D-sub connectors where one end of the cable is 
male and the other end is female. 


Distended Capacitors 


Many motherboards have capacitors on them, which store electricity. They are short cylin- 
drical tubes. Sometimes, when capacitors fail, they will bulge and brownish-red electrolyte 
residue may seep out of the vents in the top—an example is shown in Figure 13.3. These 
are called distended capacitors. 

If a capacitor fails, the motherboard will not work. You have a couple of options. 


= The first and probably best option is to replace the motherboard. Whatever you do, do 
not touch the residue coming from a distended capacitor! It can cause serious chemical 
burns. 


a The second option is to drain the energy from the failed capacitor and replace it. Do 
this only if you have specialized training on how to deal safely with capacitors, because 
they can cause lethal shocks. 


Troubleshooting Core Hardware Issues 731 


FIGURE 13.3 Distended capacitors on a motherboard 





By Bushytails at English Wikipedia - Own work, CC BY-SA 3.0 


Identifying Memory Issues 


Isolating memory issues on a computer is one of the more difficult tasks to do properly 
because so many memory problems manifest themselves as software issues. For example, 
memory problems can cause applications to fail and produce error messages such as gen- 
eral protection faults (GPFs). Memory issues can also cause a fatal error in your operating 
system, producing proprietary crash screens such as the infamous Blue Screen of Death 
(BSOD) in Windows or the rotating pinwheel in macOS or OS X. Sometimes these are 
caused by the physical memory failing. At other times, they are caused by bad program- 
ming, when an application writes into a memory space reserved for the operating system or 
another application. 

In short, memory problems can cause system lockups, unexpected shutdowns or reboots, 
or the errors mentioned in the preceding paragraph. They can be challenging to pin down. 
If you do get an error message related to memory, be sure to write down the memory 
address if the error message gives you one. If the error happens again, write down the mem- 
ory address again. If it’s the same or a similar address, then it’s very possible that the physi- 
cal memory is failing. You can also use one of several hardware- or software-based RAM 
testers to see if your memory is working properly. 


Memory issues can also be caused by the virtual memory, which is an area 
P of the hard drive set aside to emulate memory. The operating system cre- 
ates and manages a paging file on the hard drive to act as memory when 
the system needs more than what the physical RAM can provide; often- 
times, this paging file is dynamic in size. If the hard drive runs out of room 
for the paging file, memory issues can appear. As a rule of thumb, ensure 
that at least 10 percent of the hard drive space is free. (Virtual memory is 
discussed further in Chapter 16, “Operating System Administration.” ) 
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Identifying Power Supply Problems 


Power supply problems can manifest themselves in two ways. In the first, you will see an 
obvious problem, such as an electrical flash or possibly a fire. In the second, the system 
doesn’t respond in any way when the power is turned on. Hopefully you don’t have to deal 
with many of the first type! 


Recall from Chapter 2, “Internal Expansion, Storage Devices, and Power 

P Supplies,” that power supplies have a voltage switch on the back to change 
from 110v-120v power to 220v-240v power to meet different countries’ 
power specifications. If a computer has been moved from one country to 
another, make sure that it’s on the right setting before you plug it in and try 
to power it up. 


When the system doesn’t respond (“no power”) when you try to power it up, try a new 
power cable and make sure the outlet is functional. If those check out, open the case, 
remove the power supply, and replace it with a new one. Partial failures, or intermittent 
power supply problems, are much less simple. A completely failed power supply gives the 
same symptoms as a malfunctioning wall socket, uninterruptible power supply (UPS), or 
power strip; a power cord that is not securely seated; or some motherboard shorts (such as 
those caused by an improperly seated expansion card, memory stick, CPU, and the like). 
You want to rule out those items before you replace the power supply and find that you still 
have the same problem as when you started. 

At other times, the power supply fan might spin but the rest of the system does not 
appear to get power. This can be a power supply issue or possibly a motherboard issue. 
(Recall that the power supply plugs into the motherboard, and several devices don’t have 
a power cable but power themselves from the motherboard.) Be aware that different cases 
have different types of on/off switches. The process of replacing a power supply is a lot 
easier if you purchase a replacement with the same mechanism. 








(a) Real World Scenario 
Hot, Hot, Hot 


Several years ago, the company with which one of the authors was working got in a batch 
of hardware that it had purchased from another company. He and another tech were 
building Frankensteins out of the plethora of parts they had. 


They put RAM into one of the systems and powered it on. Immediately there was an elec- 
trical arc from the RAM to the motherboard, so they shut it back off. The arc was present 
for a split second, and they had the box powered down within a second or two after that. 
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The RAM module had a pretty obvious burn mark on it, so the author went to take it out 
and promptly scorched his fingers when he touched it. It was searing hot! They let it cool 
down for about 20 minutes before going back to take it out. The moral of the story: Be 
careful not to burn yourself on fried components. 


Incidentally, they put a new motherboard and new RAM into the same case and powered 
it up only to see the exact same thing happen. Fried. (Fortunately, the author was smart 
enough not to burn himself a second time!) The verdict? Bad power supply. After replac- 
ing the power supply and trying a third motherboard and RAM combination, they had a 
functioning system. 





If you’re curious as to the state of your power supply, you can buy hardware-based 
power supply testers online starting at about $10 and running up to several hundred dol- 
lars. Multimeters are also effective devices for testing your power supplies. 


ING capacitors that can store a lethal amount of electricity, even when they 
are powered off and have been unplugged. The high risk of electrocution 
and the relatively low cost of a new power supply make working on them 
something to avoid. 


te. Never try to repair or disassemble a power supply. They contain 


Identifying Cooling Issues 


A PC that works for a few minutes and then locks up is probably experiencing overheating 
because of a heat sink or fan not functioning properly. To troubleshoot overheating, first 
check all fans inside the PC to ensure that they’re operating, and make sure that any heat 
sinks are firmly attached to their chips. 

In a properly designed, properly assembled PC case, air flows in a specific path driven 
by the power supply fan and using the power supply’s vent holes. Make sure that you know 
the direction of flow and that there are limited obstructions and no dust buildup. Cases are 
also designed to cool by making the air flow in a certain way. Therefore, operating a PC 
with the cover removed can make a PC more susceptible to overheating, even though it’s 
“getting more air.” 

Similarly, operating a PC with expansion-slot covers removed can inhibit a PC’s capabil- 
ity to cool itself properly because the extra holes change the airflow pattern from what was 
intended by its design. 

Although CPUs are the most common component to overheat, occasionally other chips 
on the motherboard—such as the chipset or chips on other devices, particularly video 
cards—may also overheat. Extra heat sinks or fans may be installed to cool these chips. 

Liquid cooling systems have their own set of issues. The pump that moves the liquid 
through the tubing and heat sinks can become obstructed or simply fail. If this happens, the 
liquid’s temperature will eventually equalize with that of the CPU and other components, 
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resulting in their damage. Dust in the heat sinks has the same effect as with non-liquid 
cooling systems, so keep these components as clean as you would any such components. 
Check regularly for signs of leaks that might be starting, and try to catch them before they 
result in damage to the system. 

Exercise 13.1 walks you through the steps of troubleshooting a few specific hardware 
problems. The exercise will probably end up being a mental one for you, unless you have 
the exact problem that we’re describing here. As practice, you can write down the steps that 
you would take to solve the problem and then check to see how close you came to our steps. 
Clearly, there are several ways to approach a problem, so you might use a slightly different 
process, but the general approach should be similar. Finally, when you have found the prob- 
lem, you can stop. As you go through each step, assume that it didn’t solve the issue so you 
need to move on to the next step. 


For additional troubleshooting experience, you can watch videos on 
P YouTube or iFixIt.com. There are many great examples for hundreds of 
different types of problems. 


Troubleshooting Practice 


Issue One: Blank screen on bootup. You turn the computer on, and there's nothing on 
the screen. 


1. Check to make sure the monitor is on. Is its power light on? 


Seriously. Check it. Sometimes 5 seconds of checking the obvious can save you an 
hour of wasted time. 


2. Isthe monitor getting a signal? 


Some monitors will go into sleep mode if they don’t get a signal. Check the connec- 
tions. If all the connections are good and you're not getting a signal, it could be the 
video card. 


3. Did the system POST properly? Did you get a POST beep or a beep code? 


No POST likely indicates a bigger problem than just the video card or the monitor. If 
you do get a POST beep but never see anything, try a different monitor. 


4. Did you ever see anything on the screen? BIOS information? Did the OS start to load 
and then go blank? 


The key to troubleshooting an ambiguous situation like this is to ask, “What is the 
last thing that worked as it was supposed to?” That will help you determine what you 
need to fix. 
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Issue Two: The power supply fan spins, but no other devices have power. 


1. Did you hear a POST beep or a beep code? 


Odds are you that didn’t get any sounds, but it’s always good to reboot and 
double-check. 


2. Disconnect all internal and external peripherals so that the only component drawing 
power is the motherboard (with CPU and RAM, of course). Does it POST then? 


If you disconnect everything and it still doesn’t POST, odds are that your mother- 
board is fried. If it POSTs, then start plugging components back in one at atime, 
starting with your hard drive and other internal devices and working your way 

to the external peripherals. You'll eventually get to the part that’s causing the 
problem. 


3. If you have a power supply tester or multimeter, now would be a good time to 
make sure that the power supply is working properly. There’s no sense in replac- 
ing components, such as the motherboard, if the power supply is just going to 
fry them! 


Again, with all troubleshooting, it’s imperative to narrow down the problem to isolate 
the cause. If you can do that, then fixing it should be the easy part. 


Summary 


This chapter addressed the best practice methodology to resolving computer problems as 
well as troubleshooting core hardware components. In our discussion of troubleshooting 
theory, you learned that you need to take a systematic approach to problem solving. Both 
art and science are involved, and experience in troubleshooting is helpful but not a prereq- 
uisite to being a good troubleshooter. You learned that in troubleshooting, the first objec- 
tive is to identify the problem. Many times, this can be the most time-consuming task. 

Once you’ve identified the problem, you need to establish a theory of why the problem 
is happening, test your theory, establish a plan of action, verify full functionality, and then 
document your work. Documentation is frequently the most overlooked aspect of working 
with computers, but it’s an absolutely critical step. 

Next, we investigated the causes and symptoms of hardware problems, such as excessive 
heat, and signs of problems, such as noise, burning smells and smoke, indicator lights, vis- 
ible damage, and intermittent failures. After the discussion of general hardware, we talked 
about issues specific to internal components, including the motherboard, CPU, RAM, and 
power supply. 
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Exam Essentials 


Know the steps to take in troubleshooting computers. First, identify the problem. Then, 
establish a theory of probable cause, test the theory, establish a plan of action to resolve the 
problem, verify full system functionality, and, finally, document your findings. 


Understand what happens during the POST routine. During the power-on self-test 
(POST), the BIOS checks to ensure that the base hardware is installed and working. 
Generally, one POST beep is good. Any more than that and you might have an error. 


Understand problems related to the system BIOS. BIOS settings are maintained by the 
CMOS battery when the system is powered off. If the system keeps losing the date and time 
or boot settings, it could indicate a problem with the CMOS battery. 


Know what is likely to cause unexpected shutdowns, system lockups, continuous reboots, 
and intermittent device failures. All these issues can be caused by a failing motherboard, 
CPU, or RAM. In the case of other intermittent device failures, it could be that specific 
device as well. Many times these issues are exacerbated by overheating. 


Understand common problems that power supplies can cause. Power supplies can fry 
components, but they can also cause no power, noises, spinning fans but no power to other 
devices, smoke, and burning smells. 


Know which devices within a system can make loud noises. Loud noises are usually not 
welcome, unless you intend for them to come from your speakers. Generally speaking, only 
devices with moving parts, such as HDDs, power supplies, and fans, can produce unwanted 
loud noises. 


Know how to avoid overheating. Using fans and heat sinks will help to avoid overheating. 
Also know that overclocking the processor can cause overheating. 


Know what indicator lights do. Indicator lights tell you when a device is working prop- 
erly and may also tell you when it’s not working properly. They include power lights, Caps 
Lock and Num Lock lights on a keyboard, port lights on switches, and hard drive activity 
indicators. 


Know the proprietary crash screens for Windows and Mac operating systems. Windows 
has the Blue Screen of Death (BSOD), whereas macOS and OS X use the pinwheel. 


Understand what a distended capacitor is. It’s when a capacitor swells and possibly 
bursts, releasing a reddish-brown electrolyte. A motherboard with distended capacitors will 
likely fail. Don’t touch the electrolyte! 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 
1. You have discovered a fix for a broken laptop. Before implementing changes, what should 
you consider, according to the best practice methodology? 
A. The user’s budget 
B. Company reputation 
C. Upgrade feasibility 
D. Corporate policies 
2. When a user turns on his desktop computer, nothing appears on the screen. He hears three 


long beeps, followed by three short beeps, and three long beeps. What should you do as a 
next step? 


A. Replace the motherboard. 
B. Replace the RAM. 
C. Replace the CPU. 
D. Look up the beep code on the manufacturer’s website. 
3. You are identifying the problem while troubleshooting a network issue. Which of the 
following are proper steps to help identify the problem? (Choose all that apply.) 
A. Inquire regarding infrastructure changes. 
B. Conduct internal or external research based on symptoms. 
C. Review the system and application logs. 
D. Determine the next steps to resolve the problem. 
E. Question the user and identify user changes to the computer. 
4. A field technician reports back that the computer she is troubleshooting has exposed 
distended capacitors. Which component has most likely failed? 
A. Power supply 
B. Motherboard 
C. CPU 
D. RAM 
5. You are using the best practice methodology to troubleshoot a video problem. During 
which step should you question the obvious? 
A. Test the theory to determine cause. 
B. Establish a theory of probable cause. 
C. Identify the problem. 
D 


Establish a plan of action to resolve the problem. 
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You are solving a problem with a desktop computer that was caused by human error. When 
is the appropriate time to implement preventive measures, according to the best practice 
methodology? 


A. When documenting findings, actions, and outcomes 
B. When testing the theory to determine cause 

C. When verifying full system functionality 

D. When questioning the user to identify user changes 
You are troubleshooting a Windows-based desktop computer that is experiencing unexpected 


shutdowns. Which of the following would be a good next step to resolve the issue? (Choose 
all that apply.) 


A. Replace the motherboard, CPU, and RAM to see if it resolves the problem. 

B. Replace the RAM to see if it resolves the problem. 

C. Reinstall Windows to see if it resolves the problem. 

D. Replace the CPU to see if it resolves the problem. 

When a desktop computer boots up, there is no video on the LCD monitor, just a blank 


screen. The system makes one beep when it powers on, and air is coming out of the case 
fan. What is the most likely cause of the problem? 


A. The motherboard has failed. 

B. The video card has failed. 

C. The monitor is disconnected. 

D. The CPU or RAM has failed. 

You have implemented a solution that resolved an audio problem on a laptop computer. 
Following the best practice methodology, what is the next step to take? 

A. Document findings, actions, and outcomes. 

B. Verify full system functionality and, if applicable, implement preventive measures. 
C. Establish a plan of action to resolve the problem. 

D. Review system and application logs. 

You are training a class of new technicians on troubleshooting motherboard issues. Which 
of the following are issues most likely caused by a failing CMOS battery? (Choose two.) 
A. BIOS time and setting resets 

B. Attempts to boot to the incorrect device 

C. Intermittent device failure 

D. BSOD/pinwheel errors 


11. 


12. 


13. 


14. 


15. 
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A desktop computer is experiencing continuous reboots. It gets to the BIOS screen and 
then reboots every time. Which two components are most likely to cause this problem? 
(Choose two.) 


A. Power supply 

B. RAM 

C. CPU 

D. Motherboard 

You have fixed a printer problem and verified full functionality. What is the next step to 
take in the best practice methodology? 

A. Document findings, actions, and outcomes. 

B. Conduct internal or external research. 

C. Review system and application logs. 

D. Establish a theory of probable cause. 

A user pushes the power button on her desktop computer but nothing happens. She double- 


checks that it is plugged in and that the wall outlet is working properly. Which components 
are most likely to cause this problem? (Choose two.) 


A. Power supply 
B. Motherboard 
C. Power cord 
D. CPU 
E. RAM 
A technician who has been troubleshooting a computer tells you that the system is having 
problems with overheating. Which component is most likely to cause this issue? 
A. Power supply 
B. Motherboard 
C. CPU 
D. RAM 
You turn on a desktop computer and it fails to boot. You hear a rhythmic ticking coming 
from inside the case. What is most likely the problem? 
A. Failed hard drive 
. Failed motherboard 
C. Failed CPU 
Failed RAM 
A bomb 


mo 
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You are using the best practice methodology to troubleshoot a printer. During which phase 
of the methodology should you use external research based on the symptoms? 


A. Identify the problem. 

B. Establish a plan of action to resolve the problem. 

C. Establish a theory of probable cause. 

D. Implement preventive measures. 

When you turn on a desktop computer, you hear a loud squealing noise coming from 


inside the case. Which components are potential culprits for making the noise? (Choose 
all that apply.) 


CPU fan 

Power supply fan 
HDD 

SSD 

CPU 

RAM 


mmo @ > 


A user complains of smoke and a foul odor coming from his desktop computer, so he shut it 
down. Which component is most likely causing the problem? 


A. Power supply 
B. RAM 

Cc. CPU 

D. Motherboard 


A Windows user complains that her computer keeps crashing. What is the proprietary crash 
screen she is most likely seeing? 


A. Stop sign 
B. Pinwheel 
C. BSOD 


D. Black screen 

You have been troubleshooting a laptop for an hour and have established a theory of prob- 
able cause for the problem. What is the next step you should take? 

A. Test the theory to determine the cause. 

B. Document findings, actions, and outcomes. 

C. Verify full system functionality and implement preventive measures. 

D 


Establish a plan of action to resolve the problem. 


Performance-Based Question 741 


Performance-Based Question 


You will encounter performance-based questions on the A+ exam. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answers compare to the authors’, refer 
to Appendix B. 

Place the following steps (and sub-steps) of the best practice methodology in order: 


= Verify full system functionality and, if applicable, implement preventive measures. 
= Test the theory to determine cause. 

= [f necessary, conduct external or internal research based on symptoms. 

= Identify the problem. 

a Once theory is confirmed, determine the next steps to resolve the problem. 

a Document findings, actions, and outcomes. 

= Inquire regarding environmental or infrastructure changes. 

a Establish a plan of action to resolve the problem and implement the solution. 

a Establish a theory of probable cause (question the obvious). 


= Question the user and identify user changes to the computer, and perform backups 
before making changes. 


a If theory is not confirmed, establish a new theory or escalate the problem. 


= Review system and application logs. 





CompTIA® A+® Complete Study Guide, Fourth Edition 
By Quentin Docter and Jon Buhagiar 
Copyright © 2019 by John Wiley & Sons, Inc. 


Hardware 
and Network 
Troubleshooting 





THE FOLLOWING COMPTIA A+ EXAM 
220-1001 OBJECTIVES ARE COVERED IN 
THIS CHAPTER: 


vy 2.8 Given a scenario, use appropriate networking tools. 


= Crimper 


= Cable stripper 


a Multimeter 


= Tone generator and probe 


= Cable tester 


= Loopback plug 


a Punchdown tool 


= WiFi analyzer 


vZ 5.3 Given a scenario, troubleshoot hard drives and 
RAID arrays. 


= Common symptoms 


Read/write failure 

Slow performance 

Loud clicking noise 

Failure to boot 

Drive not recognized 

OS not found 

RAID not found 

RAID stops working 

Proprietary crash screens (BSOD/pin wheel) 


S.M.A.R.T. errors 


vZ 5.4 Given a scenario, troubleshoot video, projector, and 
display issues. 


=» Common symptoms 
a VGA mode 
a No image on screen 
a Overheat shutdown 
a Dead pixels 
= Artifacts 
= Incorrect color patterns 
a Dim image 
= Flickering image 
a Distorted image 
= Distorted geometry 
a Burn-in 


= Oversized images and icons 


Y/Y 5.5 Given a scenario, troubleshoot common mobile 
device issues while adhering to the appropriate 
procedures. 


= Common symptoms 
a No display 
= Dim display 
a Flickering display 
= Sticking keys 
= Intermittent wireless 
= Battery not charging 
= Ghost cursor/pointer drift 
= No power 
a Num lock indicator lights 
= No wireless connectivity 
= No Bluetooth connectivity 


= Cannot display to external monitor 





=» Touchscreen non-responsive 

= Apps not loading 

= Slow performance 

= Unable to decrypt email 

= Extremely short battery life 

= Overheating 

a Frozen system 

a No sound from speakers 

= GPS not functioning 

= Swollen battery 

Disassembling processes for proper reassembly 
= Document and label cable and screw locations 
= Organize parts 

= Refer to manufacturer resources 


= Use appropriate hand tools 


Given a scenario, troubleshoot printers. 
Common symptoms 
= Streaks 
= Faded prints 
a Ghost images 
= Toner not fused to the paper 
=» Creased paper 
= Paper not feeding 
a Paper jam 
a No connectivity 
= Garbled characters on paper 
a Vertical lines on page 
= Backed-up print queue 
a Low memory errors 


=» Access denied 





= Printer will not print 

= Color prints in wrong print color 
= Unable to install printer 

= Error codes 

= Printing blank pages 

= No image on printer display 


= Multiple failed jobs in logs 


Y/Y 5.7 Given a scenario, troubleshoot common wired and 
wireless network problems. 


a Common symptoms 
= Limited connectivity 
= Unavailable resources 
= Internet 
a Local resources 
a Shares 
= Printers 
a Email 
a No connectivity 
= APIPA/link local address 
a Intermittent connectivity 
= |P conflict 
a Slow transfer speeds 
a Low RF signal 


a SSID not found 





Hardware problems are sometimes very easy to identify. If 
you push the power button and nothing happens, you can be 
pretty confident that it’s not the fault of the operating system. 
Other hardware problems are more complicated. For example, memory issues may cause 
errors that look like they’re the fault of an application, or what appears to be a failing 
device may be resolved by updating the software driver. So while this chapter focuses on 
hardware, understand that in many cases you'll need to know how to navigate through 
apps and software settings to really narrow down the issue. 

Network problems introduce even more variables to consider. Instead of just focusing on 
the local machine, now you need to consider the device at the other end of the connection 
as well. Perhaps that connection is wired, so it’s easy to see if the cable is plugged in and 
port lights are flashing. If it’s wireless, though, the signal travels magically through the air, 
and you might not have blinking lights to guide the way. 

With all of the integration between software applications and hardware components, it 
can be challenging to understand where one stops and the other starts, or how their inter- 
operation affects one another. To top it all off, you’re probably going to be working in an 
environment that requires you to understand not just one computer but a network full of 
workstations, servers, switches, routers, and other devices, and how they should play nicely 
together. 

This introduction isn’t intended to scare you, but rather to point out that computers 
are complicated, and troubleshooting can be hard. You already know that, but give your- 
self some latitude in troubleshooting, because it’s not always easy. Prepare yourself with a 
solid foundation of knowledge and never be afraid to consult other resources, such as the 
Internet or co-workers. Situations will arise that make even the most experienced techni- 
cians shake their heads in frustration. 

Sometimes, you will hear people say things like, “It just takes practice and experience 
to become good at troubleshooting.” Those words are of little comfort to someone who is 
relatively new and facing a challenging problem. Yes, experience does help, but even newer 
technicians can be effective troubleshooters if they understand the fundamentals and follow 
a logical process. 

As you learned in Chapter 13, “Troubleshooting Methodology and Resolving Core 
Hardware Problems,” the best way to tackle any problem is to take a systematic approach 
to resolving it. This applies to the hardware and networking issues that we’ll talk 
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about here as well as the software and security issues that we will cover in Chapter 24, 
“Troubleshooting Operating Systems and Security.” 

Recall from Chapter 13 that while experience helps, novice technicians can be effective 
troubleshooters as well. Troubleshooting becomes a lot easier if you follow logical pro- 
cedures to help you develop experience. The first thing to do is always to check the easy 
stuff, such as physical cables and connections. You would be amazed at how many times 
the simple question “Is it plugged in?” resolves hardware problems. Second, see if anything 
has recently changed or if there are any recent incidents that might have caused the prob- 
lem. For example, if someone’s laptop won’t boot up, you might not have a clue as to why. 
But if they tell you that they just dropped it down the stairs, you might have a better idea 
of where to start. Finally, narrow down the scope of the problem. Find out exactly what 
works and what doesn’t. Knowing where the problem starts and stops helps you to focus 
your troubleshooting efforts. 

This chapter finishes the hardware troubleshooting discussion we started in Chapter 13. 
Specifically, we will look at the following: 


a Hard drives and RAID arrays 

a Video systems, with an emphasis on projectors and displays 
a Mobile devices, including laptops 

= Printers 

= Wired and wireless networks 


You may wonder why we broke hardware troubleshooting into multiple chapters. If 
we’re being honest, it’s due to the large number of problems that could arise, the volume 
of A+ exam objectives that creates, and the amount of room it takes to discuss them all. In 
other words, we didn’t want to hit you with a massively long chapter! 

Even with breaking it up, though, there’s no way that a reasonably sized book could 
teach you about all the possible issues you could face. Nor would it be logical for you to try 
to memorize them all. Instead, we focus on some of the common issues and help you think 
through the process of narrowing down the possibilities so that you can efficiently resolve 
any problem you encounter. Armed with that knowledge, you should have the confidence to 
tackle any problem you face, regardless of whether it’s familiar to you or not. 


Troubleshooting Storage and 
Video Problems 


Believe it or not, storage and video are not critical components to computer operation. A 
computer can perform all the tasks it needs to for a complex mathematical problem without 
exporting images to a video display. In fact, early computers didn’t have a video display. 
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Input was fed into them using punch cards, and output was produced on cards as well, or 
later on paper. Video was not required. 

The same holds true for storage. Computers don’t have to have long-term storage. 
Granted, it’s really helpful to be able to store an OS and files on a local hard drive, but it’s 
not needed. A computer can boot from a network card, and then store files on the network 
or the cloud. 

Even though these two types of components aren’t needed, they are almost universally 
included in computing devices today. And when they don’t work, users tend to get upset. 
Losing a hard drive’s worth of data is incredibly frustrating, especially if there’s no suitable 
backup. In this section, we’ll take a look at some common storage and video problems and 
how to resolve them. 


Troubleshooting Storage Device Problems 


Storage devices present unique problems simply due to their nature—there are multiple 
technologies in use today. Some of them are devices with moving parts, which means that 
they are more prone to mechanical failure than a motherboard or a stick of RAM. Others 
function essentially like RAM and plug directly into a socket instead of needing a cable. If 
they fail, there’s not much you can do besides replace them. In the following sections, we’ll 
discuss hard disk problems, including RAID arrays. Then we’ll take a quick look at optical 
drive issues. 


Identifying Hard Disk System Problems 

Hard disk system problems usually stem from one of the following three causes: 
a The adapter (that is, the SATA, PATA, or other interface) is bad. 

= The disk is bad or failing. 

= The adapter and disk are connected incorrectly. 


The first and last causes are easy to identify, because in either case, the symptom will 
be obvious: The drive won’t work. You won’t be able to get the computer to communi- 
cate with the disk drive. The way to see which component is at fault is to disconnect and 
reconnect, or to try the device in another system (or try another drive in the affected 
system). 

However, if the problem is a bad or failing disk drive, the symptoms aren’t always as 
obvious. As long as the POST routines can communicate with the disk drive, they’re usually 
satisfied. But the POST routines may not uncover problems related to storing information. 
Even with healthy POST results, you may find that you’re permitted to save information to 
a bad disk, but when you try to read it back, you get errors. Or the computer may not boot 
as quickly as it used to because the disk drive can’t read the boot information successfully 
every time. 
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Software utilities used to manage hard drives include chkdsk, format, 
OTE diskpart, and disk defragmenter. Chapter 16, “Operating System 
Administration,” covers these utilities in detail. 


Let’s take a look at some specific hard drive-related issues, the likely culprits, and 
actions to take: 


Loud Clicking or Scratching Noises We introduced this problem in Chapter 13. You will 
only hear these coming from mechanical drives, and they are usually caused by a physical 
malfunction within the drive itself. If the drive is still usable, back up the information on it 
as soon as possible. The drive is going to stop working in short order. It’s time to brandish 
the screwdriver and replace the hard drive. 


Slow Performance or Read/Write Failures A failing hard drive might exhibit these symp- 
toms. They can also be a symptom of the hard drive being too full. Hard drives move infor- 
mation around a lot, especially temporary files. If the drive doesn’t have enough free space 
(at least 10 percent), it can slow down dramatically. The solution here is to remove files or 
old applications to free up space and look at defragmenting the hard drive. If problems per- 
sist, consider formatting the hard drive and reinstalling the OS. If the issues don’t go away, 
assume that the hard drive is on its last legs. 


Boot Problems This could be any of a number of problems, such as a complete failure to 
boot, the hard drive not being recognized by the BIOS, or the OS not being found. Failure 
to boot at all likely means the drive is dead. Do your due diligence and reseat your con- 
nections and make sure that the BIOS recognizes the drive before replacing it. Most BIOSs 
today auto-detect the hard drive. If that auto-detection fails, it’s bad news for the hard 
drive, unless there’s a cable or connection issue. 


As in Chapter 13, this chapter refers to the BIOS but doesn’t mention UEFI 
TE specifically. All of these issues can apply to either a BIOS or UEFI BIOS. We 


just use the term BIOS for simplicity sake. 


Finally, a system that boots fine but can’t find the OS could indicate a problem with 
the master boot record (MBR) or boot sector on the hard drive. To fix this in any current 
version of Windows, boot to bootable media (optical disc or USB) and enter the Windows 
Recovery Environment (WinRE). In WinRE, you can get to a command prompt and use 
bootrec /fixmbr to fix the MBR and bootrec /fixboot to fix the boot sector. 


PX Failed reads and writes from hard drives can also cause the operating 
Qo system to crash, resulting in a proprietary crash screen (BSOD in Windows 
or pinwheel in macOS/OS X) error. 
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S.M.A.R.T. 


As of 2004, nearly every hard drive has been built with Self-Monitoring, Analysis, and 
Reporting Technology (S.M.A.R.T.) software installed on them. $.M.A.R.T. monitors hard 
drive reliability and theoretically can warn you in the event of an imminent failure. The 
idea behind S.M.A.R.T. is great. Who wouldn’t want to know when their hard drive was 
going to fail so they could back up the drive? In practice, though, it seems to help manufac- 
turers locate persistent issues by identifying hard drive design flaws more than it helps end 
users avoid catastrophic data losses. Helping hard drive manufacturers do a better job isn’t 
a bad thing, but S.M.A.R.T. hasn’t enjoyed widespread commercial success with end users. 
This can largely be attributed to the following three factors: 


a Windows OSs don’t come with a built-in graphical utility to parse the data. 


=a The 70 metrics provided by $.M.A.R.T. aren’t always easy to understand, and there 
has been little guidance as to which metric or metrics are most closely associated with 
impending drive failure. 


a Manufacturers have not consistently defined the metrics among themselves; there are 
no industry-wide analysis applications or standards for this technology. 


Let’s address the three issues in order. First, you can download one of several graphi- 
cal tools from the Internet if you want to run §.M.A.R.T. diagnostics on a hard drive. 
Table 14.1 gives you a few options. Each one has a free option, and they all offer a variety 
of hard drive diagnostic capabilities. 


TABLE 14.1 S.M.A.R.T. software utilities 





Name Website 

GSmartControl gsmartcontrol.sourceforge.net 

SpeedFan www.almico.com/speedfan.php 

HD Tune www. hdtune.com 

CrystalDiskInfo crystalmark. info/en/software/crystaldiskinfo/ 


Second, yes, $.M.A.R.T. reports a lot of metrics, not all of which make sense in English. 
Figure 14.1 shows the output from GSmartControl version 1.1.3; you can tell that two met- 
rics appear to be problematic because they are highlighted. Pink highlights show a warn- 
ing, and red highlights indicate a failure. The question is, which metrics are most likely to 
predict drive failure? 
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FIGURE 14.1 S.M.A.R.T. report from GSmartControl 





4 Device Information - /dev/csmi0,0 (ata): $T3500418AS - GSmartControl - o x 


Device: /dev/csmi0,0 (ata) Model: ST3500418AS 
General Attributes Statistics Self-Tests Error Log Temperature Log Advanced 
SMART Attributes Data Structure revision number: 10 





Da Name Failed Norm-ed value Worst Threshold Raw value Type Flags 





Power-On Time 


Power Cycle Count 
Unknown HDD Attribute 


End to End Error 
Reported Uncorrectable 


High Fly Writes 


Airflow Temperature 


i Hardware ECC Recovered 








Offline Uncorrectable 











Refresh View Output Save As Close 








In 2014, Google and cloud service provider Backblaze ran large-scale tests to determine 


which metrics most strongly correlated with drive failure. Their results showed five metrics, 
which are highlighted in Table 14.2. 


TABLE 14.2  S.M.A.R.T. metrics most correlated with hard drive failure 


ID Attribute Name Description 


05 Reallocated sector count The number of bad sectors that have been 
found and remapped during read/write 
processes. Any nonzero number could 
indicate a problem. 


187 Reported uncorrectable errors The number of errors that could not be 
recovered using hardware error correction 


188 Command timeout The number of failed hard drive read/write 
operations due to disk timeout 
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ID Attribute Name Description 

197 Current pending sector count The number of unstable sectors waiting to 
be remapped 

198 Uncorrectable sector count The total number of bad sectors when 


reading from or writing to a sector 


Interestingly enough, metrics related to higher temperatures or the number of reboots 
did not correlate to drive failure. The old adage that you should leave your computer run- 
ning to make the hard drive last longer wasn’t verified by the research. In addition, over 
half of the drives in the study failed without recording a sector error, and over 30 percent 
of the drives failed with no S.M.A.R.T. error whatsoever. 

What does that mean for the drive shown in Figure 14.1, which has an error on ID 5? 
Maybe not much. The same drive passed that ID when scanned with SpeedFan (see 
Figure 14.2). The safe conclusion is that S.M.A.R.T. can provide useful diagnostics on a 
hard drive’s health, but it’s by no means a guaranteed problem finder. 


FIGURE 14.2 SpeedFan S.M.A.R.T. output 








BR SpeedFan 4,52 - x 
Readings | Clock | Info | Exotics S.M.A.R.T. | Charts | 

Hard disk [HD1 - 500.168 - 57350041845 zel 
Model [5T350041845 Fimware [HP35 


Perform an in-depth online analysis of this hard disk ? 
Extended test | Short test | Status [no error 





Fitness (EUSRREERRRRORROEE 








| Attribute | Value | Worst | Wam | Raw | 
@} Raw Read Error Rate 112 99 6 000002F2B7C1 
@ Spin Up Time 97 97 0 000000000000 
Start/Stop Count 93 93 20  000000001F4C 
OMERE o io ss 000000000020 
@ Seek Error Rate 88 60 30  00002C2F 1888 
Power On Hours Count s 5 o0 0000000098FC 
@ Spin Retry Count 100 100 97 000000000000 
Power Cyde Count 97 97 20  000000000F9D 
@ (Unknown Attribute) 100 100 0 00000000 1BDD 
SATA Downshift Error Count 100 100 0 000000000000 
@ End-to-End error 100 100 97 000000000000 
Reported UncorrectableE... 100 100 0 000000000000 
Command Timeout 100 939 0 000000000001 
High Fly Writes 100 100 0 000000000000 
Airflow Temperature 68 57 45 000025150020 


AS; 
~ Performance MANNNNANAANANNNNNNE 
Coded by Alfredo Milani Comparetti - 2000-2016 - alfredo@almico.com 








As for the last issue (there being little consistency between hard drive manufacturers), 
that’s an annoyance but not a critical issue. All it really means is that you can’t compare 
data from one drive manufacturer with that of another. It’s likely that if you’re running 
S.M.A.R.T. data on a hard drive, you’re primarily concerned with that drive’s performance, 
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not how it compares to other hard drives. If you have a situation where you’re worried 
about a drive, you can benchmark its performance and track it over time, or you can just 
replace it. 

Exercise 14.1 has you download a S.M.A.R.T. software utility and test your hard drive. 


Using a S.M.A.R.T. Software Utility in Windows 10 

1. Goto http://ww.almico.com/sfdownload.php and download SpeedFan. 
2. Install SpeedFan on your computer. 

3. Open SpeedFan. 

Notice that it will begin to collect data on system performance. 

Click the S.M.A.R.T. tab to see hard drive statistics. 

Click the Extended Test button to begin an extended test. 


Look through the list of attributes to see if the drive has any errors. 


NOS 


If desired, repeat this process with a different software utility shown in Table 14.1. 


RAID Issues 


If you are using a Redundant Array of Independent (or Inexpensive) Disks (RAID) system, 
you have additional challenges to deal with. First, you have more disks, so the chance of 
having a single failure increases. Second, you more than likely have one or more additional 
hard disk controllers, so again you introduce more parts that can fail. Third, there will 
likely be a software component that manages the RAID array. 

Boiling it down, though, dealing with RAID issues is just like dealing with a single hard 
drive issue, except that you have more parts that make up the single storage unit. If your 
RAID array isn’t found or stops working, try to narrow down the issue. Is it one disk that’s 
failed, or is the whole system down, indicating a problem with a controller or the software? 
Along with external enclosures, which require a separate connection to the computer, most 
external RAID systems have status indicators and troubleshooting utilities to help you iden- 
tify problems. Definitely use those to your advantage. 

Finally, the problem could be dependent on the type of RAID you’re using. If you are 
using RAID 0 (disk striping), you actually have more points of failure than a single device, 
meaning that you’re at a greater risk of failure versus using just one hard drive. One drive 
failure will cause the entire set to fail. RAID 1 (disk mirroring) increases your fault toler- 
ance; if one drive fails, the other has an exact replica of the data. You’ll need to replace the 
failed drive, but unless both drives unexpectedly fail, you shouldn’t lose any data. If you’re 
using RAID 5 (disk striping with parity), a single drive failure usually means that your 
data will be fine, provided that you replace the failed drive. If two or more drives fail, the 
RAID 5 array will be lost and you will need to fix the array and then restore the data from 
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backup. RAID 10 is a mirrored striped set. As long as one drive in each mirrored pair is 
functional (just like in RAID 1), you shouldn’t lose any data. 


1 If your hard drive fails completely and you need to get critical data off of 
P it, there are third-party companies that provide file recovery software and 
services. These services are generally very expensive. (And you should 
have been backing up the drive in the first place!) 


Identifying Optical Drive Issues 


Optical drive (CD-ROM, DVD, and Blu-ray) problems are normally media-related. 
Although compact disc technology is pretty reliable, it’s not perfect. One factor to consider 
is the cleanliness of the disc. On many occasions, if a disc is unreadable, cleaning it with an 
approved cleaner and a lint-free cleaning towel will fix the problem. The next step might be 
to use a commercially available scratch-removal kit. If that fails, you always have the option 
to send the disc to a company that specializes in data recovery. 

If the operating system doesn’t see the drive, start troubleshooting by determining 
whether the drive is receiving power. If the tray will eject, you can assume the drive has 
power. Next, check BIOS Setup (SATA or PATA drives) to make sure that the drive has 
been detected. If not, check the master/slave jumper on the drive, and make sure that the 
PATA adapter is set to Auto, CD-ROM, or ATAPI in BIOS Setup. Once inside the case, 
ensure that both the drive and motherboard ends are securely connected and, on a PATA 
drive, that the ribbon cable is properly aligned, with pin 1, the edge that has the red or pink 
stripe, being closest to the power connector. 

To play movies, a DVD or Blu-ray drive must have Moving Picture Experts Group 
(MPEG) decoding capability. This is usually built into the drive, video card, or sound card, 
but it could require a software decoder. If DVD or Blu-ray data discs will read but not play 
movies, suspect a problem with the MPEG decoding. 

If an optical drive works normally but doesn’t perform its special capability (for exam- 
ple, it won’t burn discs), perhaps you need to install software to work with it. For example, 
with CD-RW drives, unless you’re using an operating system that supports CD writing (and 
nearly all OSs today do), you must install CD-writing software in order to write to CDs. 








Storage Issues 


As a reminder, the A+ exam objectives may test you on how to diagnose and fix the follow- 
ing storage issues: 


n Read/write failures 
a Slow performance 


a Loud clicking noise 
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a Failure to boot 

m Drive not recognized 

= OS not found 

= RAID not found 

=» RAID stops working 

a Proprietary crash screens (BSOD/pinwheel) 


n S.M.A.R.T. errors 





Troubleshooting Video Issues 


Troubleshooting video problems is usually fairly straightforward because there are a lim- 
ited number of issues that you might face. You can sum up nearly all video problems with 
two simple statements: 


=a There is either no video or bad video. 
= Either the video card or the monitor/projector/display is to blame. 


In the vast majority of cases when you have a video problem on a desktop computer, 
a good troubleshooting step is to check the monitor by transferring the video to another 
machine that you know is working. See if it works there. If the problem persists, you know 
it’s the monitor. If it goes away, you know it’s the video card (or possibly the driver). Is the 
video card seated properly? Is the newest driver installed? 


gM CompTIA recommends that you not work on the inside of a CRT monitor 
ING because of the electrical charge stored within. 


Let’s take a look at some common symptoms and their causes: 


Booting into VGA Mode Video Graphics Array (VGA) mode is a basic mode for display- 
ing video. Pretty much all you get is 640x480 with 16 colors. (That used to be awesome!) 
When your system refuses to boot into anything other than VGA mode, it indicates one of 
two problems: Either the video card is set to a resolution that it can’t handle, or the video 
card driver isn’t loading properly. When in VGA mode, reset the video resolution to some- 
thing you know the card can handle, and then reboot. If that doesn’t solve it, reinstall the 
driver. If it still doesn’t work, replace the video card. 


P Windows 10 has a low-resolution video mode that accomplishes the same 


‘GQ thing as VGA mode. 
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No Image on the Screen Troubleshooting this one on desktops is usually pretty easy. Try 
another monitor or try this monitor on another computer. That will narrow it down pretty 
quickly. Remember, if it’s not the monitor, it’s probably the video card. (Don’t forget to 
make sure that the system POSTed properly!) 


If it’s a laptop with no image on the screen, there are a few things to try. First, make sure 
the system is getting power—the power light should be on. If so, try using the Function 
(Fn) key to toggle the display. If that doesn’t work, reboot the system. Does the BIOS screen 
show? If not, then it’s a problem with the display unit. If it does but the screen goes blank 
before or during the Windows splash screen, then it’s a Windows issue. Try to boot into 
VGA mode, and then reset the resolution or reinstall the video driver. If none of that works, 
replace the display unit. 


Monitor That Keeps Shutting Down Monitors have their own internal power supply, and 
they can overheat. Overheating was more common with CRT displays than LCDs, but it 
still happens. Make sure the air vents on the back of the monitor are dust and debris free. If 
the problem persists, it’s best to replace the monitor. 


Dead Pixels or Artifacts These two problems are definitely monitor-related. Dead pixels 
are spots on the screen that never “fire,” or light up. You can check for these by setting the 
background to white and seeing if any spots don’t light up. With artifacts, no matter what 
you have on your screen, you can still see the outlines of a different image. That image has 
been “burned” into the monitor (sometimes simply referred to as burn-in) and isn’t going 
away. In either case, the only solution is to replace the monitor. 


Incorrect Colors This, too, is most likely a monitor issue, but you should confirm it by 
switching monitors. This can happen when the LCD monitor’s controller board starts to 
fail and doesn’t perform color mapping correctly. It also happens on old CRTs. To fix it, 
you use a process called degaussing (decreasing or eliminating an unwanted magnetic field), 
which is done through a utility built into the menu on the monitor. Finally, this can also 
happen if the pins on the connector are damaged or if the connector isn’t plugged in all the 
way. If switching the monitor makes the problems go away, it’s probably time to replace the 
monitor. 


Dim or Flickering Images In LCD monitors, these issues are most commonly caused by 
the backlight starting to fail. In those cases, replace the backlight. 


Distorted Images This used to be more of a problem on CRT monitors if they were near a 
motor or other device that produced a magnetic field. Sometimes the image would be wavy, 
and at other times it might look like it was getting stretched to one side of the screen. If 
your office is a cubicle farm, desk fans can be a major culprit. If you can eliminate the pos- 
sibility of any sort of external interference, and you’ve confirmed that it’s the monitor and 
not the video card, then replace the monitor. 


Distorted Geometry In Chapter 3, “Peripherals and Connectors,” we discussed the con- 
cepts of resolution and aspect ratio. Older, square-ish CRT monitors had a 4:3 aspect ratio, 
and newer widescreen HD displays are either 16:9 or 16:10. The point is, if you set your 
resolution so that it doesn’t match the monitor’s geometry, you may get distorted geometry 
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problems. When this happens, the screen will look stretched or squeezed, depending on 
how you set it. Just choose a different resolution, and the problem should go away. 


Oversized Images and Icons Oversized images and icons are also related to screen resolu- 
tion. They usually mean your resolution is set too low for the monitor or projector you are 
using. Increase the resolution, and the issue should disappear. 


Other graphics issues can be attributed to the memory installed on the video card. This 
is the storage location of the screens of information in a queue to be displayed by the moni- 
tor. Problems with the memory modules on the video card have a direct correlation to how 
well it works. It follows, then, that certain unacceptable video-quality issues (such as jerky 
refresh speeds or lags) can be remedied by adding memory to a video card. Doing so gener- 
ally results in an increase in both quality and performance. If you can’t add memory to the 
video card, you can upgrade to a new one. 








Video Issues 


As a reminder, the A+ exam objectives may test you on how to diagnose and fix the fol- 
lowing video issues: 


n No image on screen 

= Overheat shutdown 

= Dead pixels 

= Artifacts 

= Incorrect color patterns 
= Dim image 

=a Flickering image 

n Distorted image 

= Distorted geometry 


n Burn-in 





Troubleshooting Common Mobile 
Device Issues 


Mobile devices, for the most part, are essentially the same types of devices as desktops, but 
troubleshooting the two can feel very different. While the general troubleshooting philoso- 
phies never change—steps such as gathering information, isolating the problem, and then 
testing one fix at a time—the space and configuration limitations can make troubleshooting 
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smaller devices more frustrating. For purposes of the discussion here, the term mobile 
devices includes laptops and anything smaller. 

We will look at five areas where mobile devices could have different problems from their 
desktop counterparts: power, video, input, wireless networking, and responsiveness. Much 
of what we cover will be more closely related to laptops than smaller mobile devices, but 
the concepts generally apply to mobile computers of all sizes. We’ll call out specifics for 
small mobile devices where applicable. 








Working on Laptops and Small Mobile Devices 


For whatever reason, it’s easier to lose screws and other small pieces when working 
on laptops than it is with desktops. Don’t forget these key concepts when working on 
laptops: 


n Document and label screw and cable locations. 

a Have a clear organization method for your parts and screws. 
n Refer to the manufacturer's documentation. 

= Use the appropriate hand tools. 


For a review of these four concepts, see Chapter 10, “Understanding Laptops.” 





DPO Many of mobile device issues in exam objective 5.5 are also listed in the 
‘Gi A+ 220-1002 exam objective 3.4, “Given a scenario, troubleshoot mobile 
OS and application issues.” As such, you may see some similar content in 
Chapter 24. We will do our best to separate out the hardware angle from 
software-related issues, but as we have stated before, sometimes it’s a 
fine line as to what's really causing the problem. 


Power Issues 


Is it plugged in? Everyone hates getting asked that question if their computer doesn’t work. 
But it’s the critical first question to ask. After all, if it’s not plugged in, who knows whether 
or not it will work? You can’t assume that the battery is working (or is attached) as it’s sup- 
posed to be. Always check power and connections first! 


If the laptop works while it’s plugged in but not while on battery power, the 
P: TE battery itself may be the culprit. As batteries get older, they are not able to 
hold as much of a charge and, in some cases, are not able to hold a charge 
at all. If the battery won't charge while the laptop is plugged in, try remov- 


ing the battery and reinserting it. If it still won't charge, you might want to 
replace the battery. 
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Most laptop power adapters have a light indicating that they’re plugged in. If there’s no 
light, check to make sure that the outlet is working, or switch outlets. Also, most laptops 
have a power-ready indicator light when plugged into a wall outlet as well. Check to see if 
it’s lit. If the outlet is fine, try another power adapter. They do fail on occasion. 

Smaller mobile devices will have a lightning bolt next to their battery icon or an ani- 
mated filling battery when charging. If the device doesn’t appear to charge, the same cul- 
prits apply: It could be the outlet, the adapter, or the device itself. 

If you’re working on a DC adapter, the same concepts apply. Check for lights, try 
another adapter if you have one, or try changing plugs, if possible. For example, if you’re 
using a DC outlet in a car, many newer models have secondary power sources, such as ones 
in the console between the seats. 

Another thing to remember when troubleshooting power problems is to remove all exter- 
nal peripherals. Strip your laptop down to the base computer so that there isn’t a short or 
other power drain coming from an external device. 


battery life. In Windows, open the Power Options applet in Control Panel. 
Once there, you can configure different power-saving settings to maximize 
the battery life of your laptop. 


w Windows has built-in power management features to help conserve laptop 
P 


Smaller devices have greater potential to overheat than do their larger brethren. Space is 
at a premium, so all the components are packed tightly together, which means less room for 
each component to breathe. Manufacturers realize this, of course, so they use components 
that generate less heat. Overheating can still be a problem, though. If your mobile device is 
overheating, turn it off to let it cool down. It could be from overuse, or perhaps it did not 
have proper ventilation (for example, if it was stuffed into someone’s pocket or purse). If 
the overheating is persistent, you have a few options. The first is to test or replace the bat- 
tery, as that’s the most likely culprit. If overheating still happens, you may have to replace 
the device. 

Another issue that small devices can have is an extremely short battery life. We’re not 
talking about when people complain that their laptop only runs for an hour-and-a-half 
when they are playing a DVD while surfing the Internet and talking to their friends on their 
Bluetooth headset over a social media instant messenger. No, that’s bound to drain your 
battery quickly. What we’re referring to here is when a laptop battery only lasts for an hour 
or so after a full charge with normal usage, or if a mobile phone battery is only able to 
power the device for 30 minutes or so. These things happen. 

If it’s a laptop, you can try to perform a battery calibration, as we discussed in Chapter 
10. For all mobile devices, you can try to drain the battery completely and then charge it 
fully before turning the device back on. If these options don’t work, then it’s likely that the 
battery needs to be replaced. 

The last power issue that we need to discuss is a swollen battery. As the term suggests, 
the battery physically swells in size. It can be caused by a number of things, including 
manufacturer defects, age, misuse, using the wrong adapter for charging, or leaving the 
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laptop constantly plugged into a wall outlet. Inside the battery, the individual cells become 
overcharged, causing them to swell. Sometimes the swelling is barely noticeable, but it can 
cause the device case to crack or pop apart. Other times it’s pretty obvious, such as the one 
shown in Figure 14.3. 


FIGURE 14.3 iPhone with a swollen battery 





Mpt-matthew at English Wikipedia [GFDL (http://www. gnu.org/copyleft/fdl.html) or CC BY-SA 3.0 
(https: //creativecommons.org/licenses/by-sa/3.0)] 


If you have a swollen battery, turn the device off immediately and make sure that it’s not 
plugged into a charger. If the battery is removable, you can try to remove it, if you wish, 
but be very careful. Swollen batteries are more prone to explosions than normal batteries 
because the casing is already compromised. If you are able to remove it, place it into a safe 
container, just in case there are further issues. If the battery is not removable, it’s time for a 
new device. In either case, take the battery or device to a proper recycling center to dispose 
of it. Never just throw it in the trash; it can explode and harm sanitation workers, as well 
as cause significant damage to the environment. 


Video Difficulties 


The video card (built into the motherboard on most mobile devices) and the display unit are 
usually the cause of video problems. Video problems on small computers can also occur if the 
connection between the motherboard and the LCD screen becomes damaged. On laptops, 
this connection typically passes through the hinges of the case, which is the weakest part. 
The coverage for video problems follows the section on power problems for a reason: 
Make sure the computer is on before diagnosing the issue as a video problem. 
Here are a few things to try for laptops: 


a Plug in an external monitor that you know works. On most laptops, you need to press 
the function key and another key known as the LCD cutoff switch (often F4 or F8) to 
direct the video output to an external monitor. This is called toggling the display. You 
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might need to do this a few times. Figure 14.4 shows a laptop keyboard where F4 is the 
appropriate toggle key. Other examples were shown in Chapter 10. 


= Check the LCD cutoff switch. Remember the function+F4 idea? Try toggling it a few 
times, waiting a few seconds between each press of the toggle key to let the display 
power up. Most laptops have three or four display states: LCD only, external only, 
both displays, and extend screen (where the second screen becomes an extension of the 
first monitor). Raise or lower the brightness level. This is usually done with a function 
key combination as well, such as Fn+F9 or Fn+F10. Check your keyboard for function 
keys that have a sun on them. 


= Ifyou have a handheld computer, try turning the backlight feature on or off. For spe- 
cifics on how to do this, check your device’s manual. 


FIGURE 14.4 Video adjustment keys F4 (LCD toggle), F9 (dim), and F10 (brighten) 


B “o 





If the display is not working, you can order a new one from the manufacturer—although 
it may be cheaper to just buy a new device. If the computer won’t output a screen image to 
an external monitor or projector, it means one of two things (assuming you know that the 
monitor or projector works): Either the external video port (HDMI, VGA, or other) is shot, 
or the function keys aren’t working. In either case, you likely need to replace the mother- 
board if you want the display to appear on an external device. 


backlight in the display panel. A failing inverter can cause these 


Dim or flickering displays on laptops are usually caused by a faulty 
P 
problems too. 


Input Problems 


Laptop keyboards aren’t as easy to switch out as desktop keyboards. You can, however, 
very easily attach an external USB keyboard to your laptop if the keys on your laptop don’t 
appear to work. 

If the keyboard doesn’t seem to respond at all, try pressing the Num Lock and Caps 
Lock keys to see if they toggle the Num Lock and Caps Lock lights on and off. If the lights 
don’t respond, the keyboard isn’t functioning properly. Try rebooting the system. (You will 
probably have to press and hold the power button for 5 seconds, and the system will shut 
off. Wait 10 seconds, and press the power button again to turn it back on.) If that doesn’t 
fix the problem, you probably have faulty hardware. 

Another problem unique to laptop keyboards is the Fn key. (It can be your friend or 
your enemy.) You can identify it on your laptop keyboard because it’s in the lower-left 
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corner and has the letters Fn on it (often in blue), as shown in Figure 14.5. If the Fn key 

is stuck on, the only keys that will work are those with functions on them. If you look at 
other keys on your laptop, several of them will have blue lettering too. Those are the func- 
tions that the keys may perform if you press and hold the Fn key before pressing the func- 
tion key that you want. If the Fn key is stuck on, try toggling it just as you would a Caps 
Lock or Num Lock key. 


FIGURE 14.5 The Fn key ona laptop 





the contact is having problems or if the key itself is stuck. If the key is not 
physically stuck but the laptop thinks it is, rebooting generally solves the 
problem. If the key physically sticks, you can try blowing out underneath 
the key with compressed air, or use a cotton swab slightly dampened with 
water (or rubbing alcohol) to clean underneath the key. Make sure to clean 
the entire surface underneath the sticking key. If none of this resolves the 
issue, you might need to replace the keyboard. 


i If another key on your laptop keyboard is stuck, you need to determine if 
P 


One of the conveniences that users often take advantage of in laptops is a built-in point- 
ing device. Most laptops have touchpads or point sticks that function much like a mouse. 
They’re nice because you don’t need to carry an external mouse around with you. While 
these types of devices are usually considered very handy, some people find them annoying. 
For example, when you are typing your palm might rest on the touchpad, causing erratic 
pointer behavior. This is referred to as a ghost cursor because it seems like the cursor just 
randomly jumps all over the screen. You can turn the touchpad off through Control Panel. 
While understanding that you can turn it off on purpose, remember that it can be turned 
off accidentally as well. Check to make sure that it’s enabled. Some laptops allow you to 
disable or change the sensitivity of the touchpad as well, just as you can adjust the sensitiv- 
ity of your mouse. 

Another potential issue is pointer drift, where the mouse cursor will slowly drift in 
one direction even though you are not trying to make it move. This issue is generally 
related to the point stick not centering properly after it’s been used. If you have pointer 
drift, try using the point stick and moving it back and forth a few times to get it to re- 
center itself. You can also try rebooting. If the problem persists, either disable or replace 
the point stick. 
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Networking Troubles 


Nearly every mobile device sold is equipped with integrated wireless networking, and most 
have Bluetooth built in as well. In many cases, the wireless antenna is run into the LCD 
panel. This allows the antenna to stand up higher and pick up a better signal. 

If your wireless networking isn’t working, do the following: 


1. Ensure that the network card is turned on. 


Most laptops have an external switch or button on the front or side or above the key- 
board that can toggle the network card on and off. In some cases, it will be a function 
key. Be sure that this is set to the On position. Figure 14.6 shows a toggle above the 
keyboard. (It’s the one on the left that looks like an antenna.) 


FIGURE 14.6 Network card toggle switch above the keyboard 





2. Next, make sure the wireless card is enabled through Windows. You generally do this 
in Windows 10 as follows: 


Open Control Panel > Network and Sharing Center. 
Click Change Adapter Settings. 
Right-click the wireless network connection. 


Select Properties to look at the network card properties, as shown in Figure 14.7. 


oof fF 


Click the Configure button to open up more Properties, including driver 
management. 


Some network cards have their own proprietary configuration software as well. You 
can also often check here by clicking a tab (often called Wireless Networks) to see if 
youre getting a signal and, if so, the strength of that signal. 


3. Check the strength of the signal. 


A weak signal is the most common cause of intermittent wireless networking connec- 
tion problems. If you have intermittent connectivity and keep getting dropped, see if 
you can get closer to the wireless access point (WAP) or remove obstructions between 
you and the WAP. Failing network cards and connectivity devices can also cause inter- 
mittent wireless networking connection failures. 
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FIGURE 14.7 Wireless network connection properties 
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M If you have a USB network adapter, try unplugging it and plugging it back 
P in. Make sure that Windows recognizes the card properly. 


If the wireless connection fails but the system has a wired RJ-45 port, try plugging it in. 
For this, you will need an Ethernet cable and, of course, a wired network to plug it into. 
But if you get lights on the NIC, you might get on the network. 








E Real World Scenario 


Potential Wireless and Wired Conflicts 


A short time ago, a friend of ours was frustrated because he couldn’t get to the network 
in his office with his laptop plugged into his docking station. He had used the laptop at 
home the night before and gotten on his wireless network without a problem. But this 
day, his wired connection would not work. He checked his cables (always your first step) 
and saw that there were lights (a good sign). He had tried to access both the Internet and 
intranet sites, but to no avail. 


We opened a command prompt and ran ipconfig. He didn’t have an IP address, but we 
noticed that his built-in wireless card was listed and active. 
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What he needed to do was to disable his built-in wireless card. He had enabled the wire- 
less to work at home, and it was still enabled. Because it was enabled, the wireless card 
was trying to obtain an IP address, and it refused to let the wired “portion” of the card 
pick up an address from the company DHCP server. (There was no wireless in the build- 
ing due to strict security policies.) After he disabled his wireless card, his wired connec- 
tion picked up an IP address, and all was well. 


Many laptop network cards have a wired connection in addition to their wireless capabili- 
ties. For some of them, the wired connection will not work if the wireless is enabled. It’s 
an attempt to prevent conflicts if both connection types are active. 





The principles behind troubleshooting network or Bluetooth connectivity issues 
on mobile phones and tablets are the same as on laptops. The big difference is that 
you can’t try an external network card if your internal card is failing. We originally 
looked at some of these settings in Chapter 12, “Mobile Device Connectivity and 
Synchronization,” but now is a good time to review them. The first thing to check is 
that the network connection or Bluetooth is enabled, which also means double-checking 
that airplane mode is not turned on. On Android and iOS devices, this is done through 
Settings. Figure 14.8 shows iOS network settings, and Figure 14.9 shows Android net- 
work settings. Toggle the connection off and then back on to reset it; often, that will 
resolve connectivity issues. 


FIGURE 14.8 iOS network settings 
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FIGURE 14.9 Android network settings 





&+ Aen © Dh X “= yl 100% 13:15 PM 


= Settings Bd Q 





WIRELESS NETWORKS 


J Airplane mode 


F Wi-Fi 


Connected to "DrNet" 


6 6 ft 
J & 


g Bluetooth 
Pair with a device 


(M) Mobile Hotspot 











Another way to access network settings in iOS is from the Control Center. You can 
do this from both the lock screen and the home screen. Simply swipe your finger up from 
the very bottom of the iPhone’s touch screen, and you will get the Control Center, simi- 
lar to what’s shown in Figure 14.10. In Android, open the notifications area by swiping 


down from the top of the screen, and network settings will be there as well, as shown in 
Figure 14.11. 


FIGURE 14.10 iPhone Control Center 
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FIGURE 14.11 Android notifications center 
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Responsiveness Issues 


Responsiveness issues are most common on smaller mobile devices, such as phones and tab- 
lets. For the most part, we expect these devices to run automatically without any problems, 
but when they decide to stop working, it can be tricky figuring out why. The following 
sections describe six common responsiveness scenarios you might run into and the steps to 
take to resolve them. 


Apps Not Loading 


Sometimes you will tap on an app and nothing happens. Of course, you tap it again, and 
still nothing. After a dozen or so taps, you might just give up. It could be one of three 
things. The touch screen has stopped responding; something has corrupted the app; or the 
memory has become corrupted. Try another app to help narrow down the problem. If that 
doesn’t work, try powering the device off and back on again, and then try the app again. If 
that doesn’t resolve the problem, look to see if there is an updated version of the app that 
you need to install. If not, simply uninstall and reinstall the app. 


Frozen System 


This is one step further than just one app not working. If the touch screen is completely 
non-responsive and the system is entirely frozen, all you really can do is to power it off and 
then back on. You might need to hold the power button down for several seconds to force 
the device to power off. If the power button does not work, you can reset an iPhone by 
pressing and holding the power button and the sleep/wake button simultaneously for about 
10 seconds. The Apple logo will appear, and the phone should reset. 
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If that doesn’t work, then you need to restore the phone to factory settings. Note that 
doing this will cause all data on the phone to disappear, which is one reason it’s always 
good to have the phone sync so that you have a backup! If the restore process also fails, 
then it’s time to have the device repaired by a service technician, or replaced. 


Slow Performance 


This happens when the device is really slow but isn’t completely locked up. First, iso- 
late the issue. Is it one app or overall performance? It could be that apps are running 
in the background and need to be closed. Shutting down those apps or powering the 
device off and then back on is a good step. You can also check to see how much memory 
is available. If it’s very little, you might uninstall some items to see if that improves 
performance. 

If it’s one app giving you problems instead of the entire device, look for updates to the 
app, or delete and reinstall the app. 

Finally, if none of these steps work, restore the device to factory settings. If the problems 
persist, it’s time for a new device. 


Unable to Decrypt Email 


This is almost always a software issue. Security certificates and public and private keys are 
used to accomplish encryption and decryption. Security certificates are obtained through 
a certificate authority (CA), similar to how secure websites get set up so that you know 
they’re legitimate. The entire process for enabling encryption and decryption is beyond the 
scope of this chapter, but you do need to know two key points. First, you need a certificate 
to enable encryption, and second, public keys are used to encrypt messages and private 
keys are used to decrypt the same message. In other words, if you want to send Mary an 
encrypted message, you will use Mary’s public key to encrypt it. The only key that can 
properly decrypt the message is Mary’s private key. 

Android and iOS both support the Secure/Multipurpose Internet Mail Extensions 
(S/MIME) standard for public key encryption. 

If you can’t decrypt email, it is most likely because S/MIME settings are not properly 
enabled on your email account, which means installing the certificate (and, by extension, 
your private key) on your mobile device. Refer back to Exercise 12.10 in Chapter 12 for 
steps on how to enable this. 


If you are sending an encrypted email to someone who is on the same 

A TE Microsoft Exchange mail server as you, Exchange will locate their public 
key (certificate) to perform the encryption. If the recipient is not on the 
same Exchange server as you, you will need to install their certificate on 
your device. You will know that the email is encrypted if there is a lock icon 
next to the recipient's email address; if it's not configured properly, the 
recipient's email address will appear in red and have an unlocked lock icon 
next to it. 
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No Sound from Speakers 


Make sure that your device is not set to silent operation. Most mobile devices will have a 
switch on the side that sets them to silent or vibrate mode, and that will mute your device 
from making a noise when you get a call or a message. Also check your volume settings, 
which are in Settings > Sounds, as well as the Control Center (Figure 14.10). If the speakers 
have failed on a mobile device, it’s time for a new device. 


GPS Not Functioning 


iPhones and other devices have an amazing array of kinetic sensors built in. For example, 
every iPhone since the iPhone 6 has a gyroscope, accelerometer, linear acceleration sen- 
sor, magnetometer, altitude sensor, and gravity sensor. These sensors let your device act 
like a GPS and compass, and they also detect movements that many apps take advantage 
of, such as tilting or shaking the device. GPS must be enabled to use it. On an iPhone, you 
do so through Location Services, which is under Settings > Privacy > Location Services, 
as shown in Figure 14.12. Then, you have to give each app permission to use the service, 
which is also done on the same screen. 


FIGURE 14.12 iOS Location Services 
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In Android, location access settings are configured under Settings > Location and then 
Location, Location Services, or Location Reporting, depending on the Android version. An 
example is shown in Figure 14.13. 


Troubleshooting Common Mobile Device Issues 771 


FIGURE 14.13 Android location settings 
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If GPS is not working, do the following: 


a Check to ensure that the device has either a cellular or a Wi-Fi connection. Location 
Services doesn’t work without one of those two enabled. 


= If the settings are properly enabled and GPS still does not work, try powering off and 
back on again. 


= If powering off and on doesn’t fix it, the only way to resolve this problem is to send it 
in for service or replace the device, as it’s possible for any of the kinetic sensors to fail, 
including those that enable GPS services. 





Mobile Device Issues 


As a reminder, the A+ exam objectives may test you on how to diagnose and fix the fol- 
lowing mobile device issues: 


a No display 
= Dim display 


a Flickering display 


a Sticking keys 
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= Intermittent wireless 

= Battery not charging 

= Ghost cursor/pointer drift 

= No power 

=» Num lock indicator lights 

a No wireless connectivity 

a No Bluetooth connectivity 

a Cannot display to external monitor 
=» Touch screen non-responsive 
= Apps not loading 

= Slow performance 

=» Unable to decrypt email 

=» Extremely short battery life 

= Overheating 

n Frozen system 

= No sound from speakers 

=» GPS not functioning 

= Swollen battery 


In addition, you need to be aware of the following disassembling processes for proper 
reassembly: 


n Document and label cable and screw locations. 
= Organize parts. 
n Refer to manufacturer resources. 


=» Use appropriate hand tools. 





Troubleshooting Printer Problems 


Even though society is moving away from paper forms, printers are still very common 
peripherals. Printers are also the most complex peripheral as far as troubleshooting is con- 
cerned; this arises from complications in putting ink to paper. There are several different 
ways that this can be accomplished, but the end result is all pretty much the same. 
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DPO Recall from Chapter 5, “Installing and Configuring Printers,” that the A+ 

‘Qi exam objectives list 3D printers. In the troubleshooting objectives, only 2D 
printer problems are listed. For a more detailed description of each type of 
printer’s components and inner workings, see Chapter 5. 


Different types of printers work in different ways, so you would expect that laser printers 
might have different issues from impact printers. Because problems are often dependent upon 
the type of printer you’re using, we’ve chosen to break down this discussion by printer type. 
We'll start with a quick review of the technology and then get into specific issues. At the end, 
we'll look at the process of managing the print spooler, which is the same regardless of the 
printer type in use. 


shooting information. They often provide descriptions of problems 
and detailed instructions for resolving the issue. Most printers 
also come with management software that you can install on your 
computer, which may be able to assist you in troubleshooting any 
issues that you have. 


w Printer manufacturer websites are great places to look to find trouble- 
P 








Help! I can't install my printer! 


Before you can print, you must, of course, install the printer on the computer you want to 
print from. Sometimes, though, installing the printer can be problematic. The first com- 
mon issue you will run into is that the printer isn't found during the installation process. If 
this is the case, check to make sure that the printer is on and connected to either the com- 
puter or the network. Wireless network printers are notorious for not being “found.” If 
needed, reseat the connections and try again, or see if you can connect the printer using 
a different method (for example, USB instead of wireless). 


The second common issue is that the printer driver won't install. Be sure that any other 
instances of that type of printer aren't already installed on the computer. If you just 
removed the old printer driver, reboot before reinstalling the new one. And, finally, down- 
load and install the newest driver from the manufacturer's website. 





Impact Printer Problems 


Impact printers are so named because they rely on making a physical impact in order to 
print. These are typically dot-matrix or daisy wheel printers. The impact printer’s print 
head will be activated and forced up against the ink ribbon, making a character or pattern 
on the paper. Impact printers are relatively simple devices; therefore, only a few problems 
usually arise. We will cover the most common problems and their solutions here. 
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Low Print Quality 


Problems with print quality are easy to identify. When the printed page comes out of the 
printer, the characters may be too light or have dots missing from them. Table 14.3 details 
some of the most common impact print quality problems, their causes, and their solutions. 


TABLE 14.3 Common impact print quality problems 


Characteristics 


Cause 


Solution 





Consistently faded or light 
characters 


Print lines that go from dark 
to light as the print head 
moves across the page 


A small, blank line running 
through a line of print 
(consistently) 


A small, blank line running 
through a line of print 
(intermittently) 


A small, dark line running 
through a line of print 


Printer making a printing 
noise, but no print appears 
on the page 


Printer printing garbage, 
such as garbled characters 


Worn-out printer ribbon 


Printer ribbon-advance gear 
slipping 


Print head pin stuck inside 
the print head 


A broken, loose, or shorting 
print head cable 


Print head pin stuck in the out 
position 


Worn, missing, or improperly 
installed ribbon cartridge 


Cable partially unhooked, 
wrong driver selected, or bad 
printer control board (PCB) 


Printout Jams Inside the Printer 


See if you can adjust the 
print head to be closer to 
the ribbon. If not (or if it 
doesn’t help), replace the 
ribbon with a new, vendor- 
recommended ribbon. 


Replace the ribbon- 
advance gear or 
mechanism. 


Replace the print head. 


Secure or replace the print 
head cable. 


Replace the print head. 
(Pushing the pin in may 
damage the print head.) 


Replace the ribbon 
cartridge correctly. 


Hook up the cable 
correctly, select the correct 
driver, or replace the PCB 
(respectively). 


Printer jams (aka “the printer crinkled my paper”) are very frustrating because they always 
seem to happen more than halfway through your 50-page print job, requiring you to take 
time to remove the jam before the rest of your pages can print. A paper jam happens when 
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something prevents the paper from advancing through the printer evenly. There are gener- 
ally three causes of printer jams: an obstructed paper path, stripped drive gears, and using 
the wrong paper. 

Obstructed paper paths are often difficult to find. Usually it means disassembling the 
printer to find the bit of crumpled-up paper or other foreign substance that’s blocking 
the paper path. A common obstruction is a piece of the “perf”’—the perforated sides of 
tractor-feed paper—that has torn off and gotten crumpled up and then lodged in the paper 
path. It may be necessary to remove the platen roller and feed mechanism to get at the 
obstruction. 

Stripped drive gears cause the paper to feed improperly, causing it to crinkle and cause 
jams. Using the wrong paper, such as thick paper when the platen has been set for thin 
paper, can also cause jams. When loading new paper, always be sure that the platen is 
properly adjusted. 


P label or even a whole sheet of labels becomes misaligned or jammed, do 
not roll the roller backward to realign the sheet. The small plastic paper 
guide that most impact printers use to control the forward movement of 
the paper through the printer will peel the label right off its backing if you 
reverse the direction of the paper. Once the label is free, it can easily get 
stuck under the platen, causing paper jams. A label stuck under the platen 
is almost impossible to remove without disassembling the paper-feed 
assembly. If a label is misaligned, try realigning the whole sheet of labels 
slowly using the feed roller (with the power off), moving it in very small 
increments. 


i Use extra caution when printing peel-off labels in impact printers. If a 


Stepper Motor Problems 


Printers use stepper motors to move the print head back and forth as well as to advance 
the paper. The carriage motor is responsible for the back-and-forth motion while the main 
motor advances the paper. These motors get damaged when they are forced in any direction 
while the power is on. This includes moving the print head over to install a printer ribbon 
as well as moving the paper-feed roller to align paper. These motors are very sensitive to 
stray voltages. If you are rotating one of these motors by hand, you are essentially turning 
it into a small generator and thus damaging it. 

A damaged stepper motor is easy to detect. Damage to the stepper motor will cause it 
to lose precision and move farther with each step. If the main motor is damaged (which is 
more likely to happen), lines of print will be unevenly spaced. If the print head motor goes 
bad, characters will be scrunched together. If a stepper motor is damaged badly enough, it 
won’t move at all in any direction; it may even make high-pitched squealing noises. If any 
of these symptoms appear, it’s time to replace one of these motors. 

Stepper motors are usually expensive to replace—about half the cost of a new printer! 
Damage to them is easy to avoid; the biggest key is to not force them to move when the 
power is on. 
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Inkjet Printer Problems 


An inkjet printer has many of the same types of parts as an impact printer. In this sense, 
it’s almost as though the inkjet technology is simply an extension of the technology used in 
impact printers. The parts on an inkjet can be divided into the following four categories: 


= Print head/ink cartridge 

= Print head carriage, belt, and stepper motor 
= Paper-feed mechanism 

= Control, interface, and power circuitry 


Perhaps the most obvious difference between inkjet and impact printers is that impact 
printers often use tractor-feed paper, whereas inkjets use normal paper. The differences 
don’t end there, though. Inkjet printers work by spraying ink (often in the form of a bubble) 
onto a page. The pattern of the bubbles forms images on the paper. 

Inkjet printers are the most common type of printer found in homes because they are inex- 
pensive and produce good-quality images. For this reason, you need to understand the most 
common problems with these printers so that your company can service them effectively. Let’s 
take a look at some of the most common problems with inkjet printers and their solutions. 


Print Quality 


The majority of inkjet printer problems are quality problems. Ninety-nine percent of these 
can be traced to a faulty ink cartridge. With most inkjet printers, the ink cartridge contains 
the print head and the ink. The major problem with this assembly can be described by “If 
you don’t use it, you lose it.” The ink will dry out in the small nozzles and block them if 
they are not used at least once a week. 

An example of a quality problem is when you have thin, blank lines present in every line 
of text on the page. This is caused by a plugged hole in at least one of the small, pinhole ink 
nozzles in the print cartridge. Another common problem is faded printing. Replacing the 
ink cartridge generally solves these issues. 


ZL As we warned in Chapter 5, some people try to save a buck by refilling 

ING their ink cartridge when they need to replace it. If you are one of them, 
stop! Don’t refill your ink cartridges! Almost all ink cartridges are not 
designed to be refilled. They are designed to be used once and disposed of 
(preferably sent to a recycling center). By refilling them, you make a hole in 
them. Ink can leak out, and the printer will need to be cleaned. The ink will 
probably also be of the wrong type, and print quality can suffer. Finally, 
using a refilled cartridge may void the printer’s warranty. 


If an ink cartridge becomes damaged or develops a hole, it can put too much ink on the 
page and the letters will smear. Again, the solution is to replace the ink cartridge. (You 
should be aware, however, that a very small amount of smearing is normal if the pages are 
laid on top of each other immediately after printing.) 
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One final print quality problem that does not directly involve the ink cartridge occurs 
when the print quickly goes from dark to light and then prints nothing. As previously men- 
tioned, ink cartridges dry out if not used. That’s why the manufacturers include a small 
suction pump inside the printer that primes the ink cartridge before each print cycle. If this 
priming pump is broken or malfunctioning, this problem will manifest itself and the pump 
will need to be replaced. 


pearing ever happens to you and you really need to print a couple of 
pages, try this trick. First, take the ink cartridge out of the printer. Then 
squirt some window cleaner on a paper towel and gently tap the print head 
against the wet paper towel. The force of the tap plus the solvents in the 
window cleaner should dislodge any dried ink, and the ink will flow freely 
again. Just be careful to not rub the paper towel across the print head, 
because this could damage the nozzles. 


i If the problem of the ink quickly going from dark to light and then disap- 
P 


After you install a new cartridge into many inkjet printers, the print heads in that 
cartridge must be aligned. Print head alignment is the process by which the print head is 
calibrated for use. A special utility that comes with the printer software is used to do this. 
Sometimes it’s run from the printer itself, and other times from the computer the printer 
is installed on. They vary a bit in how they work. For example, one utility might have the 
printer print several vertical and horizontal lines with numbers next to them. The utility 
then displays a screen and asks you to choose the horizontal and vertical lines that are the 
most “in line.” Once you enter the numbers, the software understands whether the print 
head(s) are out of alignment, which direction, and by how much. The software then makes 
slight modifications to the print driver software to tell it how much to offset when printing. 
Other calibration software will print a pattern and then ask you to put the newly printed 
page on the scanner portion of the printer. It will then scan the pattern to make sure that 
the heads are properly aligned. Occasionally, alignment must be done several times to get 
the images to align properly. 


Most new inkjet printers automatically align the print head, and no interac- 
TE tion is required on your part. Even if this is the case, your printer software 


may have an option for you to be able to align the print heads manually. 


Color Output Problems 


Sometimes, when you print a color document, the colors might not be the same colors that you 
expected based on what you saw on the screen. A few different issues could cause this prob- 
lem. First, ink could be bleeding from adjacent areas of the picture, causing the color to be off. 
A leaking cartridge can cause this, as can using the wrong type of paper for your printer. 

If you know that you’re using the right paper, try cleaning the print cartridges using 
the software utility that should have been included with the printer software. Once you do 
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that, print a test page to confirm that the colors are correct. On most color printers, the 
test page will print colors in a pattern from left to right that mirrors the way the ink car- 
tridges are installed. That brings us to our second potential problem: The ink cartridges are 
installed in the wrong spot. (This is for printers with multiple color ink cartridges.) That 
should be easy to check. Obviously, if that’s the problem, put the color cartridges where 
they’re supposed to be. 

Third, if the ink that comes out of the cartridge doesn’t match the label on the cartridge, 
try the self-cleaning utility. If that doesn’t help, replace the cartridge. Finally, if one of the 
colors doesn’t come out at all and self-cleaning doesn’t help, just replace the cartridge. 


Paper Jams 


Inkjet printers have pretty simple paper paths, so paper jams due to obstructions are less 
likely than they are on impact printers. They are still possible, however, so an obstruction 
shouldn’t be overlooked as a possible cause of jamming. 

Paper jams in inkjet printers are usually due to one of two things: 


= A worn pickup roller 
= The wrong type of paper 


The pickup roller usually has one or two D-shaped rollers mounted on a rotating shaft. 
When the shaft rotates, one edge of the D roller rubs against the paper, pushing it into the 
printer. When the roller gets worn, it gets smooth and doesn’t exert enough friction against 
the paper to push it into the printer. 

If the paper used in the printer is too smooth, it can cause the same problem. Pickup 
rollers use friction, and smooth paper doesn’t offer much friction. If the paper is too 
rough, on the other hand, it acts like sandpaper on the rollers, wearing them smooth. 
Here’s a rule of thumb for paper smoothness: Paper slightly smoother than a new dollar 
bill will work fine. 


Creased paper is acommon culprit in paper jams. The printer can crease 
OTE the paper if there are obstructions in the paper path or problems with the 
paper-feed mechanism. 


Paper-Feeding Problems 


You will normally see one of two paper-feeding options on an inkjet printer. The first is 
that the paper is stored in a paper tray on the front of the printer. The second, which is 
more common on smaller and cheaper models, is for the paper to be fed in vertically from 
the back of the printer in a paper feeder. Both types may also have manual feed or envelope 
feed options. 

Regardless of the feed style, the printer will have a paper-feed mechanism, which picks 
up the paper and feeds it into the printer. Inside the paper-feed mechanism are pickup 
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rollers, which are small rubber rollers that rub up against the paper and feed it into the 
printer. They press up against small rubber or cork patches known as separator pads. These 
help to keep the rest of the paper in the tray so that only one sheet is picked up at a time. A 
pickup stepper motor turns the pickup rollers. 

If your printer fails to pick up paper, it could indicate that the pickup rollers are too 
worn. If your printer is always picking up multiple sheets of paper, it could be a couple of 
things, such as problems with the separator pads or your paper being too “sticky,” damp, 
or rough. Some printers that use vertical paper feeders have a lever with which you can 
adjust the amount of tension between the pickup rollers and the separator pads. If your 
printer is consistently pulling multiple sheets of paper, you might want to try to increase the 
tension using this lever. 

The final component is the paper-feed sensor. This sensor is designed to tell the printer 
when it’s out of paper, and it rarely fails. When it does, the printer will refuse to print 
because it thinks it is out of paper. Cleaning the sensor might help, but if not, you should 
replace the printer. 


Stepper Motor Problems 


Inkjet printers use stepper motors, just like impact printers. On an inkjet, the print head 
carriage is the component containing the print head that moves back and forth. A car- 
riage stepper motor and an attached belt (the carriage belt) are responsible for the move- 
ment. The print head carriage stays horizontally stable by resting on a metal stabilizer bar. 
Another stepper motor is responsible for advancing the paper. 

Stepper motor problems on an inkjet printer will look similar to the ones on an impact 
printer. That is, if the main motor is damaged, lines of print will be unevenly spaced, and if 
the print head motor goes bad, characters will be scrunched together. A lot of damage may 
cause the stepper motor to not move at all and possibly make high-pitched squealing noises. 
If any of these symptoms appear, it’s time to replace one of these motors. As with impact 
printers, stepper motors can be expensive. It may make more economical sense to replace 
the printer. 


Power Problems 


Inkjet printers have internal power circuits that convert the electricity from the outlet into 

voltages that the printer can use—typically, 12V and 5V. The specific device that does this 
is called the transformer. If the transformer fails, the printer will not power up. If this hap- 
pens, it’s time to get a new printer. 


Laser Printer Problems 


The process that laser printers use to print, called the electrophotographic (EP) imaging 
process, is the most complex process of all commonly used printers. You should have already 
memorized the seven-step EP process for the 220-1001 A+ exam, but perhaps you’ve forgot- 
ten a bit. Table 14.4 provides a short description of what happens in each step. 
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TABLE 14.4 The EP imaging process 





Step Action 

Processing The page to be printed gets rendered, one horizontal strip at a time. The 
image is stored in memory for printing. 

Charging The charging corona gets a high voltage from the high-voltage power 
supply (HVPS). It uses the voltage to apply a strong uniform negative 
charge (-600VDC) to the photosensitive drum. 

Exposing The laser scans the drum. Wherever it touches the drum, the charge is 
reduced from -600VDC to around -100VDC. The pattern formed on the 
drum will be the image that is printed. 

Developing The developing roller acquires a-600VDC charge from the HVPS and 


Transferring 
Fusing 


Cleaning 


Zz 


picks up toner, which gets the same —-600VDC charge. As the developing 
toner rolls by the photosensitive drum, the toner is attracted to the 
lesser-charged (-100VDC) areas on the photosensitive drum and sticks to 
it in those areas. 


The charging corona wire or roller acquires a strong positive charge 
(+600VDC) and transfers it to the paper. As the photosensitive drum with 
ink on it rolls by, the ink is attracted to the paper. 


The 350° F fuser roller melts the toner paper and the rubberized pressure 
roller presses the melted toner into the paper, making the image 
permanent. 


A rubber blade scrapes any remaining toner off the drum, and a fluores- 
cent lamp discharges any remaining charge on the photosensitive drum. 


The descriptions in Table 14.4 are summaries of the EP imaging process. 
For detailed descriptions, see Chapter 5. 


Looking at the steps involved in laser printing, it’s pretty easy to tell that laser printers 
are the most complex printers that we have discussed. The good news, though, is that most 
laser printer problems are easily identifiable and have specific fixes. Let’s discuss the most 
common laser and page printer problems and their solutions. 


Zr 


Don’t forget to perform periodic preventive maintenance on your laser 
printers. It can help eliminate many potential problems before they 
happen. Preventive maintenance includes cleaning the printer and 
using manufacturer-recommended maintenance kits. 
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Power Problems 


If you turn on your laser printer and it doesn’t respond normally, there could be a problem 
with the power it’s receiving. Of course, the first thing to do is to ensure that it’s plugged in. 
A laser printer’s DC power supply provides three different DC voltages to printer com- 
ponents. These can be checked at a power interface labeled J210, which is a 20-pin female 

interface. Pin 1 will be in the lower-left corner, and the pins along the bottom will all be 
odd numbers, increasing from left to right. 


w You can use a multimeter to test printer voltages. 
P 


Using the multimeter, you should find the following voltages: 


= Pini +5V 
= Pin 5-SV 
= Pin 9 +24V 


If none of the voltages are reading properly, then you probably need to replace the fuse 
in the DC power supply. If one or more (but not all) of the voltages aren’t reading prop- 
erly, then the first thing to do is to remove all optional hardware in the printer (including 
memory) and test again. If the readings are still bad, then you likely need to replace the 
DC power supply. 


No Connectivity (IP Issues) 


You can connect many laser printers directly to your network by using a network cable 
(such as Category 5, Se, or 6) or by using a wireless network adapter with the printer. In 
cases like these, the printer acts as its own print server (typically, print server software is 
built into the printer), and it can speed up printing because you don’t have a separate print 
server translating and then sending the directions to the printer. 

For printers such as these, no connectivity can be a sign of improperly configured IP set- 
tings, such as the IP address. While each printer is somewhat different, you can manually 
configure most laser printers’ IP settings a number of ways: 


= Through the printer’s LCD control panel. For example, on several HP LaserJet models, 
you press Menu, navigate to the Network Config menu, select TCP/IP Config, select 
Manual, and then enter the IP address. You would then also configure the subnet mask 
and default gateway. 


= By using Telnet to connect to the printer’s management software from your computer. 
Note that Telnet is not secure. If you need a secure connection, use Secure Shell (SSH) 
instead. 


= By using the management software that came with your printer 


You can also configure most IP printers to obtain an IP address automatically from a 
Dynamic Host Configuration Protocol (DHCP) server. When the printer is powered up, it 
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will contact the server to get its IP configuration information, just like any other client on 
the network. While this may be convenient, it’s usually not a good idea to assign dynamic 
IP addresses to printers. Client computers will have their printer mapped to a specific IP 
address; if that address is changed, you will have a lot of people complaining about no con- 
nectivity. If you are using the DHCP server to manage all of your network’s IP addresses, 
be sure to reserve a static address for the printers. 


the printer’s control panel. Then post the IP information near the printer so 


To see the setting of a printer’s IP address, print a configuration page from 
P 
that users can easily connect to it. 


Nothing Prints 


You tell your computer to print, but nothing comes out of the printer. This problem is prob- 
ably the most challenging to solve because several different things could cause it. Are you 
the only one affected by the problem, or are others having the same issue? Is the printer 
plugged in, powered on, and online? As with any troubleshooting, check your connections 
first. 

Sometimes when nothing prints, you get a clue as to what the problem is. The printer 
may give you an “out of memory” error or something similar. Another possibility is that 
the printer will say “processing data” (or something similar) on its LCD display and noth- 
ing will print. It’s likely that the printer has run out of memory while trying to process the 
print job. If your printer is exhibiting these symptoms, it’s best to power the printer off and 
then power it back on. 


P Be aware that large print jobs may cause the printer to say “processing 
‘i data” for several minutes before the print job starts. There is nothing 
wrong with this, although it’s possible that your printer could stand a 
memory upgrade. But if the printer exhibits this behavior for a long time, 
say 20 or 30 minutes, it may be best to cycle the power. 


Paper Jams 


Laser printers today run at copier speeds. Because of this, their most common problem is 

paper jams. Paper can get jammed in a printer for several reasons. First, feed jams happen 
when the paper-feed rollers get worn (similar to feed jams in inkjet printers). The solution 
to this problem is easy: Replace the worn rollers. 

Another cause of feed jams is related to the drive gear of the pickup roller. The drive 
gear (or clutch) may be broken or have teeth missing. Again, the solution is to replace it. 
To determine if the problem is a broken gear or worn rollers, print a test page, but leave 
the paper tray out. Look into the paper-feed opening with a flashlight and see if the paper 
pickup roller(s) are turning evenly and don’t skip. If they turn evenly, the problem is prob- 
ably worn rollers. 
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A If worn pickup rollers are causing your paper-feed jams, there is something 
P that you can do to get your printer working while you're waiting for the 
replacement pickup rollers. Scuff the feed rollers with a Scotch-Brite pot- 
scrubber pad (or something similar) to roughen them up. This trick works 
only once. After that, the rollers aren't thick enough to touch the paper. 


Worn exit rollers can also cause paper jams. These rollers guide the paper out of the 
printer into the paper-receiving tray. If they are worn or damaged, the paper may catch on 
its way out of the printer. These types of jams are characterized by a paper jam that occurs 
just as the paper is getting to the exit rollers. If the paper jams, open the rear door and see 
where the paper is located. If the paper is very close to the exit rollers, they are probably the 
problem. 

The solution is to replace all the exit rollers. You must replace them all at the same time 
because even one worn exit roller can cause the paper to jam. Besides, they’re inexpensive. 
Don’t skimp on these parts if you need to have them replaced. 

Paper jams can also be the fault of the paper. If your printer consistently tries to feed 
multiple pages into the printer, the paper isn’t dry enough. If you live in an area with high 
humidity, this could be a problem. We’ve heard some solutions that are pretty far out but 
work (like keeping the paper in a Tupperware-type airtight container or microwaving it to 
remove moisture). The best all-around solution, however, is humidity control and keeping 
the paper wrapped until it’s needed. Keep the humidity around 50 percent or lower (but 
above 25 percent if you can, in order to avoid problems with electrostatic discharge). 








E Real World Scenario 


Printer Triage 


One of the authors relates the following story. He was in the local hospital ER a while ago 
having his hand examined. (He had cut it pretty badly on some glass.) The receptionist 
asked him a few questions, filled out a report in the medical database on her computer, 
and printed it. When the paper starting coming out of the laser printer, she grabbed it and 
“ripped” it from the printer, as you might do if the paper were in an old typewriter. The 
printer’s exit rollers complained bitterly and made a noise that made him cringe. She did 
this for every sheet of paper she printed. 


The following week, that printer came in for service because it was jamming repeatedly. 
The problem? Worn exit rollers. 


He had a word with the person in charge of computer repair at that hospital and saved 
them from many future repairs. The lesson? Printers don’t have to be treated with kid 

gloves, but using them properly can prolong their life and reduce the need for service 
repairs. 
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Finally, a grounded metal strip called the static-charge eliminator strip inside the printer 
drains the transfer corona charge away from the paper after it has been used to transfer 
toner from the EP cartridge. If that strip is missing, broken, or damaged, the charge will 
remain on the paper and may cause it to stick to the EP cartridge, causing a jam. If the 
paper jams after reaching the transfer corona assembly, this may be the cause. 


Blank Pages 


It’s really annoying to print a 10-page contract and receive 10 pages of blank paper from 
the printer. Blank pages are a somewhat common occurrence in laser printers. Somehow, 
the toner isn’t being put on the paper. There are three major causes of blank pages: 


= The toner cartridge 
= The transfer corona assembly 


= The high-voltage power supply (HVPS) 


Toner Cartridge The toner cartridge is the source of most quality problems because it 
contains most of the image-formation pieces for laser printers. Let’s start with the obvious. 
A blank page or faded prints will come out of the printer if there is no toner or low toner in 
the cartridge. It might sound simple, but some people think these things last forever. Many 
laser printers give some sort of warning if the toner cartridge is low, but it’s easy to check. 
Just open the printer, remove the toner cartridge, and shake it. You will be able to hear if 
there’s toner inside the cartridge. If it’s empty, replace it with a known, good, manufacturer- 
recommended toner cartridge. If it is not yet empty, shaking it redistributes the toner and 
may provide better printing for some time. 


H When you're shaking a toner cartridge, loose toner can fall out of the car- 
w tridge and get on your clothing. Always hold the toner cartridge away from 
your body when shaking it. 

Another issue that crops up rather often is the problem of using refilled or reconditioned 
toner cartridges. During their recycling process, these cartridges may be filled with the 
wrong kind of toner (for example, one with an incorrect composition). This can cause toner 
to be repelled from the EP drum instead of being attracted to it. Thus, there’s no toner on 
the page because there was no toner on the EP drum to begin with. The solution once again 
is to replace the toner cartridge with the type recommended by the manufacturer. 

A third problem related to toner cartridges happens when someone installs a new toner 
cartridge and forgets to remove the sealing tape that is present to keep the toner in the car- 
tridge during shipping. The solution to this problem is as easy as it is obvious: Remove the 
toner cartridge from the printer, remove the sealing tape, and reinstall the cartridge. 


pressed air to blow it away. Don’t do that with toner, though, because it 
will make a huge mess. If you have a toner spill, use a specialized toner 
vacuum to pick it up. Also, never use a damp cloth to try to clean up a toner 
spill. If a cloth is needed, use a dry one. 


i Most of the time, if you have dust or debris in a printer, you can use com- 
P 
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Transfer Corona Assembly The second cause of the blank-page problem is a damaged or 
missing transfer corona wire or damaged transfer corona roller. If a wire is lost or damaged, 
the developed image won’t transfer from the EP drum to the paper; thus, no image appears 
on the printout. To determine if this is causing your problem, do the first half of the self-test 
(described later in this chapter in the “Self-Tests” section). If there is an image on the drum 
but not on the paper, you know that the transfer corona assembly isn’t doing its job. 


To check if the transfer corona assembly is causing the problem, open the cover and exam- 
ine the wire (or roller, if your printer uses one). The corona wire is hard to see, so you may 
need a flashlight. You will know if it’s broken or missing just by looking at it. (It will either 
be in pieces or just not be there.) If it’s not broken or missing, the problem may be related to 
the high-voltage power supply. 


The transfer corona wire (or roller) is a relatively inexpensive part. You can easily replace it 
by removing two screws and having some patience. 


High-Voltage Power Supply The high-voltage power supply (HVPS) supplies high-voltage, 
low-current power to both the charging and transfer corona assemblies in laser printers. If 
it’s broken, neither corona will work properly. If the self-test shows an image on the drum 
but none on the paper, and the transfer corona assembly is present and not damaged, then 
the HVPS is at fault. 


All-Black Pages 


Only slightly more annoying than 10 blank pages are 10 black pages. This happens when 
the charging unit (the charging corona wire or charging corona roller) in the toner cartridge 
malfunctions and fails to place a charge on the EP drum. Because the drum is grounded, it 
has no charge. Anything with a charge (like toner) will stick to it. As the drum rotates, all 
of the toner is transferred to the page and a black page is formed. 

This problem wastes quite a bit of toner, but it can be fixed easily. The solution (again) is 
to replace the toner cartridge with a known, good, manufacturer-recommended one. If that 
doesn’t solve the problem, then the HVPS is at fault. (It’s not providing the high voltage 
that the charging corona needs to function.) 


Repetitive Small Marks or Defects 


Repetitive marks occur frequently in heavily used (as well as older) laser printers. Toner 
spilled inside the printer may be causing the problem. It can also be caused by a crack or 
chip in the EP drum (this mainly happens with recycled cartridges), which can accumulate 
toner. In both cases, some of the toner gets stuck onto one of the rollers. Once this happens, 
every time the roller rotates and touches a piece of paper, it leaves toner smudges spaced a 
roller circumference apart. 

The solution is relatively simple: Clean or replace the offending roller. To help you figure 
out which roller is causing the problem, the service manuals contain a chart like the one 
shown in Figure 14.14. (Some larger printers will also have the roller layout printed inside 
the service door.) To use the chart, place the printed page next to it. Align the first occur- 
rence of the smudge with the top arrow. The next smudge will line up with one of the other 
arrows. The arrow it lines up with tells you which roller is causing the problem. 
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FIGURE 14.14 Laser printer roller circumference chart 





First appearance of printing problem 





Registration assembly transfer roller 0.5 inch 





Upper registration roller 1.5 inches 
Lower registration roller 1.75 inches 
EP cartridge developer roller 2.0 inches 








Lower fusing assembly roller 2.56 inches (65 mm) 


Upper fusing assembly roller 3.16 inches (80 mm) 





EP cartridge photo drum 3.75 inches 


P Remember that the chart in Figure 14.14 is only an example. Your printer 
‘gr may have different-sized rollers and thus need a different chart. Check 
your printer’s service documentation for a chart like this. It is valuable in 
determining which roller is causing a smudge. 


Vertical White Lines on the Page 


Vertical white lines running down all or part of the page are a relatively common problem 
on older printers, especially ones that don’t see much maintenance. Foreign matter (more 
than likely toner) caught on the transfer corona wire causes this. The dirty spots keep the 
toner from being transmitted to the paper (at those locations, that is), with the result that 
streaks form as the paper progresses past the transfer corona wire. 

The solution is to clean the corona wires. Many laser printers contain a small corona 
wire brush to help with this procedure. It’s usually a small, green-handled brush located 
near the transfer corona wire. To use it, remove the toner cartridge and run the brush in the 
charging corona groove on top of the toner cartridge. Replace the cartridge, and then use 
the brush to remove any foreign deposits on the transfer corona. Be sure to put it back in its 
holder when you’re finished. 


Vertical Black Lines on the Page 


A groove or scratch in the EP drum can cause the problem of vertical black lines running 
down all or part of the page. Because a scratch is lower than the surface, it doesn’t receive 
as much (if any) of a charge as the other areas. The result is that toner sticks to it as though 
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it were discharged. The groove may go around the circumference of the drum, so the line 
may go all the way down the page. 

Another possible cause of vertical black lines is a dirty charging corona wire. A dirty 
charging corona wire prevents a sufficient charge from being placed on the EP drum. 
Because the charge on the EP drum is almost zero, toner sticks to the areas that correspond 
to the dirty areas on the charging corona. 

The solution to the first problem is, as always, to replace the toner cartridge (or EP 
drum, if your printer uses a separate EP drum and toner). You can also solve the second 
problem with a new toner cartridge, although that would be an extreme solution. It’s easier 
to clean the charging corona with the brush supplied with the cartridge. 


Image Smudging 

If you can pick up a sheet from a laser printer, run your thumb across it, and have the 
image come off on your thumb, then you have a fuser problem. The fuser isn’t heating 
the toner and fusing it into the paper. This could be caused by a number of things—but 
all of them can be handled by a fuser replacement. For example, if the halogen light 
inside the heating roller has burned out, that would cause the problem. The solution is 
to replace the fuser. The fuser can be replaced with a rebuilt unit, if you prefer. Rebuilt 
fusers are almost as good as new ones, and some even come with guarantees. Plus, they 
cost less. 


The whole fuser may not need to be replaced. Fuser components can be 
P ordered from parts suppliers and can be rebuilt by you. For example, if the 
fuser has a bad lamp, you can order a lamp and replace it in the fuser. 


A similar problem occurs when small areas of smudging repeat themselves down the 
page. Dents or cold spots in the fuser heat roller cause this problem. The only solution is to 
replace either the fuser assembly or the heat roller. 


Ghosting 


Ghosting (or ghost images) is what you have when you can see faint images of previously 
printed pages on the current page. This is caused by one of two things: a broken cleaning 
blade or bad erasure lamps. A broken cleaning blade causes old toner to build up on the 
EP drum and consequently present itself in the next printed image. If the erasure lamps 
are bad, then the previous electrostatic discharges aren’t completely wiped away. When the 
EP drum rotates toward the developing roller, some toner sticks to the slightly discharged 
areas. 

If the problem is caused by a broken cleaner blade, you can replace the toner car- 
tridge. If it’s caused by bad erasure lamps, you’ll need to replace them. Because the toner 
cartridge is the least expensive cure, you should try that first. Usually, replacing the 
toner cartridge will solve the ghosting problem. If it doesn’t, you will have to replace the 
erasure lamps. 
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Printer Prints Pages of Garbage 


This has happened to everyone at least once. You print a one-page letter, but instead of the 
letter you have 10 pages of what looks like garbage (or garbled characters) or many more 
pages with one character per page come out of the printer. This problem comes from one of 
two different sources: the printer driver software or the formatter board. 


Printer Driver The correct printer driver needs to be installed for the printer and oper- 
ating system. For example, if you have an HP LaserJet Pro MFP M148 and a Windows 

10 computer, then you need to install an HP LaserJet Pro MFP M148 driver made for 
Windows 10. Once the driver has been installed, it must be configured for the correct page- 
description language: PCL or PostScript. Most HP LaserJet printers use PCL (but can be 
configured for PostScript). Determine which page-description language your printer has 
been configured for, and set the printer driver to the same setting. If this is not done, you 
will get garbage out of the printer. 


Most printers that have LCD displays will indicate that they are in 
P PostScript mode with a PS or PostScript somewhere in the display. 


If the problem is the wrong driver setting, the garbage that the printer prints will look like 
English. That is, the words will be readable, but they won’t make any sense. 


Formatter Board The other cause of several pages of garbage being printed is a bad for- 
matter board. This circuit board turns the information the printer receives from the com- 
puter into commands for the various components in the printer. Usually, problems with the 
formatter board produce wavy lines of print or random patterns of dots on the page. 


Replacing the formatter board in a laser printer is relatively easy. Usually, this board is 
installed under the printer and can be removed by loosening two screws and pulling it out. 
Typically, replacing the formatter board also replaces the printer interface, which is another 
possible source of garbage printouts. 


Example Printer Testing: HP LaserJet 


Now that we’ve defined some of the possible sources of problems with laser printers, let’s 
discuss a few of the testing procedures that you use with them. We’ll discuss HP LaserJet 
laser printers because they are the most popular brand of laser printer, but the topics cov- 
ered here apply to other brands of laser printers as well. 

We’ll look at two ways to troubleshoot laser printers: self-tests and error codes (for laser 
printers with LCD displays). 


Self-Tests 


You can perform three tests to narrow down which assembly is causing the problem: the 
engine self-test, the engine half self-test, and the secret self-test. These tests, which the 
printer runs on its own when directed by the user, are internal diagnostics for printers, and 
they are included with most laser printers. 
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The self-tests explained here are for illustrative purposes only. Information 
OTE on the tests available for any given printer will be found in the printer’s 
manual, which can be obtained from the printer manufacturer’s website. 


Engine Self-Test The engine self-test tests the print engine of the LaserJet. This test causes 
the printer to print a single page with vertical lines running its length. If an engine self-test 
can be performed, you know that the laser print engine can print successfully. To perform 
an engine self-test, you must press the printer’s self-test button, which is hidden behind a 
small cover on the side of the printer (see Figure 14.15). The location of the button varies 
from printer to printer, so you may have to refer to the printer manual. Using a pencil or 
probe, press the button. The print engine will start printing the test page. 


FIGURE 14.15 Print engine self-test button location. The location may vary on 
different printers. 





rm 







Half Self-Test A print engine half self-test is performed the same way as the self-test, but 
you interrupt it halfway through the print cycle by opening the cover. This test is useful in 
determining which part of the print process is causing the printer to malfunction. If you 
stop the print process and part of a developed image is on the EP drum and part has been 
transferred to the paper, then you know that the pickup rollers, registration rollers, laser 
scanner, charging roller, EP drum, and transfer roller are all working correctly. You can 
stop the half self-test at various points in the print process to determine the source of a 
malfunction. 


Secret Self-Test To activate this test, you must first put the printer into service mode. 

To accomplish this, turn on the printer while simultaneously holding down the On Line, 
Continue, and Enter buttons. (That’s the first secret part, because nobody knows it unless 
somebody tells them.) When the screen comes up blank, release the keys and press, in 
order, Continue and then Enter. The printer will perform an internal self-test and then dis- 
play 00 READY. At this point, you are ready to initiate the rest of the secret self-test. Take 
the printer offline by pressing the On Line button, press the Test button on the front panel, 
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and hold the button until you see the 04 SELF TEST message. Then release the Test button. 
This will cause the printer to print one self-test page. (If you want a continuous printout, 
instead of releasing the Test button at the 04 SELF TEST message, keep holding the Test 
button. The printer will print continuous self-test pages until you power it off or press On 
Line, or until it runs out of paper.) 


Error Codes 


In addition to the self-tests, you have another tool for troubleshooting HP laser printers. 
Error codes are a way for the LaserJet to tell the user (and a service technician) what’s 
wrong. Table 14.5 details some of the most common codes displayed on an HP LaserJet. 


TABLE 14.5 HP LaserJet error messages 





Message Description 

00 READY The printer is in standby mode and ready to print. 

02 WARM UP The fuser is being warmed up before the 00 READY state. 
04 SELF TEST or A full self-test has been initiated from the front panel. 

05 SELF TEST 


11 PAPER OUT 


13 PAPER JAM 


14 NO EP CART 


15 ENGINE TEST 


16 TONER LOW 


50 SERVICE 


51 ERROR 


The paper tray sensor is reporting that there is no paper in the 
paper tray. The printer will not print as long as this error exists. 


A piece of paper is caught in the paper path. To fix this problem, 
open the cover and clear the jam (including all pieces of paper 
causing the jam). Close the cover to resume printing. The printer 
will not print as long as this error exists. 


There is no EP cartridge (toner cartridge) installed in the printer. 
The printer will not print as long as this error exists. 


An engine self-test is in progress. 


The toner cartridge is almost out of toner. Replacement will be 
necessary soon. 


A fuser error has occurred. This problem is most commonly 
caused by fuser lamp failure. Power off the printer, and replace the 
fuser to solve the problem. The printer will not print as long as this 
error exists. 


There is a laser-scanning assembly problem. Test and replace, if 
necessary. The printer will not print as long as this error exists. 
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Message Description 





52 ERROR The scanner motor in the laser-scanning assembly is 
malfunctioning. Test and replace as per the service manual. The 
printer will not print as long as this error exists. 


55 ERROR There is a communication problem between the formatter and 
the DC controller. Test and replace as per the service manual. The 
printer will not print as long as this error exists. 








When There Is No Display 


Several times in the printer troubleshooting section, we have mentioned the LCD screen 
or printer display. Nearly every laser printer and many inkjet printers have them. They are 
useful for configuring the device as well as relaying information to you. But what about 
when the screen itself doesn’t work? 


The screen assembly on a laser printer needs several components to work properly, 
including the formatter board, engine controller board, and cables connecting the display 
to each. If any of those components have failed, you could end up with a blank display. It 
could also be a failed low-voltage power supply (LVPS). 


The way to troubleshoot this is to run an engine self-test, which we have already dis- 
cussed. If there is no output from the engine self-test, then you have a problem with the 
power supply. If the test works, the device will print a page of lines, and you know that the 
LVPS is fine. Then it’s most likely the display itself, the printer’s memory (DIMMs), or the 
formatter board causing the problem. 





Troubleshooting Tips for HP LaserJet Printers 


Printer technicians usually use a set of troubleshooting steps to help them solve HP LaserJet 
printing problems. Let’s detail each of them to bring our discussion of laser printer trouble- 
shooting to a close: 


1. Is the exhaust fan operational? 


The exhaust fan is the first component to receive power when the printer is turned on. 
If you can feel air coming out of the exhaust fan, this confirms that AC voltage is pres- 
ent and power is turned on, that +5 VDC and +24VDC are being generated by the AC 
power supply (ACPS), and that the DC controller is functional. If there is no power to 
the printer (no lights, fan not operating), the ACPS is at fault. Replacement involves 
removing all printer covers and removing four screws. You can purchase a new ACPS 
module, but it is usually cheaper to replace it with a rebuilt unit. 
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1 If you are into electronics, you can probably rebuild the ACPS yourself 
P simply and cheaply. The main rectifier is usually the part that fails in these 
units; it can easily be replaced, if you know what you're doing. 


2. Do the control panel LEDs work? 


If so, the formatter board can communicate with the control panel. If the LEDs do not 
light, it could mean that the formatter board is bad, the control panel is bad, or the 
wires connecting the two are broken or shorting out. 


3. Does the main motor rotate at power up? 


Turn off the power. Remove the covers from the sides of the printer. Turn the printer 
back on and carefully watch and listen for main motor rotation. If you see and hear the 
main motor rotating, this indicates that a toner cartridge is installed, all photo sensors 
are functional, all motors are functional, and the printer can move paper (assuming 
that there are no obstructions). 


4. Does the fuser heat lamp light after the main motor finishes its rotation? 


You will need to remove the covers to see this. The heat lamp should light after the 
main motor rotation and stay lit until the control panel says 00 READY. 


5. Can the printer perform an engine test print? 


A sheet of vertical lines indicates that the print engine works. This test print bypasses 
the formatter board and indicates whether the print problem resides in the engine. If the 
test print is successful, you can rule out the engine as a source of the problem. If the test 
print fails, you will have to troubleshoot the printer further to determine which engine 
component is causing the problem. 


6. Can the printer perform a control panel self-test? 


This is the final test to ensure printer operation. If you can press the Test Page control 
panel button and receive a test printout, this means that the entire printer is working 
properly. The only possibilities for problems are outside the printer (interfaces, cables, 
and software problems). 


terns, based on their capabilities. Although the exact style of pattern may 
vary, the idea is the same for all printers. You’re checking to ensure that the 
printer can do what it’s capable of. Many test patterns will measure gra- 
dients and resolution as well as letter qualities at various font sizes. Color 
printers will also print color sections, whereas black-and-white printers will 
often produce patterns in grayscale. If you are experiencing print-quality 
issues, running a test pattern is a good way to check to see what's wrong 
with the printer. 


w Most printers will print a test page, which contains both colors and pat- 
P 
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Managing Print Jobs 


Most people know how to send a job to the printer. Clicking File and then Print, or pressing 
Ctrl+P on your keyboard, generally does the trick. But once the job gets sent to the printer, 
what do you do if it doesn’t print? 


P Keep in mind that in a networked environment, users need the proper per- 
P n missions both to install and to print to the printer. Not having permission 
will result in an “access denied” message (or something similar) and the 
inability to print. 


When you send a job to the printer, that print job ends up in a line with all other docu- 
ments sent to that printer. A series of print jobs waiting to use the printer is called the print 
queue. In most cases, the printer will print jobs on a first-come, first-served basis. (There 
are exceptions if you’ve enabled printing priorities in Printer Properties.) Once you send the 
job to the printer in Windows, a small printer icon will appear in the notification area in 
the lower-right corner of your Desktop, near the clock. By double-clicking it (or by right- 
clicking it and selecting the printer name), you will end up looking at the jobs in the print 
queue, like the one shown in Figure 14.16. 


FIGURE 14.16 _ Print jobs in the print queue in Windows 
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In Figure 14.16, you can see that the first document submitted (at the bottom of the 
list) has an error, which may explain why it hasn’t printed. All the other documents in the 
queue are blocked until the job with the error is cleared. You can clear it one of two ways. 
Either right-click the document and choose Cancel or from the Document menu, shown in 
Figure 14.17, choose Cancel. 

Note that from the menu shown in Figure 14.17, you can pause, resume, restart, and 
cancel print jobs as well as see properties of the selected print job. If you wanted to pause 
or cancel all jobs going to a printer, you would do that from the Printer menu, as shown in 
Figure 14.18. 


794 Chapter 14 = Hardware and Network Troubleshooting 


FIGURE 14.17 Printer Document menu in Windows 
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FIGURE 14.18 Printer menu in Windows 
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Once you have cleared the print job causing the problem, the next job will move to the top 
of the queue. It should show its status as Printing, like the one shown in Figure 14.19. But 
what if it shows that it’s printing but it still isn’t working? (We’re assuming that the printer is 
powered on, connected properly, and online.) It could be a problem with the print spooler. 


FIGURE 14.19 Print job printing correctly 
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If print jobs are processed very slowly, or if you are continually seeing “low 
memory” error messages, it might be a good time to upgrade the memory 


in the printer. 


Managing the Print Spooler 


The print spooler is a service that formats print jobs in a language that the printer under- 


stands. Think of it as a holding area where the print jobs are prepared for the printer. In 


Windows, the spooler is started automatically when Windows loads. 
If jobs aren’t printing and there’s no apparent reason why, it could be that the print 

spooler has stalled. To fix the problem, you need to stop and restart the print spooler. 

Exercise 14.2 walks you through stopping and restarting the spooler in Windows 10. 


Stopping and Restarting the Print Spooler in Windows 10 


1. Open the Services app by clicking Start and typing Services. The Services app will 


appear under Best Match. 


2. Inthe right pane, find the Print Spooler service, which is selected in Figure 14.20. 


FIGURE 14.20 Locating the Print Spooler service 
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3. Stop the spooler. There are several ways to do this. You can right-click the service 


name and choose Stop, click the Stop square above the list of services, or click Stop 
under where it says Print Spooler to the left of the services list. 
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EXERCISE 14.2 (continued) 


4. Restart the spooler by right-clicking the service name and choosing Start or by click- 
ing the Start arrow above the list of services. After the spooler has restarted, the ser- 
vice’s Status column should display Started. 


5. Close Computer Management. 


If you have a different version of Windows, the steps to stop and restart the spooler 
are the same as in Exercise 14.2; the only difference might be in how you get to Computer 
Management. 


If you have multiple failed print jobs in logs, such as in Windows Event 
P Viewer, stopping and restarting the print spooler is a good solution to try. 


If the printer is wireless, the failed jobs could also be a sign of intermittent 
connectivity issues. 


Printing a Test Page 


If your printer isn’t spitting out print jobs, it may be a good idea to print a test page to see 
if that works. The test page information is stored in the printer’s memory, so there’s no 
formatting or translating of jobs required. It’s simply a test to make sure that your printer 
hears your computer. 

When you install a printer, one of the last questions you’re asked is whether to print 
a test page. If there’s any question, go ahead and do it. If the printer is already installed, 
you can print a test page from the printer’s Properties window (right-click the printer and 
choose Printer Properties). Just click the Print Test Page button, and it should work. If 
nothing happens, double-check your connections and stop and restart the print spooler. If 
garbage prints, there is likely a problem with the printer or the print driver. 





Printer Issues 


As a reminder, the A+ exam objectives may test you on how to diagnose and fix the 
following printer issues: 


=» Streaks 

a Faded prints 

a Ghost images 

= Toner not fused to the paper 


=  Creased paper 
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a Paper not feeding 

a Paper jam 

= No connectivity 

a  Garbled characters on paper 
a Vertical lines on page 

a  Backed-up print queue 

n Low memory errors 

=» Access denied 

= Printer will not print 

= Color prints in wrong print color 
a Unable to install printer 

=» Error codes 

a Printing blank pages 

= No image on printer display 


a Multiple failed jobs in logs 





Troubleshooting Networking Problems 


As a technician, you are going to be called on to solve a variety of issues, including hard- 
ware, software, and networking problems. Networking problems can sometimes be the 
most tricky to solve, considering that it could be either a software or a hardware problem 
or a combination of the two causing your connectivity issue. 

The first adage for troubleshooting any hardware problem is to check your connections. 
That holds true for networking as well, but then your troubleshooting will need to go far 
deeper than that in a hurry. As with troubleshooting anything else, follow a logical proce- 
dure and be sure to document your work. 

Nearly all the issues tested by CompTIA have something to do with connectivity, which 
makes sense because that’s what networking is all about. Connectivity issues, when not 
caused by hardware, are generally the result of a messed-up configuration. And because the 
most common protocol in use today, TCP/IP, has a lot of configuration options, you can 
imagine how easy it is to configure something incorrectly. 

In the following sections, we’ll look at connectivity issues and how to resolve them. 
We'll also review several tools that we’ve talked about elsewhere in the book but which are 
handy for network troubleshooting as well. 
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CompTIA 220-1001 objective 5.7 combines wired and wireless networking. 
OTE We'll cover them together and note when specific differences exist. 


Resolving Connectivity Issues 


The whole purpose of using a network is to connect to other resources, right? So when 
networks don’t work like they’re supposed to, users tend to get a bit upset. The ubiq- 
uity of wireless networking has only made our jobs as technicians more complicated. 
Let’s take a look at some common issues that you might run across and how to deal 
with them. 


No Connectivity 


Let’s start with the most dire situation: no connectivity. Taking a step back to look at the 
big picture, think about all the components that go into networking. On the client side, you 
need a network card and drivers, operating system, protocol, and the right configuration. 
Then you have a cable of some sort or a wireless connection. At the other end is a switch or 
wireless router. That device connects to other devices, and so forth. The point is, if some- 
one is complaining of no connectivity, there could be one of several different things causing 
it. So start with the basics. 

The most common issue that prevents network connectivity on a wired network is a 
bad or unplugged patch cable. Cleaning crews and the rollers on the bottoms of chairs are 
the most common threats to patch cables. In most cases, wall jacks are placed 4-10 feet 
away from the desktop. The patch cables are often lying exposed under the user’s desk, and 
from time to time damage is done to the cable, or it’s inadvertently snagged and unplugged. 
Tightly cinching the cable while tying it up out of the way is no better a solution. Slack 
must be left in the cable to allow for some amount of equipment movement and to avoid 
altering the electrical characteristics of the cable. 

When you troubleshoot connectivity, start with the most rudimentary explanations 
first. Make sure that the patch cable is tightly plugged in, and then look at the card and 
check if any lights are on. If there are lights on, use the NIC’s documentation to help 
troubleshoot. More often than not, shutting down the machine, unplugging the patch and 
power cables for a moment, and then reattaching them and rebooting the PC will fix an 
unresponsive NIC. 


A properly connected NIC should typically have one light illuminated (the 
P: TE link light). If the link light is not illuminated, it indicates a problem with the 
NIC, the patch cable, or the device to which the patch cable is connect- 


ing (hub, switch, server, and so on). Other lights that may be illuminated 
include a speed light, duplex light, and/or activity light. 


If you don’t have any lights, you don’t have a connection. It could be that the cable is 
bad or that it’s not plugged in on the other side, or it could also be a problem with the NIC 
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or the connectivity device on the other side. Is this the only computer having problems? If 
everyone else in the same area is having the same problem, that points to a central issue. 

Most wireless network cards also have indicators on them that can help you trouble- 
shoot. For example, a wireless card might have a connection light and an activity light, 
much like a wired network card. On one particular card we’ve used, the lights will alter- 
nate blinking if the card isn’t attached to a network. Once it attaches, the connection light 
will be solid, and the link light will blink when it’s busy. Other cards may operate in a 
slightly different manner, so be sure to consult your documentation. 

If you don’ have any lights, try reseating your cables and rebooting. It might also help to 
reseat the card. If you’re using a USB wireless adapter, this is pretty easy. If it’s inside your 
desktop, it will require a little surgery. If it’s integrated into your laptop, you could have 
serious issues. Try rebooting first. If that doesn’t help, see if you can use an expansion NIC 
and make that one light up. 

Let’s assume that you have lights and that no one else is having a problem. (Yes, it’s just 
you.) This means that the network hardware is probably okay, so it’s time to check the con- 
figuration. Open a command prompt, type ipconfig, and press Enter. You should get an 
IP address. (If it starts with 169.254. x.x, that’s an APIPA address. We’ll talk about those 
next.) If you don’t have a valid IP address, that’s the problem. 


The Linux, UNIX, and macOS version of ipconfig is ifconfig. 
P 
P Remember that in order to communicate on a network using TCP/IP (IPv4), 
‘gr you need to have a unique IP address and a valid subnet mask. If you want 


to communicate on a network outside of your own local network, you also 
need a default gateway. 


If you do have a valid IP address, it’s time to see how far your connectivity reaches. With 
your command prompt open, use the ping command to ping a known, remote working host. 
If that doesn’t work, start working backward. Can you ping the outside port of your router? 
The inside port? A local host? (Some technicians recommend pinging your loopback address 
first with ping 127.0.0.1 [or ping ::1 on an IPv6 network] and then working your way 
out to see where the connectivity ends. Either way is fine. The advantage to starting with the 
loopback is that if it doesn’t work, you know nothing else will either.) Using this methodol- 
ogy, you'll be able to figure out where your connectivity truly begins and ends. 


P The ping utility is useful for troubleshooting several types of connectiv- 
A: ity problems that you might encounter. For example, if you can ping an 
IP address but not a hostname, then you know it’s a DNS error. If you can 
ping a hostname (such as a remote web server) but you can’t get to it with 
your web browser, then you know it’s a problem with your browser or 
HTTP or port 80, which may possibly involve the router configuration (like 
a blocked port). 
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APIPA and Link Local Addresses 


As we talked about in Chapter 7, “Introduction to TCP/IP,” Automatic Private IP 
Addressing (APIPA) is a service that auto-configures your network card with an IP address. 
APIPA kicks in only if your computer is set to receive an IP address from the Dynamic Host 
Configuration Protocol (DHCP) server and that server doesn’t respond. You can always tell 
an APIPA address because it will be in the format of 169.254.x.x. 

When you have an APIPA address, you will be able to communicate with other com- 
puters that also have an APIPA address but not with any other resources. The solution 
is to figure out why you’re not getting an answer from the DHCP server and fix that 
problem. 

Link local addresses are the IPv6 version of APIPA, and link local addresses always start 
with fe80:: (they are in the fe80::/10 range). They will work to communicate with com- 
puters on a local network, but they will not work through a router. If the only IP address 
that your computer has is a link local address, you’re not going to communicate outside of 
your network. The resolution is the same as it is for APIPA. 


IP Address Conflicts 


Every host on a network needs to have a unique IP address. If two or more hosts have the 
same address, communication problems will occur. The good news is that nearly every 
operating system today will warn you if it detects an IP address conflict with your com- 
puter. The bad news is it won’t fix it by itself. 

The communication problems will vary. In some cases, the computer will seem nearly 
fine, with intermittent connectivity issues. In others, it will appear as if you have no 
connectivity. 

The most common cause of this is if someone configures a computer with a static IP 
address that’s part of the DHCP server’s range. The DHCP server, not knowing that the 
address has been statically assigned somewhere, doles out the address and now there’s a 
conflict. Rebooting the computer won’t help, nor will releasing the address and getting 
a new lease from the DHCP server—it’s just going to hand out the same address again 
because it doesn’t know that there’s a problem. 

As the administrator, you need to track down the offending user. A common way to 
do this is to use a packet sniffer to look at network traffic and determine the computer 
name or MAC address associated with the IP address in question. Most administrators 
don’t keep network maps of MAC addresses, but everyone should have a network map 
with hostnames. If not, it could be a long, tedious process to check everyone’s computer 
to find the culprit. 


Usually the person who manually configured their address didn’t intend 

Po TE to cause any problems. This would be a good time to show your profes- 
sionalism and communication skills and educate the user as to why they 
shouldn't have done what they did. 
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Limited or Local Connectivity 


In a way, limited connectivity problems are a bit of a blessing. You can immediately rule 
out client-side hardware issues because they can connect to some resources. You just need 
to figure out why they can’t connect to others. This is most likely caused by one of two 
things: a configuration issue or a connectivity device (such as a router) problem. 

Check the local configuration first. Use ipconfig /all to ensure that the computer’s IP 
address, subnet mask, and default gateway are all configured properly. After that, use the 
ping utility to see the range of connectivity. In situations like this, it’s also good to check 
with other users in the area. Are they having the same connectivity issues? If so, it’s more 
likely to be a central problem rather than one with the client computer. 








@) Real World Scenario 
What Can (or Can’t) You Get To? 


A common refrain from users when they are having network issues is, “I can’t get to any- 
thing.” As a technician, you need to parse that statement to understand what they really 
can or can’t get to, and if it’s isolated to their device or occurs on other devices as well. 
It’s best to ask questions to determine which resources are unavailable to them. The two 
main categories of unavailable resources are local resources and the Internet. 


If the user is unable to get to local resources, odds are they can’t get to “anything.” 
Local resources include shared drives (aka shares), printers, or their email. In situations 
like this, treat it like there is no connectivity (or limited connectivity) and troubleshoot 
appropriately. 


If local resources are accessible but the Internet is not, then you know the network card 
and wireless or wired connectivity is fine. Something is preventing the connection to 

the outside world. In these situations, there are a few specific things to check. First, 
check their IP address. If it starts with 169.254, then they have an APIPA address, which 
means the DHCP server could be having issues. If they seem to have a legitimate IP 
address, can they ping an Internet website using its IP address? If so, but they can’t ping 
the website name, then it’s a DNS issue. If they can’t ping the address, try a different one. 
Other devices that could potentially be blocking the traffic include routers, firewalls, and 
proxy servers. 





Intermittent Connectivity 


Under this heading, we’re going to consider intermittent connectivity, slow transfer speeds, 
and low radio frequency (RF) signals, because they are all pretty similar. 

On a wired network, if you run into slow speeds or intermittent connectivity, it’s likely 
a load issue. There’s too much traffic for the network to handle, and the network is bog- 
ging down. (You obviously don’t need to worry about RF signals on a wired network.) 
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Solutions include adding a switch, replacing hubs with switches (if your network is using 
hubs in today’s age, it’s really time to upgrade), and even creating virtual LANs (VLANs) 
with switches. If the network infrastructure is old (for example, if it’s running on Category 
3 cable or you only have 10 Mbps switches), then it’s definitely time for an upgrade. 
Wireless networks can get overloaded too. It’s recommended that no more than 30 or 
so client computers use one wireless access point (WAP) or wireless router. Any more than 
that can cause intermittent access problems. The most common reason that users on wire- 
less networks experience any of these issues, though, is distance. The farther away from the 
WAP the user gets, the weaker the signal becomes. When the signal weakens, the transfer 
rates drop dramatically. For example, the signal from an 802.11ac wireless router has a 
maximum indoor range of about 35 meters (115 feet), barring any obstructions. At that 
distance, though, 802.11ac will support transfer rates of only about 50 Mbps—far less than 
the 1.3 Gbps the users think they’re getting. The solution is to move closer or install more 
access points. Depending on the configuration of your working environment, you could 
also consider adding a directional antenna to the WAP. The antenna will increase the dis- 
tance the signal travels, but only in a limited direction. 


SSID Not Found 


This is obviously a wireless problem, because wired networks don’t use service-set identifi- 
ers (SSIDs). If a client can’t find an SSID for a network it had previously joined, the router’s 
SSID may have changed. If you’re going to change an SSID, be sure to alert all users or 
technicians who might be affected. A second potential cause could be that the router is 
configured to not broadcast SSIDs. Some administrators will stop this broadcast, believing 
that doing so will increase the network security. It really doesn’t, because any semi-decent 
hacker with a wireless packet sniffer will pick it up. What it does best, though, is to make it 
difficult for legitimate users to join the network. 

A third potential cause is that the user’s computer is too far out of range. Get closer to 
the access point or wireless router, and the signal should appear. 








Network Issues 


As a reminder, the A+ exam objectives may test you on how to diagnose and fix the 
following wired and wireless network issues: 


=» Limited connectivity 
= Unavailable resources 

= Internet 

= Local resources (shares, printers, email) 
= No connectivity 


a  APIPA/link local address 
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a Intermittent connectivity 
= |P conflict 

= Slow transfer speeds 

a Low RF signal 


= SSID not found 





Using Network Troubleshooting Tools 


Networks are so specialized that they have their own set of troubleshooting tools. This 
includes hardware and software tools. Knowing how to use them can make the difference 
between a quick fix and a lengthy and frustrating troubleshooting session. The CompTIA 
A+ exams will test you on both hardware and software tools. Hardware tools are covered 
in exam 220-1001, whereas the software commands are under exam 220-1002 objective 
1.4. Because both are critical to resolving network issues, we will cover them all here. We’ll 
then review the software tools again in Chapter 16. 


Hardware and Cabling Tools 


We covered several different types of cables and their properties in Chapter 6, “Networking 
Fundamentals.” Here, we will look at some tools that can be used to make or test network 
cables as well as a few tools to troubleshoot network connectivity issues. 


Crimper A crimper is a very handy tool for helping you put connectors on the end of 

a cable. Most crimpers will be a combination tool that strips and snips wires as well as 
crimps the connector onto the end (see Figure 14.21). You can also buy tools that are just 
cable strippers and cable snippers, but usually the point of cutting and stripping a cable is 
to put a connector on the end of it, so why not just get a crimper that does it all? 


FIGURE 14.21 A UTP crimper 
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Multimeter Multimeters are versatile electronic measuring tools. A multimeter can 
measure voltage, current, and resistance on a wire. There are a wide variety of types and 
qualities on the market, everywhere from economical $10 versions to ones that cost several 
thousand dollars. Figure 14.22 shows a basic multimeter. 


FIGURE 14.22 A basic multimeter 
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Tone Generator and Probe If you need to trace a wire in a wall from one location to 
another, a tone generator and probe (also called a toner probe) is the tool for you. Shown 
in Figure 14.23, it consists of two pieces: a tone generator and a probe. Because it’s so good 
at tracking, you will sometimes hear this referred to as a “fox and hound.” 


To use a toner probe, attach one end to one end of the cable, such as the end at the com- 
puter. Then go to the patch panel with the other end of the probe to locate the cable. These 
are lifesavers when the cables are not properly labeled. 


Cable Tester A cable tester is an indispensable tool for any network technician. Usually, 
you would use a cable tester before you install a cable to make sure it works. Of course, 
you can test them after they’ve been run as well. A decent cable tester will tell you the 
type of cable, and more elaborate models will have connectors for multiple types of cables. 
Figure 14.24 shows a TRENDnet cable tester. 
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FIGURE 14.23 A tone generator and probe 
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Punch-Down Tool If you’re working on a larger network installation, you might use a 
punch-down tool. It’s not a testing tool but one that allows you to connect (that is, punch 
down) the exposed ends of a wire into wiring harnesses, such as a 110 block (used many 
times in connectivity closets to help simplify the tangled mess of cables). Figure 14.25 
shows the tool and its changeable bit. 


FIGURE 14.25 A punch-down tool 





Loopback Plug A loopback plug is for testing the ability of a network adapter to send and 
receive. The plug gets plugged into the NIC, and then a loopback test is performed using 
troubleshooting software. You can then tell if the card is working properly or not. Figure 
14.26 shows an Ethernet loopback plug, but they are made for fiber-optic NICs as well. 


FIGURE 14.26 An Ethernet loopback plug 





Wi-Fi Analyzer The one hardware tool that we didn’t talk much about earlier is the Wi-Fi 
analyzer. Specific tools for locating Wi-Fi networks and analyzing their traffic are indis- 
pensable today. A wireless locator or a Wi-Fi analyzer can be either a handheld hardware 
device, such as the one shown in Figure 14.27, or specialized software that is installed on a 
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laptop and the purpose of which is to detect and analyze Wi-Fi signals. Anyone interested 
in wardriving (driving around in a car looking for unsecured wireless networks to hack 
into) will definitely have one of these, but they’re also handy for locating wireless hot spots. 


FIGURE 14.27 An RF Explorer handheld Wi-Fi analyzer 











Networking Tools 


As a reminder, the A+ exam objectives may test you on how to use the following network- 
ing tools: 


a  Crimper 

= Cable stripper 

a Multimeter 

= Tone generator and probe 


n Cable tester 





Software Commands 


Troubleshooting networks often involves using a combination of hardware tools and software 
commands. Usually, the software commands are easier to deal with because you don’t need 
to dig around physically in a mess of wires to figure out what’s going on. The downside to the 
software commands is that there can be a number of options that you need to memorize. In 
the following sections, we’ll cover the following networking command-line tools, which are 
all helpful utilities: ping, ipconfig/ifconfig, tracert, netstat, nbtstat, net, and nslookup. 
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Ping Command 


The ping command is one of the most useful commands in the TCP/IP protocol. It sends a 
series of packets to another system, which in turn sends back a response. This utility can 
be extremely useful for troubleshooting problems with remote hosts. Pings are also called 
ICMP echo requests/replies because they use Internet Control Message Protocol (ICMP). 

The ping command indicates whether the host can be reached and how long it took for 
the host to send a return packet. Across WAN links, the time value will be much larger 
than across healthy LAN links. 

The syntax for ping is ping hostname or ping IP address. Figure 14.28 shows what a 
ping should look like. 


FIGURE 14.28 A successful ping 





E Command Prompt - [m] x 


:\Users\Q>ping www.google.com 


Pinging www.google.com [74.125.21.103] with 32 bytes of data: 
Reply from 74.125.21.103: bytes=32 time=48ms TTL=43 
Reply from 74.125.21.103: bytes=32 time=47ms TTL=43 
Reply from 74.125.21.103: bytes=32 time=5@ms TTL=43 
Reply from 74.125.21.103: bytes=32 time=47ms TTL=43 


Ping statistics for 74.125.21.103: 

Packets: Sent = 4, Received = 4, Lost = @ (0% loss), 
proximate round trip times in milli-seconds: 

Minimum = 47ms, Maximum = 5@ms, Average = 48ms 


:\Users\Q> 








As you can see, by pinging with the hostname, we found the host’s IP address thanks to 
DNS. The time is how long in milliseconds it took to receive the response. On a LAN, you 
want this to be 10 milliseconds (ms) or less, but 60 ms to 65 ms for an Internet ping isn’t 
too bad. 

The ping command has several options, which you can see by typing ping /? at the 
command prompt. Table 14.6 lists some of the more useful options. 


TABLE 14.6 Ping options 


Option Function 





-t Persistent ping. Will ping the remote host until stopped by the 
client (by using Ctrl+C) 


-n count Specifies the number of echo requests to send 
-l size Specifies the packet size to send 


ping -4/ping -6 Use either the IPv4 or IPv6 network, respectively. 
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0 Some webmasters have configured their routers to block pings in order to 
‘Qi avoid problems such as someone trying to eat up bandwidth with a ping 
of death (sending a persistent ping with a huge buffer to overwhelm the 
recipient). Therefore, if you ping a website, it’s possible that you won't get 
a response even though the site is functional. 


Ipconfig Command 


With Windows-based operating systems, you can determine the network settings on the client’s 
network interface cards, as well as any that a DHCP server has leased to your computer, by 
typing the following at a command prompt: ipconfig /all. 

Ipconfig /all also gives you full details on the duration of your current lease. You 
can verify whether a DHCP client has connectivity to a DHCP server by releasing the 
client’s IP address and then attempting to lease an IP address. You can conduct this test 
by typing the following sequence of commands from the DHCP client at a command 
prompt: 


ipconfig /release 
ipconfig /renew 


Ipconfig is one of the first tools to use when experiencing problems accessing resources 
because it will show you whether an address has been issued to the machine. If the address 
displayed falls within the 169.254.x.x category, this means that the client was unable to 
reach the DHCP server and has defaulted to Automatic Private IP Addressing (APIPA), 
which will prevent the network card from communicating outside its subnet, if not alto- 
gether. Table 14.7 lists useful switches for ipconfig. 


TABLE 14.7 Ipconfig switches 





Switch Purpose 
/all Shows full configuration information 
/release Releases the IP address, if you are getting addresses from a 


Dynamic Host Configuration Protocol (DHCP) server 


/release6 Releases the IPv6 addresses 

/renew Obtains a new IP address from a DHCP server 

/renew6 Obtains a new IPv6 address from a DHCP server 

/flushdns Flushes the Domain Name System (DNS) server’s name resolver 


cache 
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1 In the Linux, UNIX, and macOS worlds, a utility similar to ipconfig is 
P ifconfig. 


Figure 14.29 shows the output from ipconfig, and Figure 14.30 shows the output from 
ipconfig /all for one network adapter. 


FIGURE 14.29 Output from ipconfig 





E Command Prompt = o x 


\C: \Users\Q>ipconfig 


Windows IP Configuration 


Ethernet adapter Ethernet: 


Media States > s scasoma . : Media disconnected 
Connection-specific DNS Suffix 


Ethernet adapter VirtualBox Host-Only Network: 


Connection-specific DNS Suffix 


Link-local IPv6 Address . . . . . : fe80::38e1:2634:77db:b7c2%5 
EPV4 Addre55. > s = èw sasos + : 192.168.56.1 


Subnet Hask > > es > e> aon o 3 255.255.255.0 


Wireless LAN adapter Local Area Connection* 9: 


Media: Stace: s e =se sares . : Media disconnected 
Connection-specific DNS Suffix : 


Wireless LAN adapter Wi-Fi: 


Connection-specific DNS Suffix . : Home 

Link-local IPv6 Address . . . . . : fe8@::3c06:76ff:c44:7e24%7 
IPVA (OOMMOESS eo o pec eae et ce es a . 1 192.168.1.142 

SUDNEL Mash ig cas. bt py ep ia tee + | 255-255, 255-0 

Default Gateway. ....... + : 192.168.1.1 


iC: \Users\Q> 











FIGURE 14.30 Output from ipconfig /all 











E Command Prompt - oD x 
:\Users\Q>ipconfig /all A 
Wireless LAN adapter Wi-Fi: 

Connection-specific DNS Suffix . : Home 
Description s v s © : a» «s « « © Linksys AE2500 
Physical Address. . . . . . . . . : C@-C1-C0-6C-92-4A 
DHCP Enabled: «6 = 6 2s an = E Ves 
Autoconfiguration Enabled . . . . : Yes 
Link-local IPv6 Address . . . . . : fe80::3c06:76FF:c44:7e24%7(Preferred) 
IPv4 Address. . >o «e-s oo « : 192.168.1.142(Preferred) 
SubNet MASK > o <a 6 cw om 6 oS 2a Ea 
Lease Obtained. ...... . . . : Wednesday, November 14, 2018 5:46:40 PM 
Lease Expires. ....... . . : Thursday, November 22, 2018 9:42:30 PM 
Default Gateway: = < = © < p és p 19271685451 
DHCP Server. 6 ss se + « = È 192.168.1.1 
DHCPv6 IAID . ©. eoo» es oo 3 381731264 
DHCPv6 Client DUID. .. . . . . . : 00-01-00-01-21-CD-E0-62-40-61-86-E4-5A-9A 
ONS Servers . o simio © © » » oa « 3 192.168.1.1 
NetBIOS over Tcpip. .... . + . : Enabled 
Connection-specific DNS Suffix Search List : 

home 

C: \Users\Q> 
y 





Troubleshooting Networking Problems 811 


In Exercise 14.3, you will renew an IP address on a Windows 10 system within the 
graphical interface. 


Renewing an IP Address in Windows 10 
1. Open Control Panel by clicking Start and typing Control. 
2. Click Control Panel under Best Match. 
3. Inthe upper-right corner of Control Panel, set View By to Small Icons or Large Icons. 
4. Click Network and Sharing Center to open it. 
5. Inthe left pane, click Change Adapter Settings. 
This will open a new window displaying your network connections. 
6. Right-click your connection and choose Status (Figure 14.31). 


On the General tab of the network connection’s status properties, you will see infor- 
mation such as whether you are connected, the speed of the connection, and how 
long the connection has been active. 


FIGURE 14.31 Network connection status 





aiff] Wi-Fi Status x 
General 
Connection 
IPv4 Connectivity: Internet 
IPv6 Connectivity: No network access 
Media State: Enabled 
SSID: DrNet 
Duration: 7days 15:43:02 
Speed: 130.0 Mbps 


Bytes: 863,018,403 | 14, 191,517,674 


G@Properties | Disable Diagnose 
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EXERCISE 14.3 (continued) 


7. Click the Details button. 


This expands the information by also showing you the physical (MAC) address and 
lease information, among other things. 


8. Look at the information shown, and click Close. 
9. Back at the General tab, click the Diagnose button. 


This will diagnose any network problems and attempt to establish or renew the con- 
nection. If the network (DHCP) is functioning properly, a notification that it finished 
will appear in a short time. If not, Windows will attempt to repair the connection. 


10. On the General tab, click the Disable button. 
This will disable the connection and close the Status window. 


11. In the Network Connections window, right-click the connection you just disabled and 
click Enable. It may take a minute to connect. 


12. Once it shows the network name, right-click the connection and click Status. 
13. Click the Details button and notice the Lease Obtained date. 


It should be updated to when you just re-enabled the connection. 


While Windows provides this interface to troubleshoot connection problems, some 
administrators still prefer the reliability of a command-line interface. Exercise 14.4 shows 
you how to perform a similar action using the command line. 


Renewing an IP Address from the Command Line 


This exercise assumes that you are using Windows 10 and dynamic IP assignments from 
a DHCP server. 


1. Open a command prompt (click Start, type cmd, and press Enter). 
2. Type ipconfig and view the abbreviated list of information. 
3. Type ipconfig /all to see the full list. 
Notice the date and time on the lease for the IP address. 
4. Type ipconfig /renew followed by ipconfig /all. 
The date and time on the lease for the IP address should be the current date and time. 


5. Close the command-prompt window by typing exit and pressing Enter. 
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Tracert Command 


Tracert (trace route) is a Windows-based command-line utility that enables you to verify 
the route to a remote host. Execute the command tracert hostname, where hostname is 

the computer name or IP address of the computer whose route you want to trace. Tracert 
returns the different IP addresses the packet was routed through to reach the final destina- 
tion. The results also include the number of hops needed to reach the destination. If you 
execute the tracert command without any options, you see a help file that describes all the 
tracert switches. 


The traceroute command can be used on Macs and Linux/UNIX 
i machines; it performs the same task as tracert. 
This utility determines the intermediary steps involved in communicating with another 
IP host. It provides a road map of all the routing an IP packet takes to get from host A to 
host B. 
Timing information from tracert can be useful for detecting a malfunctioning or over- 


loaded router. Figure 14.32 shows the output from tracert. In addition to tracert, there 
are many graphical third-party network-tracing utilities available on the market. 


FIGURE 14.32 Output from tracert 





E Command Prompt = o x 


{:\Users\Q>tracert www.apple.com 


Tracing route to e6858.dsce9.akamaiedge.net [23.56.211.166] 
pver a maximum of 30 hops: 


1 ms 1 ms 1 ms Linksys03451 [192.168.1.1] 
1 ms 1 ms 1 ms 192.168.200.1 
25 ms 25 ms 26 ms dsl-208-102-195-1.fuse.net [208.102.195.1] 
26 ms 25 ms 25 ms ael.ev-ptx-1.core.fuse.net [216.68.14.185] 
28 ms 25 ms 26 ms ael.evel.core.fuse.net [216.68.14.184] 
38 ms 37 ms 40 ms xe005.atl1.core.fuse.net [216.68.14.133] 
38 ms 36 ms 38 ms ae1-215.cr1-atl1.ip4.gtt.net [173.241.131.161] 
40 ms 38 ms 39 ms a23-56-211-166.deploy.static.akamaitechnologies.com [23.56.211. 


DONAWAWNHE 


= 
a 


[Trace complete. 


:\Users\Q> 











Netstat Command 


The netstat command is used to check out the inbound and outbound TCP/IP connections 
on your machine. It can also be used to view packet statistics, such as how many packets 
have been sent and received and the number of errors. 

When used without any options, the netstat command produces output similar to that 
shown in Figure 14.33, which shows all the outbound TCP/IP connections. 
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FIGURE 14.33 Output from netstat 





(: \Users\Q>netstat 


fictive Connections 


Proto 
TCP 
TCP 
TCP 
TCP 
TCP 
TCP 
TCP 
TCP 
TCP 
TCP 
TCP 
TCP 
TCP 
TCP 
TCP 


Command Prompt - a x 
A 
Local Address Foreign Address State 
127.0.0.1:5354 DESKTOP-EF@DRK1:4967@ ESTABLISHED 
127.@.0.1:5354 DESKTOP-EF@DRK1:49671 ESTABLISHED 
127.0.0.1:5354 DESKTOP-EF@DRK1:60754 ESTABLISHED 
127.0.0.1:5354 DESKTOP-EF@DRK1:60755 ESTABLISHED 
127.0.0.1:5354 DESKTOP-EF@DRK1:60759 ESTABLISHED 
127.0.0.1:5354 DESKTOP-EF@DRK1:60785 ESTABLISHED 
127.0.0.1:5354 DESKTOP-EF@DRK1:60786 ESTABLISHED 
127.0.0.1:27015 DESKTOP-EF@DRK1:49764 ESTABLISHED 
127.@.0.1:27015 DESKTOP-EF@DRK1:51054 FIN_WAIT_1 
127.0.0.1:27015 DESKTOP-EF@DRK1:56868 FIN_WAIT_1 
127.0.0.1:27015 DESKTOP-EF@DRK1:57574 FIN_WAIT_1 
127.0.0.1:27015 DESKTOP-EF@DRK1:60744 ESTABLISHED 
127.0.0.1:27015 DESKTOP-EF@DRK1:60766 ESTABLISHED 
127 .0.0.1:27015 DESKTOP-EF@DRK1:60784 ESTABLISHED 
127.0.6.1:27015 DESKTOP-EF@DRK1:60826 FIN_WAIT_1 S 








There are several useful command-line options for netstat, as shown in Table 14.8. 


TABLE 14.8 Netstat options 





Option Function 

-a Displays all connections and listening ports 

-b Displays the executable involved in creating each connection or listening 
port. In some cases, well-known executables host multiple independent 
components, and in these cases the sequence of components involved 
in creating the connection or listening port is displayed. In this case, the 
executable name is in brackets at the bottom. At the top is the component 
it called, in sequence, until TCP/IP was reached. Note that this option can be 
time consuming, and it will fail unless you have sufficient permissions. 

-e Displays Ethernet statistics. This may be combined with the -s option. 

-f Displays fully qualified domain names (FODNs) for foreign addresses 

-n Displays addresses and port numbers in numerical form 

-0 Displays the owning process ID associated with each connection 

-p proto Shows connections for the protocol specified by proto; proto may be any 
of the following: TCP, UDP, TCPv6, or UDPv6. If netstat is used with the 
-S option to display per-protocol statistics, proto may be IP, IPv6, ICMP, 
ICMPv6, TCP, TCPv6, UDP, or UDPv6. 

-r Displays the routing table 

-S Displays per-protocol statistics. By default, statistics are shown for IP, IPv6, 


ICMP, ICMPv6, TCP, TCPv6, UDP, and UDPv6; the -p option may be used to 
specify a subset of the default. 
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Nbtstat Command 


Nbtstat is a command that shows NetBIOS over TCP/IP information. While not used as 
often as other entries in this category, it can be useful when you are trying to diagnose a 
problem with NetBIOS name resolution. The /? parameter can be used to see the available 
switches. Figure 14.34 shows sample output from the netstat -n command. 


FIGURE 14.34 Output from nbtstat -n 





Command Prompt - o x 


:\Users\Q>nbtstat -n 


Ethernet: 
ode IpAddress: [0.0.0.0] Scope Id: [] 


No names in cache 


i-Fi: 
lode IpAddress: [192.168.1.142] Scope Id: [] 


NetBIOS Local Name Table 


Name Type Status 
WORKGROUP <00> GROUP Registered 
DESKTOP-EF@DRK1<@@> UNIQUE Registered 
DESKTOP-EF@DRK1<2@> UNIQUE Registered 


Local Area Connection* 9: 
ode IpAddress: [0.0.0.0] Scope Id: [] 


No names in cache 


:\Users\Q> 








Net Command 


Depending on the version of Windows you are using, net can be one of the most powerful 
commands at your disposal. While all Windows versions include a net command, its capa- 
bilities differ based on whether it is used on a server or workstation and the version of the 
operating system. 

While always command-line-based, net allows you to do almost anything that you want 
with the operating system. Table 14.9 shows common net switches. 


TABLE 14.9 net switches 





Switch Purpose 

net accounts To set account options (password age, length, 
and so on) 

net computer To add and delete computer accounts 

net config To see network-related configuration 


net continue, net pause, net start, To control services 
net statistics, and net stop 
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TABLE 14.9 net switches (continued) 





Switch Purpose 

net file To close open files 

net group and net localgroup To create, delete, and change groups 

net help To see general help 

net helpmsg To see specific message help 

net name To see the name of the current machine and user 
net print To interact with print queues and print jobs 

net send To send a message to user(s) 

net session To see session statistics 

net share To create a share 

net time To set the time to that of another computer 

net use To connect to a share 

net user To add, delete, and see information about a user 
net view To see available resources 


These commands are invaluable troubleshooting aids when you cannot get the graphical 
interface to display properly. You can also use them when interacting with hidden ($) and 
administrative shares that do not appear within the graphical interface. 

The net command used with the share parameter enables you to create shares from the 
command prompt, using this syntax: 


net share <share_name>=<drive_letter>:<path> 
To share the C:\EVAN directory as SALES, you would use the following command: 
net share sales=c:/evan 


You can use other parameters with net share to set other options. Table 14.10 summa- 
rizes the most commonly used parameters, and Exercise 14.5 will give you some experience 
with the net share command. 
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TABLE 14.10 Net SHARE parameters 





Parameter Purpose 

/delete To stop sharing a folder 

/remark To add acomment for browsers 
/unlimited To set the user limit to Maximum Allowed 
/users To set a specific user limit 


Using the net SHARE Command in Windows 


In order to create new shared drives with net share, you must have administrative privi- 
leges at the command prompt. Opening the command prompt normally does not confer 
administrative privileges. In this exercise, we will open what’s called an elevated com- 
mand prompt, or administrative command prompt. 


1. Click the Start button, type cmd, and notice that the Command Prompt appears under 
Best Match. 


2. Right-click Command Prompt, and then click Run as Administrator. 


3. A User Account Control prompt will appear asking if you want to allow the app to 
make changes to your device. Click Yes. The elevated command prompt will open. 


4. To see what is currently shared on your computer, type net share and press Enter. 


You will see output similar to what’s shown in Figure 14.35. Notice that the C: \ and 
E:\ drives are shared by default. This is normal, and they are hidden shares (the $ at 
the end of the share name makes it hidden), meaning that other users on the network 
won't see them. 


FIGURE 14.35 Shares on the local computer 





IEW Administrator: Command Prompt 


Microsoft Windows [Version 10.0.17134.523] 
(c) 2018 Microsoft Corporation. All rights reserved. 


|C: \WINDOWS\system32>net share 


[Share name Resource Remark 
Ic$ EN Default share 
E$ E:\ Default share 
print$ C: \WINDOWS\system32\spool\drivers 

Printer Drivers 
ITPC$ Remote IPC 
JADMINS C: \WINDOWS Remote Admin 


HP LaserJet 6L 
Spooled HP LaserJet 6L 


The command completed successfully. 


|C: \WINDOWS\system32> 











818 Chapter 14 = Hardware and Network Troubleshooting 


EXERCISE 14.5 (continued) 


5. You will now share the C:\TEMP folder with the share name files4u. To do this, type 
net share files4u=c:\temp and press Enter. 


The system should respond with files4u was shared successfully. 
6. To verify that it was shared, type net share and press Enter. 


You can see the new share in Figure 14.36. Users on the network can now access 
your drive as \\computername\files4u. 


FIGURE 14.36 Output from net share with a new shared drive 





EEE Administrator: Command Prompt - o x 


:\WINDOWS\system32>NET SHARE files4u=c:\temp 
‘iles4u was shared successfully. 


: \WINDOWS\system32>net share 


hare name Resource Remark 
$ C:N Default share 
E$ E:\ Default share 
IPC$ Remote IPC 
print$ C:\WINDOWS\system32\spool\drivers 

Printer Drivers 
DMIN$ C: \WINDOWS Remote Admin 
iles4u c:\temp 


P LaserJet 6L 
Spooled HP LaserJet 6L 
The command completed successfully. 


: \WINDOWS\system32> 








7. (optional) To stop sharing files4u, type net share files4u /delete atthe 
command prompt and press Enter. 


8. (optional) To verify that the folder is no longer shared, type net share and press Enter. 


The net /? command is basically a catch-all help request. It will instruct you to use the 
net command in which you are interested for more information. 


Nslookup Command 


One of the key things that must take place to use TCP/IP effectively is that a hostname 
must resolve to an IP address—an action usually performed by a DNS server. 

Nslookup is a command that enables you to verify entries on a DNS server. You can use 
the nslookup command in two modes: interactive and noninteractive. In interactive mode, 
you start a session with the DNS server in which you can make several requests. In nonin- 
teractive mode, you specify a command that makes a single query of the DNS server. If you 
want to make another query, you must type another noninteractive command. 


Summary 819 


To start nslookup in interactive mode (which is what most admins use because it allows 
them to make multiple requests without typing nslookup several times), type nslookup at 
the command prompt and press Enter. You will receive a greater than prompt (>) and can 
then type in the command that you want to run. You can also type help or ? to bring up 
the list of possible commands, as shown in Figure 14.37. To exit nslookup and return to a 
command prompt, type exit and press Enter. 


FIGURE 14.37 Starting nslookup and using help 











(BH Command Prompt - nslookup -= o x 
pasare Onsloskip a 
lefault Server: Linksys@3451 
Address: 192.168.1.1 
> >? 
commands : (identifiers are shown in uppercase, [] means optional) 
E - print info about the host/domain NAME using default server 
E1 NAME2 - as above, but use NAME2 as server 
elp or ? - print info on common commands 
jset OPTION - set an option 
all - print options, current server and host 
[no]debug - print debugging information 
[no]d2 - print exhaustive debugging information 
[no]defname - append domain name to each query 
[no]recurse - ask for recursive answer to query 
[no]search - use domain search list 
[no]ve - always use a virtual circuit 
domain=NAME - set default domain name to NAME 
srchlist=N1[/N2/.../N6] - set domain to N1 and search list to N1,N2, etc. 
root=NAME - set root server to NAME 
retry=X - set number of retries to X 
timeout=X - set initial time-out interval to X seconds 
type=X - set query type (ex. A,AAAA,A+AAAA, ANY, CNAME ,MX,NS,PTR,SOA,SRV) 
querytype=X - same as type 
class=X - set query class (ex. IN (Internet), ANY) 
[no]msxfr - use MS fast zone transfer 
ixfrver=X - current version to use in IXFR transfer request 
server NAME - set default server to NAME, using current default server 
lserver NAME - set default server to NAME, using initial server 
root - set current default server to the root 
lls [opt] DOMAIN [> FILE] - list addresses in DOMAIN (optional: output to FILE) 
-a - list canonical names and aliases 
-d - list all records 
-t TYPE - list records of the given RFC record type (ex. A,CNAME,MX,NS,PTR etc.) 
view FILE - sort an 'ls" output file and view it with pg 
jexit - exit the program 
> Y 





To run nslookup in noninteractive mode, you would use the nslookup command option 
you want to run at the command prompt—for example, nslookup /set timeout=<3> or 
nslookup /view:domain. 


Summary 


In this chapter, we discussed hardware and network troubleshooting. First, we looked at 
issues common to hard drives and RAID arrays, such as slow performance, read/write fail- 
ures, troubles booting, odd noises, crash screens, and S.M.A.R.T. errors. Then, we looked 
at video issues, such as what to do when your system boots into VGA mode and various 
issues with screen images. Next, we covered problems that are unique to mobile devices 
and laptop computers. Because of their compact nature, they have unique issues relating to 
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heat, power, and input and output. Mobile devices and laptops also typically have built-in 
wireless networking, which is a blessing but occasionally needs to be fixed. 

We followed that with a discussion on troubleshooting printers. Specifically, we dis- 
cussed problems with three major classes of printers, including impact, inkjet, and laser, 
and then we talked about managing print jobs, the print spooler, and printing a test page. 

Finally, we ended the chapter with a section on troubleshooting issues that are specific 
to networking. We talked about connectivity issues and looked at tools and commands that 
you can use to troubleshoot network problems. 


Exam Essentials 


Understand common issues related to hard drives and RAID arrays. There are several 
issues that are hard-drive-related. The drive can have a read/write failure or slow perfor- 
mance. If a conventional drive fails, it might produce a loud clicking or scratching noise. 
Sometimes boot failures are hard-drive-related, if the drive can’t be found or recognized 
or the OS isn’t found due to a bad boot sector or master boot record. If the OS crashes, it 
may produce a proprietary crash screen, such as the BSOD in Windows or the pinwheel 
in macOS. RAID arrays are collections of hard drives and can have similar failures and 
issues with not being found. All hard drives made today have $.M.A.R.T. diagnostics 
built into them. 


Know what VGA mode is. VGA mode is very basic video resolution (640x480 with 16 
colors). It’s what a computer will use if it can’t load a video driver for the video card. It’s 
also a useful troubleshooting mode for video issues. 


Understand common video, projector, and display symptoms. Video displays and projec- 
tors can have a wide variety of issues. They include overheating and shutting down; no 
image on the screen; dead pixels; artifacts; incorrect colors; dim, flickering, or distorted 
images; distorted geometry; burn-in; and oversized images and icons. 


Understand common mobile device power issues. Power issues can include a battery not 
charging, no power, extremely short battery life, overheating, and a swollen battery. 


Understand what to do for mobile device and laptop video issues. Video issues can 
include dim, flickering, or no display. If you have no video, you can try an external moni- 
tor or try toggling the LCD cutoff switch. For screens that are too dim or too bright, you 
can raise and lower the brightness by using the Fn key plus the appropriate function key on 
your keyboard. 


Know what to do to resolve common mobile device input problems. These can include 
sticking keys, ghost cursor or pointer drift, num lock lights, or an unresponsive touch 
screen. Be familiar with the laptop Function key and the features it controls, including 
switching the display to an external monitor. 
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Understand how to manage mobile device network troubles. These can include intermit- 
tent wireless or no wireless or Bluetooth. 


Understand mobile device responsiveness issues. Problems you should know how to 
resolve include apps not loading, a frozen system, slow performance, the inability to 
decrypt email, no sound from the speakers, and the GPS not functioning properly. 


Understand proper disassembly and reassembly processes for mobile devices. You should 
document and label cable and screw locations, organize parts, refer to manufacturer 
resources, and use appropriate hand tools. 


Know how to set IP addresses on a printer. The IP address can often be obtained auto- 
matically from a DHCP server, but this is not recommended for corporate networks. 
Instead, use a static IP address (or use a DHCP reservation). You may be able to use the 
printer’s control panel or printer management software to configure the IP address. 


Know what could cause the printer to print garbage. Most often, the print driver causes 
this. Deleting and reinstalling it should fix the problem. A defective formatter board can 
also cause it. 


Understand what could cause print-quality issues on an impact printer. Print-quality 
issues are generally related to either the ribbon or the print head. The specific problem you 
are having will help determine the culprit. 


Know what can cause unevenly spaced lines or characters on a dot-matrix or inkjet 
printer. A failing stepper motor usually causes this. For line spacing problems, it’s the 
main stepper motor. For character spacing, it will be the carriage stepper motor. 


Know what causes printers to have paper jams. On an impact printer, jams are usually 
caused by material getting into the rollers, such as extra “perf” from the tractor-feed paper. 
On inkjets and laser printers, worn pickup rollers often cause this problem. 


Know how to stop and restart the print spooler. Open the Services applet. Find Print 
Spooler on the right side. Right-click it and click Stop, or highlight it and click the Stop 
square above the list of services. To restart the print spooler, right-click it and select Start, 
or click the Start triangle above the list of services. 


Know what to check if your wireless networking card isn’t working. Make sure the card 
has lights indicating that it’s working. You might also have an external toggle switch to 
turn the card on and off. Finally, if your computer has an external RJ-45 connection, you 
can plug it in and see if it works when wired. 


Understand what various networking hardware tools are used for. A cable tester allows 
you to verify that a cable works; loopback plugs test the functionality of network cards; 
punch-down tools connect wires to frames, such as a 110 block; tone generators allow you 
trace a cable from one point to another; wire strippers and crimpers are for cutting and 
putting the ends on network cables; and a wireless locator helps you find wireless network 
signals. 
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Know what the ipconfig, ping, and tracert commands are used for. Admittedly, 
these are specifically for A+ exam 220-1002, but know what they do. Both ipconfig and 
ping are network troubleshooting commands. You can use ipconfig to view your com- 
puter’s IP configuration and ping to test connectivity between two network hosts. Tracert 
allows you to view the network path a packet takes from the host to the destination. 


Know what the netstat, nbtstat, net, and nslookup commands are used for. These 
commands need to be understood for exam 220-1002 as well. Netstat shows network 
statistics; nbtstat shows NetBIOS over TCP/IP information; net allows you to perform 


network-management tasks, such as sharing folders; and nslookup allows you to query a 
DNS server. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. 


If the video on your laptop is not working, what should you do to troubleshoot it? 
(Choose two.) 


A. Toggle the video function key. 

B. Try using an external monitor. 

C. Remove the display unit and reattach it. 

D. Power the system off and back on. 

You boot up a Windows 10 desktop computer. The Windows splash screen flashes briefly, 
and then there is no display. What is the best next step to take to troubleshoot the issue? 
A. Replace the failed monitor. 

B. Replace the failed video card. 

C. Reboot and enable low-resolution video mode. 

D. Try a second monitor. 

A user tells you that his Android phone case is bulging, and the device has been hot to the 
touch lately. You suspect a swollen battery. Which of the following is a good next step? 
A. Replace the device. 

B. Leave the device on to drain the battery, and then recharge the device. 

C. Turn the device off, let it cool to room temperature, and then recharge the device. 

D. Use the battery calibration utility. 

E. Freeze the system. 

A laptop user with an 802.11ac wireless network card just switched desk locations. In the 


new location, she says that her wireless drops connectivity intermittently and seems to have 
slow transfer speeds. Which of the following is most likely to resolve these issues? 


A. Replace the network card. 


B. Run ipconfig to ensure that she is receiving the right IP address from the DHCP 
server. 


C. Install a new WAP closer to her new desk. 
D. Use a network monitor to ensure that there are no IP address conflicts. 
While troubleshooting a client computer, you decide to obtain a new IP address from the 


DHCP server. After releasing the existing address, which command do you use to get new 
IP information from the DHCP server? 


A. ipconfig /refresh 
B. ipconfig /renew 
C. ifconfig /release 
D. ifconfig /start 
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11. 
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Users are complaining that their print jobs are not printing. You open the print queue and 
see 50 jobs lined up. The printer is connected properly and online. What should you do? 


A. Open Printer Troubleshooting and have it diagnose the problem. 

B. Stop and restart the print spooler. 

C. Delete and reinstall the printer. 

D. Delete and reinstall Windows. 

The display on a laptop computer is continuously flickering. Which of the following are 
most likely to cause this problem? (Choose two.) 

A. A failing display 

B. Interference from a nearby fan 

C. A failing backlight 

D. A failing inverter 

E. Incorrect video driver 

You are having problems with the video card in one of your computers. Where could you 
check for troubleshooting information? 

A. Another computer with the same video card 

B. The video card manufacturer’s website 

C. The manual that came with the card 

D. The server log 

Your laser printer keeps printing vertical black lines on its output pages. What is the most 
likely cause of the problem? 

A. There is a groove or scratch in the EP drum. 

B. The EP drum-cleaning blade is broken. 

C. The printer is low on toner. 

D. The transfer corona wire is not working properly. 

The display on your laptop appears warped and fuzzy. You plug in an external monitor, 
and the image on it is fine. What is the most likely cause of the problem? 

A. The video card 

B. The LCD display 

C. The motherboard 

D. The video driver 

You have an inkjet printer. Recently, papers are being printed with excessive amounts of 
ink, and the ink is smearing. What is the most likely cause of the problem? 

A. A faulty ink cartridge 

B. A corrupt print driver 

C. A faulty fuser 
D 


Too much humidity in the air 


12. 


13. 


14. 


15. 


16. 


17. 
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You believe that a network card is beginning to fail. Which of the following tools 
should you use to see if the network card is capable of sending and receiving data from an 
RJ-45 port? 


A. Tone generator and probe 

B. Loopback plug 

C. Multimeter 

D. Cable tester 

When you print documents on your laser printer, you see residue from previous images on 
the output. Which two things are the most likely causes of this problem? (Choose two.) 
A. A faulty transfer corona wire 

B. An overheating printer 

C. Abad erasure lamp 

D. A broken cleaning blade 

Troubleshooting a network connectivity issue takes you into the wiring closet, where you 


realize that none of the cables are properly labeled. Several are disconnected. Which tool 
should you use to determine where the cables run to? 


A. Loopback plug 

B. Punch-down tool 

C. Cable tester 

D. Tone generator and probe 

You turn on a laptop computer and the hard drive is not recognized. Where should you go 
to troubleshoot the issue? 

A. S.M.A.R.T. diagnostics 

B. BIOS/UEFI 

C. Windows Device Manager 

D. Boot sector manager 

You turn a computer on and it doesn’t boot up properly. You hear a rhythmic ticking sound 
coming from inside the case. What is most likely the problem? 

A. The motherboard 

B. The power supply fan 

C. The HDD 

D. The video card 

You support an old impact printer at work. When the printer prints, there is always a blank hor- 
izontal line in the middle of each line of output. What is the most likely cause of the problem? 
A. The print ribbon is old and needs to be replaced. 

B. The print ribbon is not advancing properly. 

C. The print head needs to be replaced. 
D. 


The wrong print driver is installed. 
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18. A network cable for a crucial server has failed. There are no pre-made Ethernet cables 
available, but there is bulk cable and connectors. Which tool do you need to use to make a 


new cable? 

A. Crimper 

B. Punch-down tool 
C. Cable tester 

D. Loopback plug 


19. A user brings in an iPhone and the touch screen is not responding. What should you do to 
try first to get the device functioning again? 


A. 
B. 
C. 
D. 


Hold the power button and the sleep/wake button for 10 seconds to reset the device. 
Restore the device to factory settings. 
Replace the battery in the device. 


Hold the power button for 10 seconds to force the device to power off. 


20. You are troubleshooting a server and discover that one of the hard drives in the RAID 0 
array has failed. Which statement is true? 


A. 


B. 


C. 
D. 


You need to replace the failed drive, but the data is okay because the drive is configured 
as a mirror. 


You need to replace the failed drive, but the data is okay because the drive is configured 
as a disk stripe with parity. 


You need to replace the failed drive, and the data on the array is lost. 


You do not need to replace the failed drive; the system will function normally. 


Performance-Based Question 


You will encounter performance-based questions on the A+ exam. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answers compare to the authors’, refer 
to Appendix B. 

Your network users are sending print jobs to the printer, but they are stacking up in the 
queue and not printing. The printer appears to be online and has paper. How would you 
stop and restart the print spooler in Windows 10? 
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THE FOLLOWING A+ 220-1002 EXAM 
OBJECTIVES ARE COVERED IN THIS CHAPTER: 


vy 1.1 Compare and contrast common operating system 
types and their purposes. 


= 32-bit vs. 64-bit: RAM limitations, Software compatibility 


a Workstation operating systems: Microsoft Windows, Apple 
Macintosh OS, Linux 


= Cell phone/tablet operating systems: Microsoft Windows, 
Android, iOS, Chrome OS 


a Vendor-specific limitations: End-of-life, Update limitations 


a Compatibility concerns between operating systems 


v 1.2 Compare and contrast features of Microsoft 
Windows versions. 


= Compare features: Windows 7, Windows 8, Windows 8.1, 
Windows 10 


= Corporate vs. personal needs: Domain access, Bitlocker, 
Media center, Branchcache, EFS 


= Desktop styles/user interface 


y 1.3 Summarize general OS installation considerations 
and upgrade methods. 


a Driver installation, software, and Windows updates 
= Factory recovery partition 
a Prerequisites/hardware compatibility 


a Application compatibility 





vy 1.5 Given a scenario, use Microsoft operating system 
features and tools. 


= Command 
= Notepad 


= Explorer 


System Restore 


=» Windows Update 





The previous chapters focused mainly on the hardware and 
= physical elements of the computing environment. We looked 
BBLS at the physical components, or hardware, of personal com- 
puters, laptops, and mobile devices, as well as networking, printers, and troubleshooting 
procedures. That completes the coverage of the topics on the 220-1001 exam. This chapter 
marks a departure from that. 

In this chapter—and several to come—the focus is on operating systems (OSs). To be 
specific, the majority of information will be on the Microsoft Windows operating systems, 
which you must know well for the 220-1002 certification exam. However, the 220-1002 
exam also requires basic knowledge of the Mac OS and Linux operating systems. These are 
covered in Chapter 20, “Working with Mac OS and Linux.” 





Understanding Operating Systems 


Computers are pretty much useless without software. A piece of hardware might 
just as well be used as a paperweight or doorstop if you don’t have an easy way to 
interface with it. Software provides that way. While there are many types of software, 
or programs, the most important one you’ll ever deal with is the operating system. 
Operating systems have many different, complex functions, but two of them jump out 
as being critical: interfacing with the hardware and providing a platform on which other 
applications can run. 

Here are three major distinctions of software about which you should be aware: 


Operating System The operating system (OS) provides a consistent environment for other 
software to execute commands. The OS provides users with an interface with the computer 
so that they can send commands (input) and receive feedback or results (output). To do this, 
the OS must communicate with the computer hardware to perform the following tasks, as 
illustrated in Figure 15.1. 


= Disk storage and file management 
= Device access 
= Memory management 


= Output format 
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FIGURE 15.1 The operating system interacts with resources. 
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Once the OS has organized these basic resources, users can give the computer instructions 
through input devices (such as a keyboard or a mouse). Some of these commands are built 
into the OS, whereas others are issued through the use of applications. The OS becomes 
the center through which the system hardware, other software, and the user communicate; 
the rest of the components of the system work together through the OS, which coordinates 
their communication. 


Application Used to accomplish a particular task, an application is software that is writ- 
ten to supplement the commands available to a particular OS. Each application is specifi- 
cally compiled (configured) for the OS on which it will run. For this reason, the application 
relies on the OS to do many of its basic tasks. Examples of applications include complex 
programs, such as Microsoft Word and Microsoft Edge, as well as simple programs, such 
as a command-line FTP program. Whether they are complex or simple, when accessing 
devices and memory, the programs can simply request that the OS do it for them. This 
arrangement saves substantially on programming overhead because much of the executable 
code is shared—that is, it is written into the operating system and can therefore be used by 
multiple applications running on that OS. 


Drivers Drivers are extremely specific software written for the purpose of instructing a 
particular OS on how to access a piece of hardware. Each modem or printer has unique 
features and configuration settings, and the driver allows the OS to understand how the 
hardware works and what it is able to do. 


In the following sections, we’ll look at some terms and concepts central to all operating 
systems. Then we’ll move into specific discussions of Windows operating systems. 








Are These the Only Versions of Windows? 


In the workplace, it is likely that you will encounter some different versions of the 
Windows operating systems beyond just Windows 10, Windows 8/8.1, and Windows 7. 
Windows XP and Vista, for example, are still used in some settings, even though support 
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for them has lapsed. Windows 10 has gained traction in both the workplace and home 
over the past few years. It is marketed to be the ongoing version that Microsoft will 
support in the future. 


Know that this version of the exam focuses only on the three Windows operating sys- 
tems mentioned here, as well as Mac OS and Linux (addressed in Chapter 20, “Work- 
ing with Mac OS and Linux”). It is highly recommended that you become familiar with 
all operating systems your job requires, but these are the ones that you will need to 
know for the A+ certification exam. 





Operating System Terms and Concepts 


Before we get too far into our discussion of PC operating systems, it will be useful to define 
a few key terms. The following are some terms that you will come across as you study this 
chapter and work in the computer industry: 


Version A version is a particular revision of a piece of software, normally described by a 
number that tells you how new the product is in relation to other versions of the product. 


Source The source code is the actual code that defines how a piece of software works. 
Computer operating systems can be open source, meaning that the OS can be examined 
and modified by anyone, or they can be closed source, meaning that only an owner or 
developer can modify or examine the code. 


P A word often used interchangeably with closed source is proprietary. 
A: 


Shell A shell is a program that runs on top of the OS and allows the user to issue com- 
mands through a set of menus or another interface (which may or may not be graphical). 
Shells make an OS easier to use by changing the user interface. Explorer is the name of the 
shell used with the Windows operating system since Windows 95. 


Graphical User Interface A graphical user interface, or GUI, is a method by which a per- 
son communicates with a computer using graphical images, icons, and methods other than 
text. GUIs allow a user to use a mouse, touchpad, or another mechanism (in addition to the 
keyboard) to interact with the computer to issue commands. 


Network A network is any group of computers that have a communication link between 
them. Networks allow computers to share information and resources quickly and securely. 


Cooperative Multitasking Cooperative multitasking is a multitasking method that depends 
on the application itself to be responsible for using the processor and then freeing it for access 
by other applications. This is the way very early versions of Windows managed multiple appli- 
cations. If any application locked up while using the processor, the application was unable to 
free the processor to do other tasks and the entire system locked, usually forcing a reboot. 
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Preemptive Multitasking Preemptive multitasking is a multitasking method in which the 
OS allots each application a certain amount of processor time and then forcibly takes back 
control and gives another application or task access to the processor. This means that if an 
application crashes, the OS takes control of the processor away from the locked application 
and passes it on to the next application, which should be unaffected. Although unstable 
programs still lock, only the locked application will stall, not the entire system. This is 
what is used today in modern operating systems. 


Multithreading Multithreading is the ability of a single application to have multiple 
requests in to the processor at one time. This results in faster application performance 
because it allows a program to do many things at once. 


32-Bit A 32-bit operating system is one that can not only run on a 32-bit processor but 
can utilize the capabilities of the processor fully. While this may sound simple, the truth 
of the matter is that it took many years after the 32-bit processor became available before 
operating systems (which were 16-bit at the time) were able to utilize their features. You 
cannot execute 64-bit software on 32-bit operating systems; the instructions sets are func- 
tionally different. 


64-Bit A 64-bit operating system is one that is written to utilize the instructions possible 
with 64-bit processors. Originally, these were more common with servers than desktops, 
but they have now become ubiquitous in the market with both Intel and AMD processors. 
As mentioned earlier, you cannot mix 64-bit software with 32-bit hardware (but you can 
run most 32-bit software on 64-bit hardware). 


x86 The term x86 is commonly used to refer to operating systems intended to run on the 
Intel processor. Intel initially identified its 32-bit processors with numbers ending in 86 
prior to switching to the Pentium line. 


x64 The term x64 is commonly used to denote operating systems that can run on 64-bit 
processors. This is also commonly referred to as AMD64, because AMD defined the 64-bit 
instruction set used today. 


ARM The term ARM is commonly used to denote operating systems that can run on 
Advanced RISC Machine (ARM) processors. ARM operating systems use a reduced 
instruction set computing (RISC) instruction set commonly found on tablet and phone pro- 
cessors. ARMv8-A processors can support 64-bit operating systems, so you will find 32-bit 
and 64-bit operating systems. 


Random Access Memory The term random access memory (RAM) is used to describe 
the amount of memory installed and accessible for an operating system. The operating 
system uses RAM to hold its operating system code, as well as the programs you open on 
the operating system. Each program you install will have a minimum RAM requirement 
and recommended RAM requirement. Most computer systems on the market today are 
sold with at least 4 gigabytes (GBs) of RAM. PC manufacturers have identified that newer 
programs are requiring more and more RAM to operate properly, so upgrades of 8 GB of 
RAM are common and becoming the new normal. 
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A 32-bit operating system has the limitation of addressing only 4 GBs of RAM. Most new 
computer systems on the market today come with a preinstalled 64-bit operating system. 
The 4 GB limitation will present itself if you are re-installing a computer system that has 
more than 4 GBs of RAM and use a 32-bit version of the operating system. You will find 
out quickly you just downgraded the computer. 


P Operating systems vendors implemented a Physical Address Extension 
A: (PAE) workaround for the 4 GB limit. For the purposes of the exam, how- 
ever, you should be aware that 32-bit operating systems have a hard limit 
of addressing 4 GBs of RAM. 


Operating Systems 


When we think of an operating system, Windows or Mac OS is probably the first that 
comes to mind. These operating systems comprise only one category of operating system. 
We use other operating systems, such as Android and Apple iOS, and don’t even realize 
how much they have become part of our daily life. The CompTIA exam recognized these 
various operating systems and integrated them into the 220-1002 exam. 


Operating System Categories 


An operating system category defines the use and function of both the operating system 
and the hardware. All operating systems fit into one of four different broad categories: 
server, workstation, mobile or cloud-based based operating systems. 


Server Server operating systems allow for the sharing of information and applications 
by workstation operating systems. The operating system is optimized for background pro- 
cesses used for access by clients, as opposed to the foreground processes, such as the GUI. 


Workstation Workstation operating systems allow end users to access information and 
applications on server operating systems as well as independently run applications locally. 
The operating system is optimized for foreground processes, such as the GUI. Background 
sharing is usually limited to a specific number of users; workstation versions of Microsoft 
Windows are limited to 10 concurrent users. 


Mobile Mobile operating systems are found on mobile devices such as phones and tablets. 
The mobile operating system is generally optimized for touch-based devices where one pro- 
gram is used at a time. 


Cloud-Based Cloud-based operating systems are a new breed of operating systems that have 
emerged from the mobile computing era. Cloud-based operating systems are also considered 
state-less operating systems, since personal data is not primarily stored on the device but in 
the cloud. Mobile operating systems can be considered cloud-based operating systems. So this 
category takes on a dual role of defining a category and describing where the data is stored. 
The Chrome operating system is not a mobile operating system and fits into this category. 


836 Chapter 15 = Operating System Basics 


Common Operating Systems 


Now that you understand the various categories of operating systems you may encounter, 
we will explore the common operating systems you will find in your everyday work as an 
A+ technician. 


Microsoft Windows The Microsoft Windows operating system is one of the most popular 
operating systems adopted by business and personal users. Windows 10, the current ver- 
sion, is considered a workstation operating system. 


Apple Macintosh OS macOS is the current version of the operating system for Apple 
Macintosh laptop and computer hardware platforms. Ironically, macOS is the original 
operating system name from back in the 1980s. Between 1999 and 2015, the macOS was 
called Mac OS X. The macOS operating system is considered a workstation operating 
system. 


Linux Linux was created as a free, open-source operating system in 1991 by Linus 
Torvalds. Linux was created to mimic the design of the MINIX (mini-UNIX) operating 
system, which was a minimal version of UNIX that was originally used for academic pur- 
poses. Today, the Linux kernel (core of the OS) remains a free, open-source platform upon 
which many different Linux distributions have been created, such as Ubuntu, Red Hat, 
Fedora, CentOS, and Debian, just to name a few. The Linux operating system is considered 
both a workstation operating system and a server operating system, depending on its instal- 
lation and configuration. 


Microsoft Windows Phone Microsoft purchased Nokia in 2013 to produce a platform for 
the Windows Phone furnishing the tile-based Windows 8 operating system. After several 
years on the market, Microsoft ended the sales of Windows-based phones, and support for 
the Windows-based phones will end in 2019. The Microsoft Windows phone was consid- 
ered a mobile operating system—based platform. 


Microsoft Windows Tablet In 2012, with the release of the tile-based Windows 8 operat- 
ing system, Microsoft released the Surface tablet. The Surface tablet was originally released 
with an ARM-based processor, but today it is sold mainly with Intel-based processors to 
compete on the market with Ultrabooks (subnotebook computers). The operating system is 
a full version of Windows 10 and is considered a mobile operating system. 


Android Google created the Android operating system as a tile-based mobile operating 
system. Android was originally released in 2008 with HTC phones; the release of Android 
tablets followed in 2011. Android-based phones and tablets have become quite popular in 
the mobile operating system market. The popularity of Android is attributed to the appli- 
cation ecosystem that the Google Play Store creates. The Google Play Store enables users 
to purchase, download, and install applications, books, music, and video for the Android 
operating system. 


iOS Apple created the iOS operating system as a tile-based mobile operating system. 
Originally released on the first iPhone in 2007, the operating system was known as the 
iPhone Operating System (iOS). The release of the iPod Touch followed a few months later, 
and this also furnished the iPhone Operating System. In 2010, the first iPad was released 
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and this furnished the iPhone Operating System as well. Today, the operating system’s 
name has been shortened to iOS; the current version, as of this writing of this book, is iOS 
version 12. Apple iOS is a popular mobile operating system in the market place today. Its 
popularity is attributed to Apple’s strong support for the accompanying hardware. The 
Apple App Store also creates a strong ecosystem for downloading, installing and purchas- 
ing applications, books, music, and video for the iOS operating system. 


Chrome OS Chrome OS is an operating system that is designed around the Chrome web 
browser by Google. Chrome OS was released in 2011 on the hardware platform known 
as the Chromebook, which is considered one of the first Ultrabooks. Chrome OS is a true 
cloud-based operating system, since all its data is stored in the Google Drive cloud-based 
storage system. Since the release of the Chromebook, workstation-type devices called 
Chromeboxes have been released to market. Applications, which are really just web plug- 
ins, can be installed from the Chrome Web Store. The applications are written in HTML, 
HTMLS, CSS, and JavaScript, which allow cross-platform support between Chrome OS 
and the Chrome web browser installed on a PC or Mac. 


Operating System Life Cycle 


An operating system life cycle is defined from the time an operating system is introduced to 
the time an operating system is no longer supported. As a computer technician, you should 
pay close attention to an operating system’s life cycle, because the end-of-life date for an 
operating system means that it will no longer receive updates. 

When an operating system is considered end-of-life, newer features will not be added to 
the operating system in the future. More importantly, security updates will no longer be 
offered, which will put your operating system and information at risk of compromise. 

The network administrator should pay close attention to the dates an operating system is 
considered end-of-life. If the organization has a support contract for problems, the support 
of the operating system at the end-of-life could no longer be honored. Of course, the lack of 
security updates for a corporate network is more concerning, since the stability of an orga- 
nization can be compromised. 

It has been common practice for network administrators to skip versions of every other 
operating system. This is mainly attributed to the long-term support for the current operat- 
ing system and the amount of work required to upgrade an entire organization’s operating 
systems. In addition to these factors, many hardware vendors support the current operating 
system plus the last release. Administrators can purchase a new laptop or PC and request 
the prior operating system. However, once the next operating system is released, the sup- 
port for the old operating system will force an upgrade. 


When Windows Vista was released, Windows XP was the dominant corpo- 
TE rate operating system. Windows Vista was not highly adopted, but when 

Windows 7 was released, many administrators planned on the highly 

anticipated upgrade to Windows 7. We see the same trends today, with 


many administrators skipping Windows 8 entirely and planning to move to 
Windows 10. 
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The following common terminology is used by operating system developers in relation to 
the life cycle of an operating system: 


Alpha An operating system in alpha is a first draft of an operating system. Operating 
systems that are available in alpha are considered previews. It is common to find these in 
open-source communities, such as Linux operating systems, but it is uncommon to find a 
corporate-based operating system in alpha. 


Beta An operating system in beta is a second draft of an operating system. This stage 

of an operating system means most of the bugs have been discovered and are avidly being 
patched. This stage is typically used to discover missing features and new bugs. Some oper- 
ating system developers require an opt-in to run a beta operating system, and some require 
invites to a beta program that mandates participation. 


Release Candidate An operating system that is deemed a release candidate is in the final 
stage before it is released to market. During the release candidate stage, administrators are 
urged to install and use the operating system as though it were the final release. The benefit 
is the administrator can get a previewed look at the operating system while helping to pol- 
ish the final product, also called the release to market (RTM). An operating system in this 
stage is generally stable and has relatively few bugs. 


Current A current operating system, as the term states, is the current release of an operat- 
ing system. Many operating system developers are on a one- to two-year release cycle for 
the future version of the current operating system. 


Service Pack Although the term service pack is generally associated with updates, it is also 
used to describe a milestone in the life cycle of an operating system. When a service pack is 
released for an operating system, it adds major features as well as patches for both security 
and functionality. Microsoft has replaced this term with the introduction of Windows 8; it is 
now just called an update. However, many other operating systems still use “service pack.” 


Mainstream Support During the mainstream support of an operating system, all hotfixes, 
security updates, feature updates, and general support for the operating system is sup- 
ported. An operating system developer will usually have a predetermined mainstream sup- 
port date when the operating system is released. When the mainstream support ends for an 
operating system, it is either no longer supported or enters into an extended support period. 


Extended Support The extended support period, sometimes called the long-term support 
(LTS) period, for an operating system is the final state of an operating system’s life cycle. For 
example, during this time, hotfixes and features will no longer be supported, but critical secu- 
rity updates will be supported with Microsoft operating systems. Additional contract purchases 
may be required if hotfixes are required during this period. An administrator should have all 
systems upgraded to the current operating system by the end of the extended support date. 


Minimum System Requirements 


In the upcoming chapters, we’ll explore how to install and upgrade each of the operating 
systems that you need to know for the exam. However, the hardware requirements of the 


Understanding Operating Systems 839 


operating system that you are thinking of installing can prevent you from even considering 
these options. Before you can begin to install an OS, there are several items to consider. 
You must perform the following tasks before you even start to think about undertaking the 
installation: 


1. Determine hardware compatibility and minimum requirements. 
2. Determine installation options. 

3. Determine the installation method. 

4. Prepare the computer for installation. 


Let’s begin our discussion by talking about hardware compatibility issues and the 
requirements for installing the various versions of Windows. 


Determining Hardware Compatibility and Minimum Requirements 


Before you can begin to install any version of an operating system, you must determine 
whether it supports the hardware that you will be using. That is, will the version of the oper- 
ating system have problems running any of the device drivers for the hardware that you have? 
To answer this question, operating system vendors have developed several versions of 
hardware compatibility lists (HCLs). An HCL is a list of all the hardware that works with 
the operating system. Microsoft published HCLs for many versions of Windows. Since 
the release of Windows 10, however, Microsoft recommends that users run the Upgrade 
Readiness Deployment Script, which can be downloaded from the following site: 


https: //www.microsoft.com/en-us/download/details.aspx?id=53327 


The point is, before installing an operating system, you should check all your computer’s 
components against an HCL to ensure that they are compatible with the version of operat- 
ing system you plan to install. That a product is not on the list does not mean it will not 
work; it merely means it has not been tested. The list represents tested software and hard- 
ware that vendors have stated are compatible, but it is by no means all-inclusive. 

In addition to general compatibility, it is important that your computer have enough 
“oomph” to run the version of an operating system that you plan to install. For that matter, 
it is important for your computer to have enough resources to run any software that you 
plan to use. Toward that end, Microsoft (as well as other software publishers) releases a list 
of both minimum and recommended hardware specifications that you should follow when 
installing Windows. 

“Minimum specifications” are the absolute minimum requirements for hardware that 
your system should meet in order to install and run the OS version you have chosen. 
“Recommended hardware specifications” are what you should have in your system in order 
to realize usable performance. Always try to have the recommended hardware (or better) in 
your system. If you don’t, you may have to upgrade your hardware before you upgrade your 
operating system if you’re running anything beyond a minimal environment. Table 15.1 lists 
the minimum hardware specifications for Windows 8, 8.1, and 10. Note that in addition to 
these minimum requirements, the hardware chosen must be compatible with the selected 
version of Windows. Also be aware that additional hardware may be required if certain fea- 
tures are installed (for example, a TV tuner is required to play and record live TV). 
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TABLE 15.1 Windows 8, 8.1, and 10 minimum system requirements 





Hardware 32-Bit 64-Bit 

Processor 1 GHz, with support for PAE, NX, 1 GHz, with support for PAE, 
and SSE2 NX, and SSE2 

Memory 1 GB 2 GB 

Free hard disk space 16 GB 20 GB 

Video Microsoft DirectX 9 graphics Microsoft DirectX 9 graphics 
device with WDDM 1.0 driver device with WDDM 1.0 driver 


Table 15.2 lists the minimum system requirements for Windows 7. Note that Windows 
XP Mode requires an additional 1 GB RAM and 15 GB hard drive space. 


TABLE 15.2 Windows 7 minimum system requirements 





Hardware Minimum Supported for All Versions 
Processor 1 GHz 

Memory 1 GB for 32-bit; 2 GB for 64-bit 

Free hard disk space 16 GB for 32-bit; 20 GB for 64-bit 

CD-ROM or DVD drive DVD-ROM 

Video DirectX 9 with WDDM 1.0 (or higher) driver 
Mouse Required (but not listed as a requirement) 
Keyboard Required (but not listed as a requirement) 
Internet access Not listed as a requirement 


If there is one thing to be learned from Table 15.1 and Table 15.2, it is that Microsoft is 
nothing if not optimistic. For your own sanity, though, we strongly suggest that you always 
take the minimum requirements with a grain of salt. They are, after all, minimum require- 
ments. Even the recommended requirements should be considered minimum requirements. 
The bottom line is to make sure that you have a good margin between your system’s per- 
formance and the minimum requirements listed. Always run Windows on more powerful 
hardware rather than less! 
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Other hardware—sound cards, network cards, modems, video cards, and so on—may 
or may not work with Windows. If the device is fairly recent, you can be relatively certain 
that it was built to work with the newest version of Windows. If it is older, however, you 
may need to find out who made the hardware and check their website to see if there are 
drivers available for the version of Windows that you are installing. 

There’s one more thing to consider when evaluating installation methods. Some methods 
work only if you’re performing a clean installation, not an upgrade. We’ll discuss this in 
greater detail in Chapter 17, “Working with Windows 10.” 


Windows Editions 


After assessing the requirements for the operating system and verifying that the operating 
system will be compatible with your hardware, you need to decide which features will be 
required for your installation and choose the appropriate edition of the operating system. 
Every Windows operating system has a set of features that are bundled into the edi- 
tion being purchased. Windows 10 has four main editions of the operating system: Home, 
Pro, Education, and Enterprise. Windows 10 Home and Windows 10 Pro are both avail- 
able through retail channels and can be purchased off the shelf, but the Education and 
Enterprise editions are unavailable without a volume license agreement from Microsoft. 
Table 15.3 lists some of the most common features of the Windows 10 editions. For some fea- 
tures, you may be required to purchase additional licensing or a volume license agreement. The 
ability to join a corporate domain is probably the most important feature. Windows 10 Home is 
the only edition that does not support this feature. BitLocker is a volume encryption technology 
vs. the file and folder encryption feature of Encrypted File System (EFS). Both BitLocker and EFS 
require a version of Windows other than Windows 10 Home. BranchCache and DirectAccess 
are considered corporate features. BranchCache allows for caching of commonly accessed files at 
branch office locations. DirectAccess provides a method of an automatic connection for a virtual 
private network (VPN) between the client and a main office; it is location-aware as well. This 
allows users that travel access to corporate resources, as if they were in the office. 


TABLE 15.3 Windows 10 Editions 





Feature Home Pro Education Enterprise 
BranchCache No No Yes Yes 
DirectAccess No No Yes Yes 
BitLocker No Yes Yes Yes 
Joining a domain No Yes Yes Yes 
Encrypted File System (EFS) No Yes Yes Yes 


Cortana Yes Yes No Yes 
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geted the personal video recorder (PVR) market that allowed tuner cards 
and recording of channels. When Windows 8 was launched, Microsoft 
offered an upgrade to install Media Center as an add-on for Windows 8 Pro. 
However, with the explosion of paid services that allow video on-demand 
streaming, this add-on was omitted from Windows 10 and future releases. 


X. Microsoft created an edition of Windows XP called Media Center. It tar- 
TE 


Windows 10 Home is sold as a retail product, and it’s preinstalled by the hardware 
vendor. When the operating system is preinstalled, it is referred to as an original equipment 
manufacturer (OEM) operating system. Windows 10 Pro (Professional) is the premier retail edi- 
tion of the Windows 10 operating system. It is the most common OEM operating system because 
it allows users to join corporate domains and becomes a value-add for the hardware vendor. 
Windows 10 Education is primarily used by (as you guessed it) education organizations, such as 
K-12 and higher-education institutions. Windows 10 Education supports all features of Windows 
10 Enterprise except for Cortana, which is omitted for privacy issues. Windows 10 Enterprise 
supports all features of Windows 10 and can be found in mid- to large-sized organizations. 


The Windows Interface 


Figure 15.2 shows the interface of a machine running Windows 7. If you’ve worked with 
older versions of Windows (such as Windows XP), you'll notice that it looks similar to the 
older interfaces. While there are some differences, most of the basic tasks are accomplished 
in almost identical fashion on everything from a Windows 95 workstation computer on up. 
Also, although the tools that are used often vary between the different OSs, the way that 
you use those tools remains remarkably consistent across platforms. 


FIGURE 15.2 The Windows 7 interface 
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Microsoft released Windows 8 and significantly changed the Start menu, which was 
a deviation from prior operating systems. Windows 8 was created to be more compatible 
with tablets and mobile devices. It is considered a tile-based operating system. This was a 
departure from the usual, as Figure 15.3 shows, and not one that was met with as warm 
a reception as Microsoft had hoped. Windows 8.1 kind of brought back the Start menu; it 
was actually just a button that launched the tile-based menu called the Start screen. 


FIGURE 15.3 The Windows 8 interface 





Borrowing from the best of each of the past operating systems, Microsoft came up with 
a new user interface for Windows 10, as shown in Figure 15.4. 


FIGURE 15.4 The Windows 10 interface 
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We will begin with an overview of the common elements of the Windows GUI. 
We will then look at some tasks that are similar across Windows operating systems. 
You are encouraged to follow along by exploring each of the elements as they are 
discussed. 


PP As you follow along, you may notice that there are numerous icons and 
A: options that we do not mention. Quite honestly, there are too many to 
cover, and they're beyond the scope of this chapter. For now, simply 
ignore them or browse through them on your own, and then return to 
the text. 


The Desktop 


The Desktop is the virtual desk on which all your other programs and utilities run. By 
default, it contains the Start menu, the taskbar, and a number of icons. The Desktop 
can contain additional elements, such as shortcuts or links to web page content. Because 
the Desktop is the foundation on which everything else sits, the way that the Desktop 

is configured can have a major effect on how the GUI looks and how convenient it is 

for users. When you click the lower-left corner of the Desktop, the Start menu appears. 
(Right-clicking the Windows icon in Windows 8.1 and above displays a set of operating 
system functions.) 

You can change the background patterns, screen saver, color scheme, and size of ele- 
ments on the Desktop by right-clicking any area of the Desktop that doesn’t contain an 
icon. The menu that appears, similar to the one shown for Windows 10 in Figure 15.5, 
allows you to do several things, such as create new Desktop items, change how your icons 
are arranged, or select a special command called Properties or Personalize. 


FIGURE 15.5 The Windows 10 Desktop context menu 
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The Three Clicks in Windows 


When it comes to interacting with a mouse in Windows, there are three possibilities: 


a Primary mouse click—A single click (typically the left mouse button) is used to select 
an object or place a cursor. 


= Double-click—Two primary mouse clicks in quick succession are used to open a pro- 
gram through an icon or for other application-specific functions. 


= Secondary mouse click (or alternate click) —Most mice have two buttons. Clicking 
once on the secondary button (usually the one on the right, although that can be 
modified) is interpreted differently from a left mouse click. Generally, this click dis- 
plays a context-sensitive menu in Windows from which you can perform tasks or 
view object properties. 








When you right-click the Desktop in Windows 10 and choose Personalize, you will see 
the Display Settings screen, as shown in Figure 15.6. 


FIGURE 15.6 The Windows 10 Display Settings screen 
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With the rapid adoption of Windows 10, this book will cover the most current version 
of Windows 10 (1803). However, every prior operating system Microsoft has produced has 
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similar settings for personalization. We will cover the main ones in the Display Settings 
window for Windows 10: 


Background The Background section is used to select a picture to display on the Desktop. 
In addition to setting a picture, you can select a group of pictures to display as a slideshow 
or display a static color. 


Colors The Color section allows you to select a color scheme for the Start menu or to 
change the color or size of other Desktop elements. 


Lock Screen Windows 8 and above allows you to easily change the lock screen wallpaper 
as well as the applications that are displayed on the lock screen. 


Themes The Themes section allows you to select a theme to customize the look and feel 
of your machine quickly. Selecting a theme sets several items at once, such as a picture to 
display on the Desktop, the look of icons, the sounds to use, and so on. All these options 
can also be selected individually through the other personalization tabs. 


Fonts The Fonts section allows you to review any font installed on the operating system. 
These fonts are used by applications that allow changing of fonts, such as a Microsoft 
Office. In addition, you can uninstall fonts and install new fonts from the Microsoft 
Store. 


Screen Saver Although the screen saver is not in the Personalization menu, it’s worth 
covering. The screen saver can be configured to automatic display on your screen if your 
computer has been inactive for a certain period of time. Originally used to prevent burn-in 
of monitors, screen savers are now generally used for entertainment or to password-protect 
users’ desktops. You can access the screen saver options in Windows 10 by clicking Lock 
Screen under Personalization and then clicking Screen Saver Settings. The Screen Saver 
Control Panel tab also gives you access to other power settings. 


Start The Start section allows you to set the options for the Start menu, such as to show 
the most used apps or to show recently added apps, just to name a few. 


P Windows 10 has replaced many of the Control Panel applets with the Set- 
‘GQ tings app. If you cannot find a setting from a prior operating system in the 
Control Panel Desktop app, you can find the setting in the new Settings app. 


In Exercise 15.1, you will see how to change a screen saver. 


Changing a Screen Saver in Windows 10 
1. Right-click the Desktop. 


2. Choose Personalize from the context menu. 
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3. Click the Lock screen on the left side. 

4. Scroll to the bottom and select Screen Saver Settings. 
5. Choose a screen saver from the drop-down menu. 

6. Click Preview to view how the screen saver will look. 
7. Click OK to exit the Settings window. 

The Taskbar 


The taskbar (see Figure 15.7) is another standard component of the Windows interface. 
Note that although the colors and feel of the Desktop components, including the task- 

bar, have changed throughout the operating system versions, the components themselves 
are the same. In versions prior to Windows 10, the taskbar contains two major items: 

the Start menu and the notification area, previously called the system tray (systray). The 
Start menu is on the left side of the taskbar and is easily identifiable: It is a button that has 
the Windows logo on it, the word Start on it, or, in the case of Windows 7, is the large 
Windows icon. The system tray is located on the right side of the taskbar and contains only 
a clock by default, but other Windows utilities (for example, screen savers or antivirus utili- 
ties) may put their icons there to indicate that they are running and to provide the user with 
a quick way to access their features. 


FIGURE 15.7 The Windows 10 taskbar 
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Windows also uses the middle area of the taskbar. When you open a new window or pro- 
gram, it gets a button on the taskbar with an icon that represents the window or program as 
well as the name of the window or program. To bring that window or program to the front 
(or to maximize it if it was minimized), click its button on the taskbar. As the middle area of 
the taskbar fills with buttons, the buttons become smaller so that they can all be displayed. 

Windows 8 and Windows 10 allow you to pin commonly used programs to the taskbar. 
The icon will appear on the taskbar, and when the program is running, a line will appear 
under the icon. You can pin any running task by right-clicking the icon in the taskbar and 
selecting Pin to Taskbar. You can just as easily remove pinned icons by right-clicking them 
and selecting Unpin from Taskbar. 

You can increase the size of the taskbar as well as move its position on the Desktop. 
Either of these tasks requires you to first unlock the taskbar, by right-clicking the taskbar 
and unselecting Lock the taskbar. (By default, it is enabled.) You can then move the mouse 
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pointer to the top of it and pause until the pointer turns into a double-headed arrow. Once 
this happens, click the mouse and move it up to make the taskbar bigger, or move it down 
to make it smaller. You can also click the taskbar and drag it to the top or side of the 
screen. 


you've configured the taskbar position and layout to your liking, you can 
configure it so that it can’t be changed accidentally. To do so, right-click 
the taskbar and select Lock the Taskbar. To unlock the taskbar and make 
changes, right-click the taskbar and select Lock the Taskbar again. 


w In older versions of Windows, the taskbar is not locked by default. Once 
P 


You can make the taskbar automatically hide itself when it isn’t being used (thus freeing 
that space for use by the Desktop or other windows). In Exercise 15.2, we will show you 
how to do this. 


Auto-Hiding the Taskbar 
1. Right-click the taskbar. 


2. Choose Taskbar Settings. This will bring up the Settings app for the Personalization 
options. 


3. Click the switch to turn on the Automatically Hide the Taskbar in Desktop Mode 
option. The taskbar will automatically hide when the mode is turned on. 


4. Move the mouse pointer to the bottom of the screen. The taskbar will pop up and be 
available for normal use. 


The Start Menu 


Back when Microsoft officially introduced Windows 95, it bought the rights to use the 
Rolling Stones’ song “Start Me Up” in its advertisements and at the introduction party. 
Microsoft chose that particular song because the Start menu was the central point of focus 
in the new Windows interface, as it was in all subsequent versions until Windows 8. 

To display the Start menu, you can press the Windows key on your keyboard at any 
time. You can also click the Windows logo button in the taskbar in Windows 10 and 
8.1. You'll see a Start menu similar to the one shown in Figure 15.8 for Windows 10. 
With Windows 8, you point to the top-right corner of the Desktop until the Charms bar 
appears, as shown in Figure 15.9. The Start button will appear in the middle. Clicking 
the Start Charm will launch the Start screen. Regardless of the operating system, the 
Start menu serves the function of providing quick access to important features and 
programs. 
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FIGURE 15.8 Sample Windows 10 Start menu 
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FIGURE 15.9 The button to access the Windows 8 Start screen appears when you 
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P There was considerable backlash by the user community over the removal 
OTE of the Start menu in Windows 8. A number of third-party vendors devel- 
oped alternatives and marketed them to fill this demand. 


From the Start menu, you can select any of the various options the menu presents. An 
arrow pointing down on a folder indicates that more items exist in the folder. To select a sub- 
menu for an icon, move the mouse pointer over the icon and right-click. The submenu will 
appear, allowing you to pin, rate, and uninstall an application, just to name a few options. 


P same time, type winver.exe, and then press Enter. The About Windows 
Application dialog box will display the version and build number of the 
operating system. 


A To check which OS you are using, press the Windows key and R key at the 


In prior operating systems, right-clicking the My Computer icon on the Desktop 
and selecting Properties displayed the OS type and version. Note that the My 
Computer/This PC icon may not appear on the Desktop by default. (If the icon 
does not appear on the Desktop, you can find it on the Start menu instead in 
versions of Windows other than Windows 8/8.1.) You can add the icon to the 
Desktop by using the Personalization dialog box, or you can click Start and 
then right-click the Computer option and select Properties in Windows 7. 


The following sections describe the principal features of the Windows 10 Start menu. 


Cortana 


Windows 10 introduced Cortana, a personal desktop assistant for the Windows operating 
system. In Windows 10, Cortana is enabled by default and allows you to search without 
clicking the Start menu. The search box is located to the right of the Start menu. You just 
need to start typing. Cortana will search apps installed, documents, and the web. Cortana 
will even come up with suggestions, as shown in Figure 15.10. You don’t even need to type; 
you can click the microphone in the search box and speak your search. 


FIGURE 15.10 The Cortana personal desktop assistant 
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Help and Support 


Windows has always included a very good Help system. With the addition of Cortana, 
Microsoft has elected to leave help and support to web searches. Hardware vendors may 
add a help and support center for the hardware platform, but the operating system help sys- 
tem will be accessed through web searches. 


M A quick way to access Help is to press the F1 key. In operating systems 
P before Windows 10, a help and support application would launch. In 
Windows 10, the F1 key launches the web browser. 


The Run Command 


It is possible to run commands and utilities from the Cortana search box or from the Run 
dialog box. To access the Run dialog box in Windows 10, simply press the Windows key 
and the R key at the same time. To execute a particular program, type its name in the 
Open field. If you don’t know the exact path, you can browse to find the file by clicking the 
Browse button. Once you have typed in the executable name, click OK to run the program. 


To open a command prompt, type cmd or command in the Run box, and 
P then click OK. You might need to run this as Administrator if you want to 


change system settings. From the Start menu, type cmd in the search field 
and then type Ctrl+Shift+Enter to run as Administrator. 


Applications can easily be started from the Run window. You often will find it faster 
to open programs this way than to search for their icons in the Start menu maze. In 
Exercise 15.3, you will see how to start a program from the Run window. 


Starting a Program from the Run Window 

1. Press the Windows key and the R key at the same time. 
2. Inthe Open field, type notepad. 

3. Click OK. Notepad will open in a new window. 


If the program that you want to start has been run from the Run window before, you can 
find it on the Open field's drop-down list. Click the down arrow to display the list, and 
then select the program that you want by clicking its name and then OK. 


Shut Down Command 


Windows operating systems are very complex. At any one time, many files are open in 

memory. If you accidentally hit the power switch and turn off the computer while these files 
are open, there is a good chance that they will be corrupted. For this reason, Microsoft has 
added the Shut Down command under the Start menu. The command appears as an icon of 
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an on/off button without a label. When you select this option, Windows presents you with 
several choices. The submenu will display Sleep, Shutdown, and Restart. 


Icons 


Icons are shortcuts that allow a user to open a program or a utility without knowing where 
that program is located or how it needs to be configured. Icons consist of the following 
major elements: 


a Icon label 
= Icon graphic 
= Program location or path 

The label and graphic of the icon typically tells the user the name of the program and 
gives a visual hint about what that program does. The icon for the Notepad program, 
for instance, is labeled Notepad, and its graphic is a notepad. By right-clicking an icon 
once, you make it the active icon and a drop-down menu appears. One of the selections is 
Properties. Clicking Properties brings up the icon’s attributes (see Figure 15.11), and it is 
the only way to see exactly which program an icon is configured to start and where the pro- 


gram’s executable is located. You can also specify whether to run the program in a normal 
window or maximized or minimized. 


FIGURE 15.11 The Properties window of an application 
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Additional functionality has been added to an icon’s properties to allow for backward 
compatibility with older versions of Windows (known as compatibility mode). To configure 
this, click the Compatibility tab and specify the version of Windows for which you want 
to configure compatibility. Note that you cannot configure compatibility if the program is 
part of the version of Windows that you are using. Figure 15.12 shows the settings available 
for an older program. 


FIGURE 15.12 The Compatibility settings possible with an older program 
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This feature is helpful if you own programs that used to work in older versions of 
Windows but no longer run under the current Windows version. In addition, you can spec- 
ify different display settings that might be required by older programs. 


Standard Desktop Icons 


In addition to the options in your Start menu, a number of icons are placed directly on the 
Desktop in Windows. The Recycle Bin icon is one of these icons. Along with the Recycle 
Bin icon, the Computer icon is usually found on the Desktop. 


The Computer Icon If you double-click the Computer icon, it displays a list of all the disk 
drives installed in your computer. In addition to displaying disk drives, it displays a list of 
other devices attached to the computer, such as scanners, cameras, and mobile devices. The 
disk devices are sorted into categories such as Hard Disk Drives, Devices With Removable 
Storage, Scanners And Cameras, and so on. 
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You can delve deeper into each disk drive or device by double-clicking its icon. The con- 
tents are displayed in the same window. 


In addition to allowing you access to your computer’s files, the This PC icon on the Desktop 
lets you view your machine’s configuration and hardware, also called the System Properties. 


EP In Windows 8.1 and Windows 10, the My Computer icon was renamed to 
‘GQ This PC. By default, it is not displayed on the Desktop. In Windows 10, you 
can add it by going to Settings > Personalization > Themes and clicking 
Desktop Icon Settings. 


The Network Icon Another icon in Windows relates to accessing other computers to 
which the local computer is connected, and it’s called Network (known as My Network 
Places in previous versions). 


Opening Network lets you browse for and access computers and shared resources (print- 
ers, scanners, media devices, and so on) to which your computer can connect. This might 
be another computer in a workgroup or HomeGroup. It is important to note that network 
browsing will not operate if the PC is joined to a domain. Network browsing in Windows 7 
and above is restricted to Workgroup and HomeGroup modes. 


-_ For the exam, know that the three types of networks from which you can 
I: choose are Workgroup, HomeGroup, and Domain. Other chapters in this 
book focus more on networking specifics and how to set up each type. 


Through the properties of Network, you can configure your network connections, includ- 
ing LAN and dial-up connections (should you still live in an area where a now antiquated 
dial-up connection is required for Internet access). 


You can add common Desktop icons by navigating to Settings > Personalization > Themes 
and clicking Desktop Icon Settings. A dialog box will appear that allows you to add and 
change the common Desktop icons, as shown in Figure 15.13. 


The Recycle Bin All files, directories, and programs in Windows are represented by icons. 
These icons are generally referred to as objects. When you want to remove an object from 
Windows, you do so by deleting it. Deleting doesn’t just remove the object, though; it also 
removes the ability of the system to access the information or application that the object 
represents. Therefore, Windows includes a special folder where all deleted files are placed: 
the Recycle Bin. The Recycle Bin holds the files until it is emptied or until you fill it. It gives 
users the opportunity to recover files that they delete accidentally. By right-clicking the 
Recycle Bin icon, you can see how much disk space is allocated. Some larger files that can- 
not fit in the Recycle Bin will be erased after a warning. 
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FIGURE 15.13 Common icons can easily be added to the Desktop. 





© Desktop Icon Settings x 


Desktop Icons 
Desktop icons 
Computer M Recycle Bin 
O User's Files C Control Pane! 
M Network 





g 
Epo 
& 











M Allow themes to change desktop icons 








Cot | 





You can retrieve a file that you have deleted by opening the Recycle Bin and then dragging 
the file from the Recycle Bin to where you want to restore it. Alternatively, you can 
right-click a file and select Restore. The file will be restored to the location from which it 
was deleted. 


P In versions of Windows that this exam tests you on, the “deleted” files 
OTE are stored in a folder called \$Recycle.Bin. This was not the case in all 
previous versions of Windows. 


To erase files permanently, you need to empty the Recycle Bin, thereby deleting any 
items in it and freeing the hard drive space they took up. If you want to delete only 
specific files, you can select them in the Recycle Bin, right-click, and choose Delete. You 
can also permanently erase files (bypassing the Recycle Bin) by holding down the Shift 
key as you delete them (by dragging the file and dropping it in the Recycle Bin, pressing 
the Del key, or clicking Delete on the file’s context menu). If the Recycle Bin has files in 
it, its icon looks like a full trash can; when there are no files in it, it looks like an empty 
trash can. 
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What’s in a Window? 


We have now looked at the nature of the Desktop, the taskbar, the Start menu, and icons. 
Each of these items was created for the primary purpose of making access to user applications 
easier. These applications are, in turn, used and managed through the use of windows—the 
rectangular application environments for which the Windows family of operating systems is 
named. We will now examine how windows work and what they are made of. 

A program window is a rectangular area created on the screen when an application is 
opened within Windows. This window can have a number of different forms, but most 
windows include at least a few basic elements. 


Elements of a Window 


Several basic elements are present in a standard window. Figure 15.14 shows the control 
box, title bar, Minimize/Maximize button, Close button, and resizable border in a text edi- 
tor called Notepad (notepad.exe) that has all of the basic window elements—and little else. 


FIGURE 15.14 The basic elements of a window, as seen in Notepad 
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The basic window elements are as follows: 


Control Box Located in the upper-left corner of the window, the control box is used to 
control the state of the application. It can be used to maximize, minimize, and close the 
application. Clicking it once brings into view a selection menu. Double-clicking it closes the 
window and shuts down the application. 


Minimize and Maximize/Restore Buttons Used to change the state of the window on the 
Desktop. They are discussed in the section “States of a Window” later in this chapter. 


Close Button Used to easily end a program and return any resources that it was using to 
the system. It essentially does the same thing as double-clicking the control box but with 
one fewer click. 
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Title Bar The area between the control box and the Minimize button. It states the name 
of the program and, in some cases, gives information about the particular document being 
accessed by that program. The color of the title bar indicates whether the window is the 
active window. Clicking and holding on it is an easy way to move the window on the screen. 


Menu Bar Used to present useful commands within an application in an easily accessible 
format. Clicking one of the menu choices displays a list of related options from which you 
may choose. 


Active Window The window that is currently being used. It has two attributes. First, any 
keystrokes that are entered are directed into the active window by default. Second, any 
other windows that overlap the active window are pushed behind it. 


Border A thin line that surrounds the window in its restored down state and allows it to 
be resized. 


Not every element is found in every window, because application programmers can 
choose to eliminate or modify each item. Still, in most cases, they will be consistent, with 
the rest of the window filled in with menus, toolbars, a workspace, or other application- 
specific elements. For instance, Microsoft Word, the program with which this book was 
written, adds a Ribbon control. It also has a menu bar, a number of optional toolbars, 
scroll bars at the right and bottom of the window, and a status bar at the very bottom. 
Application windows can become quite cluttered. 

Notepad is a very simple Windows program. It has only a single menu bar and the basic 
elements shown in Figure 15.14. It also starts a simple editor, where you can edit a file that 
already exists or create a new one. Figure 15.15 shows a Microsoft Word window. Both Word 
and Notepad are used to create and edit documents, but Word is far more configurable and 
powerful and therefore has many more optional components available within its window. 


FIGURE 15.15 A window with many more components, as seen in Microsoft Word 
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Video provides a powerful way to help you prove your point. When you click Online Video, you can 
paste in the embed code for the video you want to add. You can also type a keyword to search online for 
the video that best fits your document. To make your document look professionally produced, Word 
provides header, footer, cover page, and text box designs that complement each other. For example, 
you can add a matching cover page, header, and sidebar. 


Click Insert and then choose the elements you want from the different galleries. Themes and styles also 
help keep your document coordinated. When you click Design and choose a new Theme, the pictures, 
charts, and SmartArt graphics change to match your new theme. When you apply styles, your headings 
change to match the new theme. Save time in Word with new buttons that show up where you need 
them. 


To change the way a picture fits in your document, click it and a button for layout options appears next 
to it. When you work on a table, click where you want to add a row or a column, and then click the plus 
sign. Reading is easier, too, in the new Reading view. You can collapse parts of the document and focus 
on the text you want. If you need to stop reading before you reach the end, Word remembers where 
you left off - even on another device. 
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States of a Window 


There is more to the Windows interface than the specific parts of a window. Windows also 
are movable, stackable, and resizable, and they can be hidden behind other windows (often 
unintentionally). 

When an application window has been launched, it exists in one of three states: 


Maximized A maximized window takes up all the available space on the screen. When 

it is in front of other programs, it is the only thing visible—even the Desktop is hidden. It 
takes up the entire space of the Desktop, and the middle button in the upper-right corner 
displays two rectangles rather than one. The sides of the window no longer have borders. 
The window is flush with the edges of the screen. Maximizing a window provides the max- 
imum workspace possible for that window’s application, and the user can actively access 
the window. In general, maximized mode is the preferred window size for most word pro- 
cessing, graphics-creation, and other types of user applications. 


Restored A restored window can be used interactively, and it is identical in function to 

a maximized window, with the simple difference that it does not necessarily take up the 
entire screen. Restored windows can be very small, or they can take up as much space 

as maximized windows. Generally, how large the restored window becomes is the user’s 
choice. Restored windows display a Maximize button (the middle button in the upper-right 
corner) with a single rectangle in it; this is used to maximize the window. Restored win- 
dows have a border. 


Minimized Minimized program windows are represented by nothing but an icon and title 
on the taskbar, and they are not usable until they have been either maximized or restored. 
The difference between a minimized program and a closed program is that a minimized 
program is out of the way, but it is still taking up resources and is therefore ready to use if 
you need it. It also leaves the content of the window in the same place when you return to it 
as when you minimized it. 


When one program is open and you need to open another (or maybe you need to stop 
playing a game because your boss has entered the room), you have two choices. First, you 
can close the program currently in use and simply choose to reopen it later. If you do this, 
however, the contents of the window (your current game, for example) will be lost, and you 
will have to start over. Once the program has been closed, you can move on to open the 
second program. 

The second option is to minimize the active window. Minimizing the game window, for 
example, removes the open window from the screen and leaves the program open but dis- 
plays nothing more than an icon and title on the taskbar. Later, you can restore the window 
to its previous size and finish the game in progress. 


P Keep in mind that applications in the background are still running. There- 
‘i fore, if you minimize your game, you might return to find that you’ve been 
eaten by whatever monster you were running from in the game. A program 
running while minimized can be a good thing, however, if you’re running a 
useful utility, such as a long search or an Internet download. 
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Updating Windows 


Windows includes Windows Update, a feature designed to keep Windows current by auto- 
matically downloading and installing updates, such as patches and security fixes. 

By default, Windows Update will run automatically when any administrator user is 
logged in. If you want to run it manually, however, you can always do so. Here is an over- 
view of how Windows Update works: 


1. Windows Update starts (either by itself or manually). 


2. Windows Update goes online to check to see what updates are available. It compares 
the update list to the updates that have already been applied to the computer or have 
been refused by the administrator. 


If updates are available, they will be downloaded automatically in the background. 


Once the updates are downloaded, Windows Update will notify you that the download 
is complete and ask if you want to install them, assuming you have that behavior con- 
figured. (Settings can be used to control the behavior.) 


PP Often, major updates to Windows are called service packs. However, 
A: Microsoft just considers them as updates now in Windows 10. 


If you choose not to install the updates right away, Windows will do so for you when 
you shut off the computer. Instead of shutting off right away, Windows Update will install 
the updates first and then perform a proper shutdown. 

By default, Windows Update is enabled, and in Windows 10 it is mandatory. In Exercise 
15.4, you will walk through the process of configuring the active hours for Windows 
Update. Setting the active hours to the times the computer is in use will prevent updates 
from rebooting the PC during those times. 


Configuring Windows Update Active Hours 
1. Click the Start button and choose the Settings gear. 


2. Click the Update & Security group on the Windows Settings page, and then click 
Change Active Hours. 


3. Choose the hours of normal operations of the computer. 


4. Click Save. 
P Microsoft has an update server, Windows Server Update Services (WSUS), 
A: for large organizations that controls the update process for all hosts in the 


company. 
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Creating Restore Points 


Almost everyone, no matter how hard they’ve tried to keep their computer running 
properly, will experience a computer crash at some point. Many of the ways to get your 
computer back up and running (such as reinstalling the operating system) take a lot of time. 
In Windows, System Restore allows you to create restore points to make recovery of the 
operating system easier. 

A restore point is a copy of your system configuration at a given point in time. Restore 
points are created one of three ways: 


a Windows creates them automatically by default. 


=a You can manually create them yourself (which is highly recommended before you make 
any significant changes to the system, such as installing new drivers). 


= During the installation of some programs, a restore point is created before the instal- 
lation; that way, if the install fails, you can “roll back” the system to a preinstallation 
configuration. 


Restore points are useful for when Windows fails to boot but the computer appears to be 
fine otherwise or if Windows doesn’t seem to be acting right and you think it was because 
of a recent configuration change. 

It’s important to note that in Windows 10, the automatic system recovery option 
is disabled by default. It must be turned on manually. We will cover how to do so in 
Exercise 15.5. 

Microsoft is moving toward unifying all setting under the Settings app for Windows 10. 
This differs from prior operating systems and the legacy Control Panel app. System Restore 
is one of those settings that can be opened only from the legacy Control Panel app. To open 
System Restore, click Start, then type control panel and select it from the results, and then 
click System and Security. This will open to a list of Control Panel choices. Select Security 
and Maintenance, and then Recovery. A screen like the one shown in Figure 15.16 will 
appear, and you can select from one of several tasks. 


FIGURE 15.16 Windows 10 Advanced Recovery Tools 
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DPO If you need to use a restore point and Windows won't boot, you can reboot 

‘Qi into Safe Mode in Windows 7 and prior. After Safe Mode loads, you will 
have the option to work in Safe Mode or use System Restore. If you choose 
System Restore, you'll be presented with the restore points (if any) that 
you can use. Windows 8/8.1 and Windows 10 use a new feature called the 
Windows Recovery Environment, in which a full system restore can be 
performed. 


The Advanced Recovery Tools can be used to configure System Restore settings. You 
can also get to Advanced Recovery Tools by opening the System Control Panel (right-click 
Computer and choose Properties) and selecting the System Protection tab. 

The other option is to select how much disk space is available for System Restore. The less 
disk space you make available, the fewer the number of restore points you will be able to retain. 
If you have multiple hard drives, you can allocate a different amount of space to each drive. 

Exercise 15.5 demonstrates how to create a restore point manually in Windows. 


Manually Creating a Restore Point in Windows 

1. Click the Start menu, type Control Panel, and then click the Control Panel app result. 
Click System and Security, and then click Security and Maintenance, and then Recovery. 
Click Configure System Restore. The System Properties dialog box will open. 

Select Local Disk (C:) (System), and then click Configure. 

Click the Turn on System Protection radio button, and then click OK. 

Click Create below the Configure button. 


Type a name for the restore point. 


eonog F YN 


When the process is finished, click OK, and then exit out of the Control Panel windows. 


A factory recovery partition may exist on a machine. A vendor has a great 

OTE deal of freedom with what it puts here, but usually it contains copies of 
drivers and preinstalled programs. This partition—if it exists—may serve 
as a last resort for stabilizing a system if all else has failed. 


File Management 


File management is the process by which a computer stores data and retrieves it from stor- 
age. Although some of the file-emanagement interfaces across Windows may have a different 
look and feel, the process of managing files is similar across the board. 
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Files and Folders 


In order for a program to run, it must be able to read information off the hard disk and 
write information back to the hard disk. To be able to organize and access information— 
especially in larger new systems that may have thousands of files—it is necessary to have a 
structure and an ordering process. 

Windows provides this process by allowing you to create directories, also known as 
folders, in which to organize files. Windows also regulates the way that files are named and 
the properties of files. The filename for each file created in Windows has to follow certain 
rules, and any program that accesses files through Windows must also comply with these 
rules: 


a Fach file has a filename of up to 255 characters. 


= Certain characters, such as a question mark (?) and slash (\ or /), are reserved for other 
uses and cannot be used in the filename. Periods are used to separate the filename from 
the extension, and the backslash is used to separate the directories in a path from the 
filename. 


= A filename extension (generally three or four characters) can be added to identify the 
file’s type. 

= Filenames are not case sensitive. (You can create files with names that use both upper- 
and lowercase letters, but to identify the file within the filesystem, it is not necessary 
to adhere to the capitalization in the filename.) Thus, you cannot have a file named 
working.txt and another called WORKING. TXT in the same folder. To Windows, these 
filenames are identical, and you can’t have two files with the same filename in the same 
folder. We’ll get into more detail on this topic a little later. 


In Windows 3.x and DOS, filenames were limited to eight characters and a three-character 
extension, separated by a period—known as the 8.3 file-naming convention. Windows 95 
introduced long filenames, which allowed the 255-character filename convention. 

The Windows filesystem is arranged like a filing cabinet. In a filing cabinet, paper is 
placed into folders, which are internal dividers, which are in a drawer of the filing cabinet. 
In the Windows filesystem, individual files are placed in subdirectories that are inside direc- 
tories, which are stored on different disks or different partitions. 

Windows also protects against duplicate filenames; no two files on the system can have 
exactly the same name and path. A path indicates the location of the file on the disk; it 
is composed of the letter of the logical drive on which the file is located and, if the file is 
located in a folder or subfolder, the names of those directories. For instance, if a file named 
pagefile.sys is located in the root of the C: drive—meaning it is not within a folder— 
the path to the file is C: \pagefile.sys. As another example, if a file called notepad.exe 
is located under Windows under the root of C:, then the path to this file is C: \Windows\ 
notepad.exe. 


The root folder of any drive is the place where the hierarchy of folders for 
A STE that drive begins. On aC: drive, for instance, C: \ is the root folder. 
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Common filename extensions that you may encounter include .exe (for executable files, 
aka applications), .d11 (for dynamic linked library files), .sys (for system files), . Log (for 
log files), .drv (for driver files), and .txt (for text files). Note that DLL files contain addi- 
tional functions and commands that applications can use and share. In addition, specific 
filename extensions are used for the documents created with each application. For example, 
the filenames for documents created in Microsoft Word have a .doc or .docx extension. 
You'll also encounter extensions such as .mpg (for video files), .mp3 (for music files), . png 
and .tif (for graphics files), .htm and .html (for web pages), and so on. Being familiar 
with different filename extensions is helpful in working with the Windows filesystem. 


Capabilities of Explorer 


Although it is technically possible to use the command-line utilities provided within the 
command prompt to manage your files, this generally is not the most efficient way to 
accomplish most tasks. The ability to use drag-and-drop techniques and other graphical 
tools to manage the filesystem makes the process far simpler. The File Explorer is a utility 
that allows you to accomplish a number of important file-related tasks from a single graphi- 
cal interface. 

Here are some of the tasks you can accomplish using Explorer: 


a View files and directories 

= Open programs or data files 

= Create directories and files 

= Copy objects to other locations 
a Move objects to other locations 
= Delete or rename objects 

=» Change file attributes 


You can access many of these functions by right-clicking a file or folder and selecting the 
appropriate option, such as Copy or Delete, from the context menu. 


The File Explorer utility used in Windows 8/8.1 and Windows 10 was pre- 

A TE viously named Windows Explorer. Although the functionality remains 
almost identical since the introduction of Windows 95, the rebranding was 
just one of many changes when Windows 8 was released. 


Navigating and Using Explorer 


Using Explorer is simple. A few basic instructions are all you need to start working with it. 
First, the Explorer interface has a number of parts, each of which serves a specific purpose. The 
top area of Explorer is dominated by a set of menus and toolbars that give you easy access to 
common commands. The main section of the window is divided into two panes: The left pane 
displays the drives and folders available, and the right pane displays the contents of the cur- 
rently selected drive or folder. The following list describes some common actions in Explorer: 
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Expanding a Folder You can click a folder in the left pane to expand it (show its subfold- 
ers in the left pane) and display its contents in the right pane. Clicking the right-pointing 
arrow (>) to the left of a folder expands the folder without changing the display in the right 
pane, as shown in Figure 15.17. 


FIGURE 15.17 Windows 10 File Explorer 
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Collapsing a Folder Clicking the down arrow sign next to a folder collapses it. 


Selecting a File If you click the file in the right pane, Windows highlights the file by mark- 
ing it with a darker color. 


Selecting Multiple Files The Ctrl or Shift keys allow you to select multiple files at once. 
Holding down Ctrl while clicking individual files selects each new file while leaving the cur- 
rently selected file(s) selected as well. Holding down Shift while selecting two files selects 
both of them and all of the files in between. 


Opening a File Double-clicking a file in the right pane opens the program if the file is 
an application; if it is a data file, it will open using the application for which the filename 
extension is configured. 


Changing the View Type Windows has several different view types: Extra Large Icons, 
Medium Icons, Large Icons, Small Icons, List, Details, Content, and Tiles. The choices vary 
a bit between the Windows versions. You can move between these views by clicking the 
View menu and selecting the view that you prefer. By default, in Windows 7, the menu isn’t 
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visible until you press the Alt key. In Windows 10, the View menu is a ribbon that will drop 
down when clicked. 


Finding Specific Files You access this option by using the Search button or bar. You can 
search for files based on their name, file size, file type, and other attributes. 


P acters that act as placeholders for a character or set of characters, allow- 
ing, for instance, a search for all files with a .txt filename extension. To 
perform such a search, you'd type an asterisk (*) as a stand-in for the file- 
name: *.txt. An asterisk takes the place of any number of characters in a 
search. A question mark (?) takes the place of a single number or letter. For 
example, autoex??.bat would return the file autoexec.bat as part of its 
results. 


w When you're searching, you can also use wildcards. Wildcards are char- 


Creating New Objects To create a new file, folder, or other object, navigate to the loca- 
tion where you want to create the object, and then right-click in the right pane (without 
selecting a file or folder). In the menu that appears, select New and then choose the object 
that you want to create. 


Deleting Objects Select the object and press the Del key on the keyboard, or right-click 
the object and select Delete from the menu that appears. 


EP The simplicity of deleting in Windows makes it likely that you or one of the 
‘gi people you support will delete or misplace a file or a number of files that 
are still needed. In such a case, the Recycle Bin (mentioned earlier) is a 
lifesaver. 


Besides simplifying most fileemanagement commands as shown here, Explorer allows 
you to complete a number of disk-management tasks easily. For example, you can format 
and label removable media, which is discussed further in Chapter 16,” Operating System 
Administration.” 


Changing File Attributes 


File attributes determine what specific users can do to files or directories. For example, if a 
file or folder is flagged with the Read-only attribute, then users can read the file or folder but 
cannot make changes to it or delete it. Attributes include Read-only, Hidden, System, and 
Archive, as well as Compression, Indexing, and Encryption. Not all attributes are available 
with all versions of Windows. We’ll look at this subject in more detail in a moment. 


Some attributes—such as Read-only, Hidden, System, and Archive—date 
s OTE back to DOS. All others—such as Compression, Indexing, and Encryption— 
are a part of NTFS. 
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You can view and change file attributes either by entering attrib at the command 
prompt or by changing the properties of a file or folder. To access the properties of a file or 
folder, right-click the file or folder and select Properties. You can view and configure the 
Read-only and Hidden file attributes on the General tab. To view and configure additional 
attributes, click Advanced, as shown in Figure 15.18 


FIGURE 15.18 Windows file attributes 
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d Type offie: Application (d — 
T Perflogs B ij Es = 
= attribut 
I Program Files mag ee: Nemad 
Br Feii T J fie is ready for archiving 
rogram Files (x 
i: ‘ maj eon: Chinon Allow this fie to have contents indexed in addition to fle properties 
E Common Files pl) sze: 240 KB (285; 
Internet lorer Compress or Encrypt attributes 
a fi [S Pi Sireondisk: 240KB (245, oe 
E Microsoft.NET = pf | Compress contents to save disk space 
E Windows Defender Bre Created: Wednesday. Encrypt contents to secure data Details 
E Windows Mail LSE Modfied: Wednesday. 
E] Windows Media Player 8 Si Acie: Taa 4 [ox] [cancer 
E] Windows Multimedia Platform Else a es 
ae st pirbutes Readonly [Hidden aean] pplication 128 KB 
£) sy dnfiguration sett.. KB 
E] Windows Photo Viewer 5 
Sow plication extens 64KB 
L Windows Portable Devices Ew dnfiguration sett KB 
E] WindowsPowerShell fw bt Document KB 
F Users aw aR dplication 12. KB 
= Cancel Apply 
wane Ow ae i File 310 KB 
a ST v unite 4/11/2018 4:34PM_ Application 11 KB e 
102items 1 item selected 240KB = 


System files are usually flagged with the Hidden attribute, meaning that they don’t 
appear when a user displays a directory listing. You should not change this attribute on a 
system file unless absolutely necessary. System files are required for the OS to function. If 
they are visible, users might delete them (perhaps thinking they can clear some disk space 
by deleting files they don’t recognize). Needless to say, that would be a bad thing! 


Preparing for the Exam 


Future chapters will delve further into operating systems and the tools, utilities, and fea- 
tures available with each. There is also additional coverage, as applicable, in the chapters 
on troubleshooting. For purposes of exam study, Table 15.4 offers a complete list of the 
features for each of the Windows operating systems that you need to know for the exam. It 
also signifies whether that feature is available in each of those operating systems and which 
chapter in this book has more coverage of that particular topic. 
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TABLE 15.4 Windows features 





Windows More 
Feature Purpose Windows7 8/81 Windows 10 Information 
Cortana Virtual assistant No No Yes Chapter 17 
User Account Controls changes Yes Yes Yes Chapter 19 
Control to OS settings 
BitLocker Encrypts drives; Yes Yes Yes Chapter 15 
available in each 
OS but notin 
every edition 
Shadow Copy Makes snapshots Yes Yes Yes Chapter 19 
that can be 
reverted back to 
System Restore Allows Yes Yes Yes Chapters 17, 19 
restoration of 
system files and 
settings 
Ready Boost Usesremovable Yes Yes Yes Chapter 19 
drive as cache 
Compatibility Allows legacy Yes Yes Yes Chapters 17, 
Mode programs to run 18, 19 
Virtual XP Allows older Yes No No Chapter 19 
mode programs to think 
they are running 
in Windows XP 
Easy Transfer Transfers data Yes Yes No Chapters 19, 18 
files from one OS 
to another 
Administrative Allows Yes Yes Yes Chapter 16 
Tools administrative 
tasks to be run on 
the computer 
Defender Looks for Yes Yes Yes Chapters 17, 
malware 18, 19 
Windows Blocks unwanted Yes Yes Yes Chapters 17, 


Firewall traffic 18, 19 
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TABLE 15.4 Windows features (continued) 





Windows More 
Feature Purpose Windows7_ 8/8.1 Windows 10 Information 
Security Center Allows Became Action Windows Chapter 23 
configuration of Action Center Defender 
security-related Center Security 
items Center 
Event Viewer Allows viewing of Yes Yes Yes Chapter 16 
the log files 
File structure Allows orderly Yes Yes Yes Chapter 16 
and paths creation of 
folders and files 
Category view Two possible Yes Yes Yes Chapter 16 
vs. Classic view ways to view the 
Control Panel 
Side-by-side Allows you to Yes, as Aero Yes Yes Chapter 19 
apps position windows Snap 
on the Desktop 
and Windows will 
remember the 
size and position 
Metro Ul The interface No Yes No Chapter 18 
released with 
Windows 8 
Pinning Connecting an Yes Yes Yes Chapters 17, 
app to the taskbar 18, 19 
OneDrive Allows cloud Not Yes Yes Chapter 17 
storage preinstalled 
Windows Store A convenient No Yes Yes Chapter 15 
location to 
purchase 
Windows apps 
Multimonitor Taskbars appear No Yes Yes Chapters 17, 18 
task bars in Windows in 
multiple monitors 
Charms Commonly used No Yes No Chapter 18 


apps/features, 
such as Search 
and Share 
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Windows More 
Feature Purpose Windows7 8/8.1 Windows 10 Information 
Start screen A portion of the No Yes No Chapter 18 
Metro UI from 
which you can 
choose common 
options 
PowerShell A scripting Yes Yes Yes Chapters 16, 21 
language used to 
automate tasks 
Live sign in Asingle sign-on No Yes Yes Chapter 18 
feature 
Action Center Acentral location Yes Yes Yes Chapters 17, 
for dealing 18, 19 


with problems, 
security, and 
maintenance 


Summary 


In this chapter, you learned about Windows, the basics of the Windows structure, and win- 
dow management. Because Windows is a graphical system, the key to success in learning to 
use it is to explore the system to find out what it can do. You will then be better prepared to 
decipher later what a user has done. 

First, we covered the Windows interface. Next, we covered what the component that 
gives Windows its name (the window) actually is and how windows are used. 

Finally, we covered some basic Windows management concepts, including filesystems 
and file management, as well as the folder structure. We also discussed using approved 
hardware, updating Windows, and creating restore points. 

With the basic knowledge gained in this chapter, you are now ready to learn how to 
interact with the most commonly used tools, the subject of the following chapter. 


Exam Essentials 


Know the RAM limitations between operating system architectures. 32-bit operating 
systems have a RAM limitation of 4 GBs, whereas 64-bit operating systems can address 
over 4 GBs of RAM. 
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Understand an operating system’s life cycle. When development is started on an operating 
system, it is considered alpha or beta code. Release candidates precede the release to market 
(RTM) of an operating system. The end of mainstream support generally means only secu- 
rity updates will continue to be supported during the extended support period. 


Know the various operating system types and the common operating systems. The 

four basic types of operating systems are server, workstation, mobile, and cloud-based. 
Microsoft, Apple, and Linux can be used as server, workstation, and mobile operating sys- 
tems, whereas Google Chrome is primarily a cloud-based operating system. 


Understand how to manage files in Windows. Nearly all file management—including 
moving, copying, renaming, and deleting files and changing file attributes—is accomplished 
through Windows File Explorer. 


Know where files are located. The various versions of Windows that you need to know 
for this exam store files in multiple locations. You should be able to identify the location of 
those files mentioned in this chapter and be able to identify items such as where the Recycle 
Bin files are on each Windows operating system. 


Review Questions 871 


Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. 


Which of the following can you type in the Start menu in Windows to open a command 
prompt? (Choose two.) 


A. run 

B. cmd 

C. command 

D. open 

Which part of the operating system can be described as extremely specific software written 
for the purpose of instructing the OS on how to access a piece of hardware? 

A. Source code 

B. Application 

C. Kernel 

D. Driver 


How do you increase the size of the taskbar? 
A. Right-click the mouse and drag the taskbar. 
B.  Left-click the mouse and double-click the taskbar. 


C. Move the mouse pointer to the top of the taskbar, pausing until the pointer turns into a 
double-headed arrow, and then click and drag. 


D. Highlight the taskbar and double-click in the center. 


Which of the following Windows Update options can be changed by the user in Windows 10? 
A. Active hours 

B. Disabling updates 

C. Download times 

D. Windows Update sources 

The Windows File Explorer program can be used to do which of the following? (Choose 
two.) 

A. Browse the Internet 

B. Copy and move files 

C. Change file attributes 

D. Create backup jobs 
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10. 


11. 
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What is the maximum allowable length for the name of a file in Windows? 

A. 8 characters 

B. 32 characters 

C. 64 characters 

D. 255 characters 

Which of the following is a program that runs on top of the OS and allows the user to issue 
commands through a set of menus or some other graphical interface? 

A. Taskbar 


B. Shell 
C. Desktop 
D. Source 


If a program doesn’t have a shortcut on the Desktop or in the Programs submenu, you can 
start it by which of the following methods? (Choose the best answer.) 


A. Using the shutdown command 

B. ‘Typing the program name in the Start box 

C. Using the run command and typing in the name of the program 

D. Typing cmd in the Start box followed by the program name 

Which operating system feature offers the ability for a single application to have multiple 
requests into the processor at one time? 

A. Multiuser mode 

B. Dystopia 

C. Preemption 

D. Multithreading 


In Windows, a deleted file can be retrieved using which of the following? 
A. My Computer icon 

B. Recycle Bin 

C. Control Panel 

D. Settings app 


To turn off a Windows 10 operating system gracefully, you should do which of the following? 
A. Run the turnoff command at a command prompt. 

B. Turn off the switch and unplug the machine. 

C. Press Ctrl+Alt+Del. 
D 


Select Start, then the power icon, and then choose Shut Down. 


12. 


13. 


14. 


15. 


16. 


17. 


Review Questions 873 


What is the minimum amount of memory required for a 32-bit installation of Windows 8.1? 
A. 128 MB 


B. 256 MB 
C. 512MB 
D. 1GB 


What is the minimum amount of free hard drive space required for the installation of 
Windows 7 64-bit? 


A. 1.5 GB 
B. 15 GB 
C. 20GB 
D. 60GB 


What is the minimum required memory for a 64-bit installation of Windows 7? 
A. 512 MB 


B. 1GB 
C. 2GB 
D. 4GB 


In Windows, a quick way to access Help is to press which keyboard key? 
A. F12 

B. The Windows key on the keyboard 

C. F1 

D. Alt 


Which of the following was a major change with the introduction of Windows 8? 
A. Start screen 

B. Gadgets 

C. Sidebar 


D. System tray 


Which of the following is located on the rightmost portion of the taskbar? 
A. Start menu 

B. Quick Launch 

C. Notification area 
D 


Shutdown options 
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18. In addition to right-clicking the Desktop, how else can you access the Display Properties 
settings? 


A. By clicking the Settings gear in the Start menu 
B. By clicking the System icon under Control Panel 
C. By pressing Ctrl+Alt+Esc 

D. By pressing Ctrl+Alt+Tab 


19. Which of the following allows you to navigate file/folder structures in Windows 10? 
A. Start menu 
B. File Explorer 
C. KDE 
D. GNOME 


20. What is the minimum required memory for a 64-bit installation of Windows 10? 
A. 512 MB 


B. 1GB 
C. 2GB 
D. 4GB 


Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answer compares to the authors’, refer 
to Appendix B. 

You have been told that a number of workstations in your department may be upgraded 
in the near future, and you’ve been assigned the task of logging in to each locally and col- 
lecting basic data on the workstations. All workstations on this floor run Windows 8.1. 
How would you most efficiently collect the following information? 


Computer name 
Windows edition 
System type 
Processor 


Installed memory 
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THE FOLLOWING COMPTIA A+ 220-1002 
EXAM OBJECTIVES ARE COVERED IN THIS 
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y 1.3 Summarize general OS installation considerations 
and upgrade methods. 


a Partitioning: Dynamic, Basic, Primary, Extended, 
Logical, GPT 


a Filesystem types/formatting: ExFAT, FAT32, NTFS, CDFS, 
NFS, ext3, ext4, HFS, swap partition, Quick format vs. full 
format 


v Swap Partition 
= Load alternate third-party drivers when necessary. 
a Workgroup vs. Domain setup 
a Time/date/region/language settings 


= Properly formatted boot drive with the correct partitions/format 


vy 1.4 Given a scenario, use appropriate Microsoft 
command line tools. 


a Navigation: dir, cd, .. 


= ipconfig, ping, tracert, netstat, nslookup, shutdown, 
dism, sfc, chkdsk, diskpart, taskkill, goupdate, gpresult, 
format, copy, xcopy, robocopy, net use, net user, [command 
name] /?, Commands available with standard privileges vs. 
administrative privileges 


Y 1.5 Given a scenario, use Microsoft operating system 
features and tools. 


a Administrative: Computer Management, Device Manager, 
Local Users and Groups, Local Security Policy, Performance 
Monitor, Services, System Configuration, Task Scheduler, 
Component Services, Data Sources, Print Management, 
Windows Memory Diagnostics, Windows Firewall, Advanced 
Security, Event Viewer, User Account Management 





=» MSCONFIG: General, Boot, Services, Startup, Tools 


= Task Manager: Applications, Processes, Performance, Net- 
working, Users 


a Disk management: Drive Status, Mounting, Initializing, 
Extending partitions, Splitting partitions, Shrink partitions, 
Assigning/changing drive letters, Adding drives, Adding 
Arrays, Storage spaces 


=» System utilities: regedit, command, Services.msc, MMC, 
MSTSC, Explorer, Msinfo32, DxDiag, Disk Defragmenter 


y 1.6 Given a scenario, use Microsoft Windows Control 
Panel utilities. 


a Internet options (Connections, Security, General, Privacy, 
Programs, Advanced) 


a Display/Display Settings (Resolution, Color depth, 
Refresh rate) 


a User accounts 


= Folder Options (View hidden files, Hide extensions, General 
options, View options) 


a System (Performance [virtual memory], Remote settings, 
System protection) 


a Windows Firewall 


= Power Options (Hibernate, Power plans, Sleep/suspend, 
Standby) 


=» Credential Manager 

a Programs and features 

=» HomeGroup 

= Devices and Printers 

a Sound 

= Troubleshooting 

a Network and Sharing Center 
a Device Manager 

= BitLocker 


a Sync Center 





The previous chapter introduced the basic components of the 
Windows operating systems. This chapter builds on that and 
focuses more on the administration of those operating sys- 
tems. All the content is generic to the Windows operating systems on which you'll be tested 
in the 220-1002 certification exam: Windows 10, Windows 8/8.1, and Windows 7. 

In the three chapters that follow, we will dive into specifics for each of the end-user oper- 
ating systems. 





Interacting with Operating Systems 


In the following sections, we will look at the Microsoft GUI from the ground up. In 
Chapter 15, “Operating System Basics,” we took a detailed look at its key components, 
and we will build on that with an exploration of basic tasks common across Windows 10, 
Windows 8/8.1, and Windows 7. 


Control Panel 


Although, for the most part, the Windows operating system is functional from the time it 
is installed, Microsoft realized that if someone were going to use computers regularly, they 
would probably want to be able to customize their environment so that it would be better 
suited to their needs—or at least more fun to use. As a result, the Windows environment 
has a large number of utilities that are intended to give you control over the look and feel of 
the operating system. 

This is, of course, an excellent idea. It is also a bit more freedom than some less-than- 
cautious users seem to be capable of handling, and you will undoubtedly serve a number of 
customers who call you in to restore their configuration after botched attempts at changing 
one setting or another. 

More than likely, you will also have to reinstall Windows yourself a few times because 
of accidents that occur while you are studying or testing the system’s limits. This is actually 
a good thing, because no competent computer technician can say that they have never had 
to reinstall because of an error. You can’t really know how to fix Windows until you are 
experienced at breaking it. So, it is extremely important to experiment and find out what 
can be changed in the Windows environment, what results from those changes, and how to 
undo any unwanted results. To this end, we will examine the most common configuration 
utility in Windows: Control Panel. The names of some of the applets, icons, categories, and 
tasks are different in various versions of Windows; different names are indicated in paren- 
theses below in Table 16.1. Also, not all applets are available in all versions. 
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Table 16.1 describes some of the more popular applets. 


TABLE 16.1 Selected Windows Control Panel applets 


Applet Name 


Function 





Add a Device (Add Hardware) 
Programs and Features 
Administrative Tools 


Date and Time 


Display (Personalization) 


Folder Options 


Fonts 
Internet Options 


Hardware and Sound (Sound; 
Scanners and Cameras) (Multimedia) 


Network and Internet; Network and 
Sharing Center 


Phone and Modem 


Power Options 


Devices and Printers (Printers) 


System 


Adds and configures new hardware 
Changes, adds, or deletes software 
Performs administrative tasks on the computer 


Sets the system time and configures options 
such as the time zone 


Configures screensavers, colors, display options, 
and monitor drivers 


Configures the look and feel of how folders are 
displayed in Windows File Explorer 


Adds and removes fonts 
Sets a number of Internet connectivity options 


Configures audio and video options 


Sets options for connecting to other computers 


Sets options for using phone lines to dial out to a 
network or the Internet 


Configures different power schemes to adjust 
power consumption 


Configures printer settings and print defaults. 


Allows you to view and configure various system 
elements (We'll look at this in more detail later in 
this chapter.) 


In the current version of Windows, when you first open Control Panel, it appears in 
Category view, as shown in Figure 16.1. Control Panel programs have been organized 
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into different categories, and this view provides you with the categories from which you 
can choose. When you choose a category and pick a task, the appropriate Control Panel 
program opens. Or, you can select one of the Control Panel programs that is part of the 
category. 

You can change this view to Classic view (or Small/Large Icons in Windows 10, Windows 
8/8.1 and Windows 7), which displays all the Control Panel programs in a list, as in older 
versions of Windows. The specific wording of the CompTIA objective (1.6) for this exam 
reads, “Given a scenario, use Microsoft Windows Control Panel utilities (the items are 
organized by ‘large icons’ in Windows).” Therefore, we strongly suggest that administrators 
change to this view. To do so, select Large Icons in the View By drop-down box in the right 
corner of the Control Panel. Throughout this chapter, when we refer to accessing Control 
Panel programs, we will assume that you have changed the view to the Large Icons view. 


FIGURE 16.1 The Windows 10 Control Panel in Category view 





E Control Panel = o x 


e ~ 4 E > Control Panel {w © |Search Control Panel p 
Adjust your computer's settings View by: Category ¥ 


System and Security User Accounts 
Review your computer's status 

Save backup copies of your files with File History 
Backup and Restore (Windows 7) 


a Network and Internet 
View network status and tasks 
7 
S) 
Q 
y) 


@ Change account type 


KHI = 
sj Appearance and Personalization 


+ 
pally, Clock and Region 
Hardware and Sound ‘) Change date, time, or number formats 


View devices and printers 


Add a device Ease of Access 
Let Windows suggest settings 


Programs Optimize visual display 


Uninstall a program 











For a quick look at how the Control Panel programs work, in Exercise 16.1, you’ll exam- 
ine some of the settings in the Date and Time applet (timedate.cp1). 


Filenames appearing in parentheses, such as timedate.cpl in the pre- 
TE ceding paragraph, can be used to start the utility without needing to go 
through the Control Panel dialog boxes. 
The Date and Time applet is used to configure the system time, date, and time zone set- 


tings, which can be important for files that require accurate time stamps or to users who 
don’t have a watch. Because Date and Time is a simple program, it’s a perfect example to 
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use. Current versions of Windows have an Internet Time Settings tab, which enables you to 
synchronize time on the computer with an Internet time server (the options in Windows 10 
are shown in Figure 16.2). By default, the Internet time server is set to time.windows.com. 


FIGURE 16.2 Windows 10 Date and Time/Internet Time Settings 





= Internet Time Settings 
Configure Internet time settings: 


Synchronize with an Internet time server 





Server: | time.windows.com Update now 








This computer is set to automatically synchronize on a scheduled basis. 

















Changing the Time Zone 


1. Click Start, type Control Panel or timedate. cpl, and then select the appropriate 
result from the search. 


2. From Control Panel, double-click the Date and Time icon. (By default, the programs 
are listed alphabetically.) 


3. Click the Time Zone tab and use the drop-down menu to select (GMT —03:30) 
Newfoundland. 


4. Hop a plane to Newfoundland, secure in the knowledge that you will know what time 
it is once you get there. 


5. If you skipped step 4, change the time zone back to where it should be before closing 
the window. 
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Regional and Language Options 


Regional settings are configured through the Control Panel applet called Region in 
Windows 10 and 8/8.1, and Region and Language in Windows 7. From this applet 
(intl.cpl), you can choose which format is used for numbers (see Figure 16.3), your geo- 
graphic location, and the language to be used for non-Unicode programs. In Windows 10, 
the Settings app is also used to set the layout of the keyboard you are using as well as the 
ability to set the regional settings previously mentioned. 


FIGURE 16.3 Windows 10 Region Control Panel applet 





® Region x 
Formats Location Administrative 
Format: English (United States) 


Match Windows display language (recommended) S 


Language preferences 
Date and time formats 


Short date: M/d/yyyy v 
Long date: dddd, MMMM d, yyyy v 
Short time: h:mm tt v 
Long time: himmiss tt Az 
First day of week: Sunday V 
Examples 

Short date: 7/19/2018 

Long date: Thursday, July 19, 2018 

Short time: 11:01 PM 

Long time: 11:01:08 PM 


Additional settings... 


[ Cancel Aopy 








The ability to support so many languages is provided through the use of the Unicode 
standard. In Unicode, and the Unicode Character Set (UCS), each character has a 16-bit 
value. This allows the same character to be interpreted/represented by 65,536 different 
entities. 

If you click Additional Settings, you can go beyond the date and time formats and also 
configure number and currency, as shown in Figure 16.4. 
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FIGURE 16.4 Windows 10 Additional Settings Region Control Panel applet 





Customize Format x 
Numbers Currency Time Date 


Example 
Positive: | 123,456,789.00 Negative: | -123,456,789.00 















































No. of digits after decimal: 2 v 
Digit grouping symbol: l y| 
Digit grouping: 123,456,789 v 
Negative sign symbol: - v 
Negative number format: -1.1 v 
Display leading zeros: 0.7 v 
List separator: à v 
Measurement system: U.S. v 
Standard digits: 0123456789 x 
Use native digits: Never ~M 
Click Reset to restore the system default settings for Reset 


numbers, currency, time, and date. 


Co [eet] [as 








Internet Options Applet 


The Internet Options applet (inetcpl. cpl) brings up the Internet Properties dialog box, as 
shown in Figure 16.5. The tabs include General, Security, Privacy, Content, Connections, 
Programs, and Advanced. This applet is used when you want to configure the browser environ- 
ment for Internet Explorer and such things as the programs used to work with files found online. 


FIGURE 16.5 Windows 10 Internet Options Control Panel applet 





©) Internet Properties ? x 


General Security Privacy Content Connections Programs Advanced 


Home page 
Ad To create home page tabs, type each address on its own line, 


http://go.microsoft.com/fwlink/p/?Linkld=255141 


Use gurrent Use default Use new tab 





Startup 
O Start with tabs from the last session 
@ Start with home page 
Tabs 
Change how webpages are displayed in tabs. Tabs 
Browsing history 
Delete temporary files, history, cookies, saved passwords, and web 
form information. 


[O Delete browsing history on exit 


Colors Languages Fonts Accessibility 
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DPO It’s important to note that in Windows 10, Internet Explorer exists along- 
‘gi side the Microsoft Edge browser. However, the Microsoft Edge browser is 
not controlled by these settings. 


Folder Options Applet 


Some of the more important files that you will need to work on are hidden by default as a 
security precaution. To make certain folders or files visible, you need to change the display 
properties of Windows File Explorer, as shown in Figure 16.6. We will show you how to do 
this in Exercise 16.2. 


FIGURE 16.6 Windows 10 File Explorer Options 





File Explorer Options x 


General View Search 


Folder views 


You can apply this view (such as Details or Icons) to 
all folders of this type. 


Apply to Folders Reset Folders 





= 





Advanced settings: 
| | Files and Folders A 
C Always show icons, never thumbnails 
Always show menus 
© Display file icon on thumbnails 
| Display file size information in folder tips 
[I Display the full path in the title bar 
| Hidden files and folders 
@ Dont show hidden files, folders, or drives 
O Show hidden files, folders, and drives 
M Hide empty drives 
M Hide extensions for known file types 
| YU Hide folder merge conflicts v 























OK Cancel Apply 











Showing Hidden Files and Folders 
1. Open Windows File Explorer on a Windows system. 
2. Browse to the root of the C: drive and note the entries that are there. 


3. If it is available, choose View and check the box for the Hidden Items option so that 
they are now visible. 
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EXERCISE 16.2 (continued) 


4. Note the entries that now appear but did not previously. 


5. Open the File Explorer Options applet from the Control Panel and choose the View 
tab, if needed. 


6. Deselect Hide Protected Operating System Files (Recommended). 
7. Uncheck Hide File Extensions for Known File Types. 
8. Click OK. 


You will now be able to see the Windows system files discussed in the following sec- 
tions. For security reasons, you should set these attributes back to the defaults after 
you've read this chapter. 


System Applet 


The System applet in Control Panel is one of the most important applets, and it’s nearly 
all business. From within this relatively innocuous panel, you can make a large number 
of configuration changes to a Windows machine. If you click Advanced System Settings, 
the classic System Properties (sysdm. cpl) will open. (See Figure 16.7 for the Windows 
10 classic System Properties applet.) You can perform all the same functions in this 
applet, with the exception of Windows activation. The different versions of Windows 
have different options available in this applet, but they can include some of the follow- 
ing options: 

= Network Identification 

» Device Manager 

a Hardware 

= User Profiles 

= Environment Variables 

= Startup and Recovery 

a Performance 

= System Protection 

» Remote 

= Computer Name 

= Advanced 
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FIGURE 16.7 Windows 10 System Properties Control Panel applet 





























a 
System Properties x 
= ~ M EE, ControlPanel > All Control Panel items > System Control Panel 2 
Computer Name Hardware Advanced System Protection Remote a 
Control Panel Home f ii à 
View basic information about your computer & Windows uses the following information to identify your computer 
i on the network. 
@® Device Manager Windows edition 
@ Remote settings Windows 10 Enterprise Conimterdesciotont: A 
® System protection © 2018 Microsoft Corporation. Alll rights reserved, Cen TAE Conese rea d OWS 1 0 
@ Advanced system settings Ful computer name: Yondu 
System Workgroup: WORKGROUP 
Processor: AMD FX(tm)-9370 Eight-Co 
Installed memory (RAM): 16.0 GB (15.9 GB usable) Fee earth daoin (Re 
System type: 64-bit Operating System, x6) 
Pen and Touch: No Pen or Touch Input is av, Kady re cl aaa domain or Change... 
Computer name, domain, and workgroup settings 
Computer name: Yondu @ change settings 
Full computer name: Yondu 
Computer description: 
Workgroup: WORKGROUP 
Windows activation Cancel Apply 
Windowsis activated Read the Microsoft Software License Terms 
Product ID: 00329-10180-00000-AA407 @ change product key 


See also 


Security and Maintenance 











In the following sections, we will look a bit more closely at the functionality of the tabs. 


Computer Name 


This tab is used to define whether the machine is in a workgroup or a domain environ- 
ment. We talk more about networking in Chapter 6, “Networking Fundamentals”, 
Chapter 8, “Installing Wireless and SOHO Networks”, and Chapter 9, “Network Services, 
Virtualization, and Cloud Computing”, but in general terms, here’s the difference between 
a workgroup and a domain: 


Workgroup Loosely associated computers, each of which is its own security authority, 
that share a common workgroup name. Often used for 10 or fewer computers/workstations 
that do not require a server computer. 


Domain A group of computers that are tightly connected or associated and share a com- 
mon domain name. Has a single authority (called a domain controller) that manages 
security for all of the computers. Often used for 10 or more computers/workstations that 
connect to one or more server computers. 


Hardware 


This tab includes a number of tools that enable you to change how the hardware on your 
machine is used. To minimize the risks involved with adding third-party software to your 
machine, Microsoft came up with a technique called driver signing. Installing new hard- 
ware drivers onto the system is a situation in which both viruses and badly written soft- 
ware can threaten your system’s health. To minimize the risks, you can choose to use only 
drivers that have been signed. The signing process is meant to ensure that you are getting 
drivers that have been checked with Windows and that those drivers have not been modi- 
fied maliciously. 
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ZL Even in a Plug and Play system, it is important to unplug a device properly 
ING if you wish to remove it while the system is running. It’s possible that noth- 


ing will go wrong, but you can sometimes damage the device or cause the 
system to become unstable. 


P For the exam, understand that loading alternate third-party drivers when 
‘gr necessary can be a solution to problems. Know, as well, that it is preferred 
that those drivers be signed. To learn more about driver signing, visit the 
following site: 


https: //docs.microsoft.com/en-us/windows-hardware/drivers/ 
install/windows-driver-signing-tutorial 


When you purchase a hardware device, odds are that it’s been in the box for a while. By 
the time it gets made, packaged, stored, delivered to the store, stored again at the retailer, 
and then purchased by you, it’s entirely likely that the company that made the device has 
updated the driver—even possibly a few times if there have been a lot of reported problems. 

When you install a device, always go to the manufacturer’s website to see if a newer 
driver is available. The old driver might work fine, but the newest driver is the one most 
likely to be bug free and have all the most current bells and whistles for your device. 


Advanced 


The Advanced tab has several subheadings, each of which can be configured separately, as 
shown in Figure 16.8. The following options are among those on this tab. 


FIGURE 16.8 Windows 10 System Properties Advanced Tab 





System Properties x 


Computer Name Hardware Advanced System Protection Remote 


You must be logged on as an Administrator to make most of these changes. 


Performance 
Visual effects, processor scheduling, memory usage, and virtual memory 
User Profiles 
Desktop settings related to your signin 
Settings... 


Startup and Recovery 
System startup, system failure, and debugging information 
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Performance Although it is hidden in the backwaters of Windows’s system configura- 
tion settings, the Performance option holds some important settings that you may need to 
configure on a system. To access it, on the Advanced tab, click Settings in the Performance 
area. 


In the Performance window, you can set the size of your virtual memory and how the sys- 
tem handles the allocation of processor time. In Windows, you also use Performance to 
configure visual effects for the GUI. 


How resources are allocated to the processor is normally not something that you will need 
to modify. It is set by default to optimize the system for foreground applications, making 
the system most responsive to the user who is running programs. This is generally best, but 
it means that any applications (databases, network services, and so on) that are run by the 
system are given less time by the system. 


If the Windows machine will be working primarily as a network server, you 

P may want to change the Performance option to Background Services. You 
can find this in the Performance Options under the Advanced tab. Other- 
wise, leave it as is. 


Environment Variables There are two types of environment variables (as shown in 
Figure 16.9), and you can access either one by clicking the Environment Variables button 
in the System Properties window. 


FIGURE 16.9 Windows 10 Environment Variables 


Environment Variables x 


User variables for User 

















Variable 
)neDrive ser\OneDrive 
Path C:\Users\User\AppData\Local\Microsoft\WindowsApps; 
TEMP C:\Users\User\AppData\Local\Temp 
TMP CAUsers\User\AppData\Local\Temp 
New... Edit... Delete 


System variables 








Variable Value s 
ComSpec C:\Windows\system32\cmd.exe 

DriverData C:\Windows\System32\Drivers\DriverData 

NUMBER_OF_PROCESSORS 2 

os Windows_NT 

Path C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;... 
PATHEXT «COM;.EXE;.BAT;.CMD;.VBS;. VBE; JS; JSE;, WSF;.WSH;,MSC 

PROCESSOR ARCHITECTURE _AMD64 y, 





New... Edit... Delete 
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User Variables Specifies settings that are specific to an individual user and do not 
affect others who log into the machine. 


System Variables Set for all users on the machine. System variables are used to provide 
information needed by the system when running applications or performing system 
tasks. 


P System and user variables were extremely important in the early days 
‘Qi of DOS and Windows. Their importance has been more subdued with 
recent Windows versions, but this is the interface where TEMP vari- 
ables, the location of the OS, and other important settings for Windows 
can be found. 


User Profiles In Windows, every user is automatically given a user profile when they log 
into the workstation. This profile contains information about their settings and preferences. 
Although it does not happen often, occasionally a user profile becomes corrupted or needs 
to be destroyed. Alternatively, if a particular profile is set up appropriately, you can copy 

it so that it is available for other users. To do either of these tasks, use the User Profiles 
settings to select the user profile with which you wish to work. You will be given three 
options, as shown in Figure 16.10. 


FIGURE 16.10 Windows 10 User Profiles Settings 





User Profiles x 


User profiles store settings for your desktop and other information 

ESA related to your user account. You can create a different profile on 
each computer you use, or you can select a roaming profile that is the 
same on every computer you use. 


Profiles stored on this computer: 





Name Size Type Status Mod... 
Default Profile 1.52MB Local Local 7/22... 
DESKTOP-CI2QP04\User 244MB Local Local 7/30... 











Change Type... Delete Copy To... 


To create new user accounts, open User Accounts in Control Panel. 


OK Cancel 











Interacting with Operating Systems 889 


Change Type The Change Type option enables you to configure a profile as local (the 
default) or roaming. If a user works at two machines, each machine will use a different 
profile. Updates to one machine will not be reflected on the other. If you have a network, 
roaming profiles can be configured to allow a user to have a single profile anywhere on 
the network. Further discussion of this topic is beyond the scope of this book. 


Delete The Delete option removes the user’s profile entirely. When that user logs in 
again, they will be given a fresh profile taken from the system default. Any settings that 
they have added will be lost, as will any profile-related problems that they have caused. 


Copy To The Copy To option copies a profile from one user to another. Often the 
source profile is a template set up to provide a standard configuration. 


Startup and Recovery The Windows Startup and Recovery options, shown in Figure 16.11, 
are relatively straightforward. They involve two areas: what to do during system startup 
and what to do in case of unexpected system shutdown. 


FIGURE 16.11 Windows 10 Startup And Recovery Options 


Startup and Recovery x 


System startup 


Default operating system: 
Windows 10 v 





M Time to display list of operating systems: 30 seconds 


[Time to display recovery options when needed: 30 seconds 


System failure 
E] Write an event to the system log 
E Automatically restart 

Write debugging information 


Automatic memory dump v 


Dump file: 
%SystemRoot%\MEMORY.DMP 














E Overwrite any existing file 


[ Disable automatic deletion of memory dumps when disk space is low 











System Startup The System Startup option defaults to the Windows OS you installed, 
but you can change this default behavior, if you like. Unless you are dual-booting, only 
one option is available; however, if you have another OS installed, you can change 

the Windows boot manager to load that as the default. You can also reduce the time 
the menu (time to display list of operating systems or recovery options) is displayed or 
remove the menu entirely. 
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74 If you choose to disable the menu completely on a dual-boot system, you 

ING will find that doing so may cause you annoyance in the future when you 
want to boot into a different OS but no longer have a choice to do so. Thus, 
you should always let the boot menu appear for at least 2-5 seconds if you 
are dual-booting. 


System Failure A number of options are available in the Startup and Recovery screen 
for use in case of problems. These include writing an event about the problem, send- 
ing an alert to the network, and saving information about the problem to disk. These 
options come into play only in case of a major system problem. 


System Protection 


The System Protection tab lets you disable/enable and configure the System Restore feature, 
as shown in Figure 16.12. When System Restore is enabled on one or more drives, the oper- 
ating system monitors the changes that you make on your drives. From time to time, it cre- 
ates what is called a restore point. Then, if you have a system crash, it can restore your data 
back to the restore point. You can turn on System Restore for all drives on your system or 
for individual drives. Note that turning off System Restore on the system drive (the drive on 
which the OS is installed) automatically turns it off on all drives. 


FIGURE 16.12 Windows 10 System Protection Options 





System Properties x 


Computer Name Hardware Advanced System Protection Remote 


7% Use system protection to undo unwanted system changes. 
ý 


System Restore 


You can undo system changes by reverting 


your computer to a previous restore point. System Restore 











Protection Settings 
Available Drives Protection 
‘im Local Disk (C:) (System) Off 
aà Storage space (E:) Off 
Configure restore settings, manage disk space, 
and delete restore points. aes 


To create a restore point, first enable protection 
by selecting a drive and clicking Configure. 


Create 











P For more on System Restore, see the section “Creating Restore Points” in 
JTE Chapter 15, "Operating System Basics”. 
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Remote 


The Remote tab lets you enable or disable Remote Assistance and Remote Desktop, as 
shown in Figure 16.13. Remote Assistance permits people to access the system in response 
to requests issued by the local user using the Windows Remote Assistance tool. Remote 
Desktop permits people to log into the system at any time using the Remote Desktop 
Connection tool. This can help an administrator or other support person troubleshoot 
problems with the machine from a remote location. 


FIGURE 16.13 Windows 10 Remote options 


System Properties x 


Computer Name Hardware Advanced System Protection Remote 
Remote Assistance 


M Allow Remote Assistance connections to this computer 


What happens when | enable Remote Assistance? 





Remote Desktop 
Choose an option, and then specify who can connect. 
@ Dont allow remote connections to this computer 


© Allow remote connections to this computer 






nly from computers running Remote 
etwork Level Authentication (recommended) 


Help me choose Select Users... 








cr | (AH 





Remote Assistance is enabled by default. It is handled at two levels. Having just Remote 
Assistance turned on allows the person connecting to view the computer’s screen. To let 
that person take over the computer and be able to control the keyboard and mouse, click 
Advanced, and then, in the Remote Control section, click Allow This Computer To Be 
Controlled Remotely. You can also configure Remote Desktop here. 


Display/Display Settings Applet 


The Display applet has been removed from the Windows 10 Control Panel. Changing dis- 
play settings is now performed through the Settings, app in Windows 10. When you click 
the System settings, the Display settings will appear, along with a multitude of other set- 
tings, as shown in Figure 16.14. From the Settings app, you can change the display resolu- 
tion from the drop-down. The Advanced display settings allow you to change the display 
adapter properties, which is where the refresh rate can be changed. 
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FIGURE 16.14 Windows 10 System Display settings 





€ Settings - oOo X 


M Home Display 


| a Color Sleep better 


Night light can help you get to 








system Night light sleep by displaying warmer colors 
at night. Select Night light settings 
@D of 
| Œ Display to set things up. 
Night light settings Get help setting it up 
q4) Sound 


Scale and layout 
E Nom aA Have a question? 
otifications & actions i 
A custom scale factor is set. Get help 
Turn off custom scaling and sign out 
2) Focus assist 


Chi th f text, d other it 
ange the size of text, apps, and other items Make Windows better 





') Power & slee z 
2 P 175% Give us feedback 
=œ Storage Advanced scaling settings 
[Tablet mode Resolution 
1680 x 1050 








Hi Multitasking 
Orientation 


& Projecting to this PC Landscape 








In Windows 8/8.1 and Windows 7, the Display applet (desk.cp1) controls the resolution 
and refresh rate. Windows 7 allows you to change the color depth from 32-bit to 16-bit, but 
Windows 8 and above does not. 


PP Windows 8 and Windows 10 do not support changing the depth of color 
‘i from 32-bit to 16-bit. If an application requires a color depth of 16-bit, it is 
recommended to use the Application Compatibility tab on the properties 
of the application to set 16-bit color. 


User Accounts Applet 


The User Accounts applet allows you to view and create accounts for the Windows oper- 
ating system. You can change the account name that appears on the Welcome and Start 
screen. You can also change the account type by selecting the radio buttons of either 
Standard or Administrator. In Windows 10, the Setting app for Accounts allows you to 
change the picture that is displayed along with your username. In Windows 8/8.1 and 
Windows 7, the user picture can be selected from the User Accounts applet. 

In addition to the management of user accounts, the User Accounts applet also allows 
you to change the User Account Control (UAC) settings for the operating system, as shown 
in Figure 16.15. 
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FIGURE 16.15 Windows 10 User Accounts applet 





&, User Accounts = o 


€e ~ &, > Control Panel > All Control Panel Items > User Accounts vd Search Control Panel 2 


Control Panel Home 
Make changes to your user account 


Manage your credentials : 
Make changes to my account in PC settings 
Create a password reset disk 


Manage your file encryption 9 Change your account name Q User 


certificates Local Account 
9 Change your account type Administrator 


@ Configure advanced user 
profile properties 


Change my environment 9 Manage another account 
re @® Change User Account Control settings 











Action Center Applet 


The Action Center applet (wscui.cpl)—known as the Security Center in prior versions of 
Windows—has been renamed to be Security and Maintenance. It is used to manage the 
firewall, automatic updates, and virus protection. From here, you can manage settings for 
Internet options as well and see any maintenance or troubleshooting issues to which you need 
to attend, as shown in Figure 16.16. The Firewall and Internet options are not available from 
this menu in Windows 7 or Windows 8, but Performance and Troubleshooting were added. 


FIGURE 16.16 Windows 10 Security and Maintenance applet 





Security and Maintenance - [m] x 
< ~ 4 > Control Panel > All Control Panel items > Security and Maintenance v & Search Control Panel P 
@r 


Control Panel H , 
EN AE Review recent messages and resolve problems 


Change Security and No issues have been detected by Security and Maintenance. 
Maintenance settings 
@ Change User Account Control : 
celine Security 
View archived messages Network firewall On 


2 Windows Firewall is actively protecting your device. 


Virus protection On 


B Windows Defender Antivirus is helping to protect your device. 


Internet security settings OK 


All Internet security settings are set to their recommended levels. 


User Account Control On 
UAC will notify you when apps try to make changes to the computer. 
@ Change settings 


How do | know what security settings are right for my computer? 


Maintenance 


Report problems On 
View reliability history 


Automatic Maintenance No action needed 


Last run date: 8/7/2018 4:57 PM 
Windows automatically schedules maintenance activities to run on your computer. 


See also @ Start maintenance | Change maintenance settings 


File History 

HomeGroup HomeGroup isn’t available 
Windows Program . 
Compatibility Troubleshooter You can't access or create a homegroup right now. 





View homegroup settings x 





894 Chapter 16 = Operating System Administration 


Windows Firewall Applet 


As the name implies, the Windows Firewall applet (fi lewall.cp1) can be used to manage 

the firewall included with the operating system. In addition to local configuration, the set- 

tings can be managed by the system administrator, an application vendor, or another third 
party. In Windows 10, it has been renamed to be Windows Defender Firewall, as shown in 
Figure 16.17. 


FIGURE 16.17 Windows 10 Windows Defender Firewall applet 





È Windows Defender Firewall = o x 
€e ~ 4 É> Control Panel > All Control Panel items > Windows Defender Firewall v Ù Search Control Panel 2 
Gne Help protect your PC with Windows Defender Firewall 


Windows Defender Firewall can help prevent hackers or malicious software from gaining access to your PC 


Allow an app or feature through the Internet or a network. 
through Windows Defender 
Firewall . 
a iv] Private networks Not connected 
® Change notification settings 
9 Turn Windows Defender Networks at home or work where you know and trust the people and devices on the network 
Firewall on or off 
@ Restore defaults Windows Defender Firewall state: On 
9 Advanced settings Incoming connections: Block all connections to apps that are not on the list 
of allowed apps 
Troubleshoot etwork TEE 
A E E Active private networks: None 
Notification state: Notify me when Windows Defender Firewall blocks a 
new app 
Lal g Guest or public networks Connected 


Networks in public places such as airports or coffee shops 


Windows Defender Firewall state: On 

Incoming connections: Block all connections to apps that are not on the list 
of allowed apps 

Active public networks: FF Network 

Notification state: Notify me when Windows Defender Firewall blocks a 
new app 





Se 


Security and Maintenance 


Network and Sharing Center 











Power Options Applet 


The Power Options applet (powercfg.cpl) allows you to configure a power plan dictating 
when devices—namely, the display device and the computer—will turn off or be put to 
sleep, as shown in Figure 16.18. Through the option of Change advanced power settings, 
you can configure the need to enter a password to revive the devices as well as configure 
wireless adapter settings, Internet options (namely, JavaScript), and the system cooling 
policy. 
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FIGURE 16.18 Windows 10 Power Options applet 





2 Power Options = a x 
¢ ~A 2 > Control Panel > All Control Panel Items > Power Options vw Search Control Panel 2p 
Control Panel Home . @ 
Choose or customize a power plan 
Choose what the power button A power plan is a collection of hardware and system settings (like display brightness, sleep, etc.) that manages 
does how your computer uses power. Tell me more about power plans 
Create a power plan Preferred plans 
2 Choose when to turn off the @ Balanced (recommended) Change plan settings 
spla 
nnd Automatically balances performance with energy consumption on capable hardware. 
® Change when the computer 
sleeps O Power saver Change plan settings 


Saves energy by reducing your computer's performance where possible. 


Show additional plans 











Credential Manager Applet 


The Credential Manager applet allows you to manage stored credentials for applications 
such as the Internet Explorer and Microsoft Edge browsers. The Credential Manager ser- 
vice built into Microsoft operating systems stores username and password credentials in an 
encrypted database. The applet allows you to interact with the service to make changes to 


the stored credentials, as shown in Figure 16.19. 


FIGURE 16.19 Windows 10 Credentials Manger applet 





E Credential Manager = o x 


ée ~ 4 E > ControlPanel > All Control Panel items > Credential Manager vw Search Control Panel P 


@ 


Control Panel Home > 
Manage your credentials 


View and delete your saved logon information for websites, connected applications and networks. 


€y Web Credentials z7 Windows Credentials 


Web Passwords 


No web passwords. 











Programs and Features Applet 


The Programs and Features applet (appwiz.cpl) allows you to view and uninstall desktop 
applications that are installed in the Windows operating system, as shown in Figure 16.20. 
You can also see the installed updates by clicking View Installed Updates on the left side of 


the applet. 
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FIGURE 16.20 Windows 10 Programs and Features applet 





Gy Programs and Features = o x 


€ ~ 4 A > Control Panel > All Control Panel items > Programs and Features w © Search Programs and Features 9 


Control Panel Home A 
Uninstall or change a program 





View installed updates To uninstall a program, select it from the list and then click Uninstall, Change, or Repair. 
@ Turn Windows features on or 

oft Organize ¥ iaa @ 
Name à Publisher Installed On Size Version 
@ Microsoft OneDrive Microsoft Corporation 7/22/2018 102M8 18.111.0603.0006 
[E]Microsoft Visual C++ 2008 Redistributable - x64 9.0.3.. Microsoft Corporation 7/4/2018 132M8 9.0.30729.6161 
[E]Microsoft Visual C++ 2008 Redistributable - x86 9.0.3.. Microsoft Corporation 7/4/2018 10.1MB 9.0.30729.6161 
vmware Tools VMware, Inc, 7/4/2018 103MB  10,1,15.6627299 








The Programs and Features applet also allows you to install and remove features in the 
Windows operating system. When you click Turn Windows Features On or Off on the left 
side, a dialog box will appear with a list of operating system features that can be selected 
or unselected. Features are different from desktop applications because they are an inte- 
gral part of the operating system. Examples include Hyper-V, Internet Explorer 11, and 
Windows PowerShell 2.0, just to name a few. 


HomeGroup Applet 


The HomeGroup feature was introduced in Windows 7. The feature allowed easy sharing 
of files and printers for home users, by joining a HomeGroup with a simple password. It 
originally existed in the initial release of Windows 10; however, with Windows 10 (1803) 
HomeGroup was removed. Microsoft recommends classic sharing of files though Windows 
file sharing and OneDrive. As for printer sharing, most printers are networked and no lon- 
ger require a computer to share the printer. 


Devices and Printers Applet 


The Devices and Printers applet allows you to manage external devices such as external 
hard drives, printers, and web cams, just to name a few. From the Control Panel applet, 
you can discover and add new devices that are connected to your network. The Devices and 
Printers applet is shown in Figure 16.21 


Sound Applet 


The Sound applet (mmsys . cpl) allows you to view and change the default playback and 
recording device for sound on the system. By right-clicking the device and choosing prop- 
erties, you can view and modify the properties of a playback or recording devices. The 
changes will vary by the device and vendor of the device, but common options are playback 
and recording levels and enhancements to the playback and recording levels. In addition, 
the Sound applet enables you to change the operating systems sound scheme, allowing you 
to change the various sounds, as shown in Figure 16.22. 
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FIGURE 16.21 Windows 10 Devices and Printers applet 





Fis Devices and Printers - oOo x 
= ~ A FR > Control Panel > All Control Panel items > Devices and Printers vv Search Devices and Printers P 
Adda device Add a printer E~- @ 


v Devices (6) 


DESKTOP-CI2QP Generic Non-PnP Microphone Speakers (High VMware Virtual VMware, VMware 
04 Monitor (High Definition Definition Audio USB Mouse Virtual S SCSI 
Audio Device) Device) Disk Device 


¥ Printers (3) 


GeL 


Microsoft Print Microsoft XPS 
to PDF Document Writer 


v Unspecified (2) 


Intel(R) 82574L USB Root Hub 
Gigabit Network (USB 3.0) 
Connection 














FIGURE 16.22 Windows 10 Sound applet 





Sound x 


Playback Recording Sounds Communications 


A sound theme is a set of sounds applied to events in Windows 
and programs. You can select an existing scheme or save one you 
have modified. 


Sound Scheme: 


| Windows Default vi | SaveAs... i Delete 


To change sounds, click a program event in the following list and 
then select a sound to apply. You can save the changes as a new 
sound scheme. 


Program Events: 


[E7] Windows a 
i Asterisk 
i] Calendar Reminder 
$ Close Program 
-| Critical Battery Alarm 
d Critical Stop “ 











(Play Windows Startup sound 





P Test Browse... 
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Troubleshooting Applet 


The Troubleshooting applet does exactly what its name says it does—it allows troubleshoot 
ing of Programs, Hardware and Sound, Network and Internet, and System and Security, as 
shown in Figure 16.23. Troubleshooting has one notable feature: application compatibility 
troubleshooting. When this feature identifies any application that is problematic, the 
Troubleshooting wizard will appear and Windows will try to troubleshoot the application 
compatibility. 


FIGURE 16.23 Windows 10 Troubleshooting applet 





[a Troubleshooting - o x 
€ ~ 4 [Œ> Control Panel > All Control Panel Items > Troubleshooting v Ù | Search Troubleshooting 2 
Control Panel Home @ 
Troubleshoot computer problems 
View all Click on a task to automatically troubleshoot and fix common computer problems. To view more troubleshooters, click on a category or use the Search 
box, 
View history 
Change settings =] Programs 
Get help from a friend ===" Run programs made for previous versions of Windows 


Z| Hardware and Sound 
@ configurea device Use a printer  @ Troubleshoot audio recording 
@ Troubleshoot audio playback 


G| Network and Internet 


—“"—" Connect to the Internet | Access shared files and folders on other computers 





Ca System and Security 


Fix problems with Windows Update | Run maintenance tasks | @ Improve power usage 


ee also 
Security and Maintenance 
Help and Support 


Recovery 











Network and Sharing Center Applet 


The Network and Sharing Center applet allows you to view and change the active net- 
work connections for the operating system, as shown in Figure 16.24. The applet displays 
the current network profile that the computer has been placed into by the Windows 
Firewall service. From the main page of the applet, you can click Change Adapter 
Settings to see the classic network adapter view, which allows the adapters to be config- 
ured manually. From the main page of the applet, you can also click Change Advanced 
Sharing Settings on the left side. This allows you to change network discovery options for 
the network profile chosen as well as turn on or off file and printer sharing globally for 
the operating system. 


Interacting with Operating Systems 


FIGURE 16.24 Windows 10 Network and Sharing Center applet 








XE Network and Sharing Center 
< ~ 4 RE > Control Panel > All Control Panel items > Network and Sharing Center vio 


View your basic network information and set up connections 
Control Panel Home 


View your active networks 
Change adapter settings 
Change advanced sharing Network Access type: Internet 
settings Public network Connections: @ Ethermet0 
Change your networking settings 
Agë Set up a new connection or network 
Set up a broadband, dial-up, or VPN connection; or set up a router or access point. 
[Æ] Troubleshoot problems 
Diagnose and repair network problems, or get troubleshooting information. 
Infrared 


Internet Options 


Windows Defender Firewall 


Search Control Panel 


o 


x 


P 








Device Manager Applet 


The Device Manager applet (hdwwiz. cpl) was first introduced in Windows 95 and has hardly 
changed since its introduction over 20 years ago. The Device Manager applet allows you to 
view and change hardware devices on the operating system, as shown in Figure 16.25. This 
applet allows the administrator to load and update third party drivers as well as drives in the 


FIGURE 16.25 Windows 10 Device Manager applet 


A Device Manager 
File Action View Help 
e/m H mE 


v Ah DESKTOP-CI2QP04 
> q Audio inputs and outputs 
> 2 Batteries 
> E Computer 
we Disk drives 
> E Display adapters 
> —& DVD/CD-ROM drives 
> fj Human Interface Devices 
sm IDE ATA/ATAPI controllers 
> ES Keyboards 
> @ Mice and other pointing devices 
> GB Monitors 
> gP Network adapters 
> Ñ Ports (COM & LPT) 
> A Print queues 
> [ Processors 
H Software devices 
> & Sound, video and game controllers 
> y Storage controllers 
> Ea System devices 
> @ Universal Serial Bus controllers 
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Windows Catalog. The Device Manager applet is usually the first place you should check if a 
hardware device does not function after installation. 
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BitLocker Applet 


BitLocker drive encryption is a low-level full disk encryption feature that can be controlled 
from the BitLocker Drive Encryption applet, as shown in Figure 16.26. The BitLocker 
Drive Encryption applet also allows you to turn on BitLocker drive encryption on remov- 
able media devices. 


FIGURE 16.26 Windows 10 Bitlocker Drive Encryption applet 





Be BitLocker Drive Encryption — o x 


€ ~ M &@ > ControlPanel > All Control Panel Items > BitLocker Drive Encryption {v Ù Search Control Pane 2 


© 
Control Eenelrfome BitLocker Drive Encryption 


Help protect your files and folders from unauthorized access by protecting your drives with BitLocker. 


Operating system drive 
C: BitLocker off 


@ Tum on BitLocker 


a 
= 


Fixed data drives 


Storage space (E:) BitLocker off 


Removable data drives - BitLocker To Go 


Insert a removable USB flash drive to use BitLocker To Go. 
See also 
@ TPM Administration 
® Disk Management 


Privacy statement 











Sync Center Applet 


The Sync Center applet allows you to control the synchronization of mobile devices to the 
Windows operating system, as shown in Figure 16.27. The Sync Center applet also allows 
you to control the synchronization for offline file shares on corporate file servers. 


FIGURE 16.27 Windows 10 Sync Center applet 





& sync Center - a x 


e ~ 4 @& > Control Panel > All Control Panel items > Sync Center v O Search Sync Center 2 
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Command-Line Tools 


Although the exam focuses on the Windows operating systems, it tests a great number of 
concepts that carry over from the Microsoft Disk Operating System (MS-DOS). MS-DOS 
was never meant to be extremely user friendly. Its roots are in Control Program for 
Microcomputers (CP/M), which, in turn, has its roots in UNIX. Both of these older OSs 
are command-line-based, and so is MS-DOS. In other words, they all use long strings of 
commands typed in at the computer keyboard to perform operations. Some people prefer 
this type of interaction with the computer, including many folks with technical back- 
grounds. Although Windows has left the full command-line interface behind, it still con- 
tains a bit of DOS, and you get to it through the command prompt. 

Although you can’t tell from looking at it, the Windows command prompt is actually a 
Windows program that is intentionally designed to have the look and feel of a DOS com- 
mand line. Because it is, despite its appearance, a Windows program, the command prompt 
provides all the stability and configurability you expect from Windows. You can access a 
command prompt by running cmd.exe. 

A number of diagnostic utilities are often run at the command prompt. They can be 
broken into two categories: networking and operating system. The utilities associated with 
networking appear in other chapters, but the focus here is on the utilities associated with 
the operating system. 

The OS command-line tools that you are expected to know for the exam are dir, cd, 
ipconfig, ping, tracert, netstat, nslookup, shutdown, dism, sfc, chkdsk, diskpart, 
taskkill, gpupdate, gpresult, format, copy, xcopy, robocopy, net use, net user, and 
[command name] /?. They are discussed in the sections that follow, along with the com- 
mands available with standard privileges, as opposed to those with administrative privileges. 


Taskkill Command 


The taskkill.exe utility is used to terminate processes. Those processes can be identified 
by either name or process ID number (PID). The process can exist on the machine where 
the administrator is sitting (the default) or on another machine, in which case you signify 
the other system by using the /s switch. 

The /im [name] switch is used to specify an (image) name of a process to kill, and it 
can include the wildcard (*) characters. If the process ID number is used in place of the 
name, then the /pis switch is needed. The processes in question are the same, and they 
can be killed through Task Manager. There are two signals that can be sent: The default is 
SIGTERM (a gentle kill, related to code 15), and the /f switch issues a SIGKILL (a terminate 
at all cost kill, related to code 9). 


Shutdown Command 


The shutdown.exe utility can be used to schedule a shutdown (complete or a restart) 
locally or remotely. A variety of reasons can be specified and announced to users for the 
shutdown. 
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Cd, Md, Rd Commands 


The cd, md, and rd commands are used to change (or display), make, and remove directo- 
ries, respectively. They’re shorthand versions of the chdir, mkdir, and rmdir commands. 
Table 16.2 lists their usage and switches. 


TABLE 16.2 cd/md/rd usage and switches 


Command Purpose 





cd [path] Changes to the specified directory 


cd /d [drive:][path] Changes to the specified directory on the drive 


Cd is Changes to the directory that is up one level 
cd \ Changes to the root directory of the drive 
md [drive:][path] Makes a directory in the specified path. If you don’t specify a path, 


the directory will be created in your current directory. 
rd [drive:][path] Removes (deletes) the specified directory 


rd /s [drive:][path] Removes all directories and files in the specified directory, includ- 
ing the specified directory itself 


rd /q [drive:][path] Quiet mode. You won't be asked whether you're sure you want to 
delete the specified directory when you use /s 


Now that you’ve looked at the available switches, let’s use them in Exercise 16.3. 


Command-Line Directory Management 


1. Open a command prompt. To do this, click Start, type cmd in the Open field, and 
click OK. 


2. Change to the root of your C: drive by typing cd /d C:\ and pressing Enter. 
Note: If you are already in C:, all you have to do is type cd \ and press Enter. 
3. Create a directory called C14 by typing md C14 and pressing Enter. 
4. Change to the C14 directory by typing cd C14 and pressing Enter. 
5. Create several layers of subdirectories at once. Type md A1\B2\C3\D4 and press Enter. 


Notice that these commands created each of the directories that you specified. You 
now have a directory structure that looks like this: C: \C14\A1\B2\C3\D4. 
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6. Change back to your root directory by typing cd \. 
7. Attempt to delete the C14 directory by typing rd C14 and pressing Enter. 


Windows won't let you delete the directory because the directory is not empty. This 
is a safety measure. Now let's really delete it. 


8. Delete the C14 directory and all of its subdirectories by typing rd /s C14 and press- 
ing Enter. 


You will be asked whether you're sure that you want to delete the directory. 
9. If you are, type Y and press Enter. 
10. To close the command prompt window, type exit. 


Note that if you had used the /q option in addition to /s, your system wouldn't have 
asked whether you were sure; it would have just deleted the directories. 


Format Command 


The format command is used to wipe data off disks and prepare them for new use. Before 
a hard disk can be formatted, it must have partitions created on it. (Partitioning was done 
in the DOS days with the fdisk command, but that command does not exist in current 
versions of Windows, having been replaced with diskpart.) The syntax for format is as 
follows: 


format [volume] [switches] 


The volume parameter describes the drive letter (for example, D:), mount point, or vol- 
ume name. Table 16.3 lists some common format switches. 


TABLE 16.3 format switches 





Switch Purpose 

/fs:[filesystem] Specifies the type of filesystem to use (FAT, FAT32, or NTFS) 
/v:[label] Specifies the new volume label 

/q Executes a quick format 


There are other options as well—to specify allocation sizes, the number of sectors per 
track, and the number of tracks per disk size. However, we don’t recommend that you use 
these unless you have a very specific need. The defaults are just fine. 
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Thus, if you wanted to format your D: drive as NTFS, with a name of HDD2, you 
would type the following: 


format D: /fs:ntfs /v:HDD2 


ZL, Before you format any drive, be sure that you have backed it up (or are pre- 
ING pared to lose whatever is on it). 
Copy Command 


The copy command does what it says: It makes a copy of a file in a second location. (To 
copy a file and then remove it from its original location, use the move command.) Here’s the 
syntax for copy: 


copy [filename] [destination] 


It’s pretty straightforward. There are several switches for copy, but in practice they are 
rarely used. The three most commonly used switches are /a, which indicates an ASCII text 
file; /v, which verifies that the files are written correctly after the copy; and /y, which sup- 
presses the prompt asking whether you’re sure that you want to overwrite files if they exist 
in the destination directory. 


The copy command cannot be used to copy directories. Use xcopy for that 
4 TE function. 
i One useful tip is to use wildcards. For example, at the command prompt, 
P the asterisk (*) is a wildcard that means everything. So, you could type 


copy *.exe to copy all files that have an .exe filename extension, or you 
could type copy *.* to copy all files in your current directory. The other 
popular wildcard is the question mark (?), which does not mean everything 
but instead means one thing. For example, copy ABC?.exe would copy only 
.exe files with four-letter names of which the first three letters are ABC. 


Xcopy Command 


If you are comfortable with the copy command, learning xcopy shouldn’t pose too many 
problems. It’s basically an extension of copy with one notable exception—it’s designed to 
copy folders as well as files. The syntax is as follows: 


xcopy [source] [destination] [switches] 


There are 26 xcopy switches, some of the more commonly used of which are listed in 
Table 16.4. 
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TABLE 16.4 xcopy switches 


Switch Purpose 





/a Copies only files that have the Archive attribute set and does not clear the 
attribute (Useful for making a quick backup of files while not disrupting a nor- 
mal backup routine) 


/e Copies directories and subdirectories, including empty directories 

/f Displays full source and destination filenames when copying 

/g Allows copying of encrypted files to a destination that does not support 
encryption 

/h Copies hidden and system files as well 

/k Copies attributes (By default, xcopy resets the Read-Only attribute.) 

/o Copies file ownership and ACL information (NTFS permissions) 

{r Overwrites read-only files 

/s Copies directories and subdirectories but not empty directories 

/u Copies only files that already exist in the destination 

/v Verifies the size of each new file 


Perhaps the most important switch is /o. If you use xcopy to copy files from one loca- 
tion to another, the filesystem creates new versions of the files in the new location without 
changing the old files. In NTFS, when a new file is created, it inherits permissions from its 
new parent directory. This could cause problems if you copy files. (Users who didn’t have 
access to the file before might have access now.) If you want to retain the original permis- 
sions, use xcopy /o. 


Robocopy Command 


The robocopy (Robust File Copy) utility is included with recent versions of Windows and 
has the big advantage of being able to accept a plethora of specifications and keep NTFS 
permissions intact in its operations. The /mir switch, for example, can be used to mirror a 
complete directory tree. 

An excellent TechNet article on how to use robocopy can be found at https: //technet 
.-microsoft.com/en-us/magazine/ee851678.aspx. 
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Diskpart Command 


The diskpart utility shows the partitions and lets you manage them on the computer’s 
hard drives. You can perform the same functions in the diskpart utility as you can per- 
form in the GUI, which is discussed later in this chapter. Because of the enormous power 
that diskpart holds, membership in the Administrators local group (or equivalent) is 
required to run diskpart. 


Sfc Command 


The System File Checker (sfc) is a command-line-based utility that checks and verifies the 
versions of system files on your computer. If system files are corrupted, the sfc will replace 
the corrupted files with correct versions. 

The syntax for the sfc command is as follows: 


sfc [switch] 


Table 16.5 lists the switches available for sfc. 


TABLE 16.5 sfc switches 





Switch Purpose 
/scanfile Scans a file that you specify and fixes problems if they are found 
/scannow Immediately scans all protected system files 


/verifyonly Scans protected system files and does not make any repairs or changes 
/verifyfile Identifies the integrity of the file specified and makes any repairs or changes 
/offbootdir Repairs an offline boot directory 


/offwindir Repairs an offline Windows directory 


To run the sfc, you must be logged in as an administrator or have administrative privi- 
leges. If the System File Checker discovers a corrupted system file, it will automatically 
overwrite the file by using a copy held in another directory. The most recent Windows 
versions store the files in a large number of discrete folders beneath C: \WINDOWS\WINSXS 
(where they are protected by the system and only TrustedInstaller is allowed direct access 
to them—the cache is not rebuildable). The TrustedInstaller is a service in Windows 7, 
Windows 8/8.1, and Windows 10 that enables the installation, removal, and modifications 
of system components. 


The C: \WINDOWS\SYSTEM32 directory is where many of the Windows sys- 
P tem files reside. 
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If you attempt to run sfc from a standard command prompt, you will be told that you 
must be an administrator running a console session in order to continue. Rather than 
opening a standard command prompt, on Windows 10, click the Start menu, type cmd, 
and then hit Ctrl+Shift+Enter. On Windows 8.1 and below, choose Start > All Programs > 
Accessories, and then right-click Command Prompt and choose Run as Administrator. The 
UAC will prompt you to continue, and then you can run sfc without a problem. 


Chkdsk Command 


You can use the Windows chkdsk utility to create and display status reports for the hard 
disk. Chkdsk can also correct filesystem problems (such as cross-linked files) and scan for 
and attempt to repair disk errors. You can manually start chkdsk by right-clicking the 
problem disk and selecting Properties. This will bring up the Properties dialog box for that 
disk, which shows the current status of the selected disk drive. 

By clicking the Tools tab at the top of the dialog box and then clicking the Check button 
in the Error-checking section, you can start chkdsk. Exercise 16.4 walks you through start- 
ing chkdsk in the GUI, while Exercise 16.5 does the same from the command line. 


Running chkdsk within Windows 

1. Open Windows File Explorer by holding down the Windows key and pressing E. 
2. Right-click C: and choose Properties. 

3. Click the Tools tab, and then click the Check button. 

4. Choose Scan Drive. 

5. Once the drive is scanned for errors, you can click Close. 


In operating systems prior to Windows 10, you can choose your options such as: 
Automatically fix filesystem errors and/or Scan for and attempt recovery of bad 
sectors. 


Running chkdsk at the Command Line 


1. Open an administrative command prompt in Windows 10 by clicking the Start menu 
and typing cmd, and then press Ctrl+Shift+Enter. 


In prior operating systems, you can right-click cmd and run cmd with administrator 
privileges. 


2. Type chkdsk /f and press Enter. 


The system will now scan for, and fix, filesystem errors. 
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Gpupdate Command 


The gpupdate utility is used to update Group Policy settings. It refreshes, or changes, both 
local and Active Directory—based policies and replaces some of the functionality that previ- 
ously existed with secedit. 


Gpresult Command 


The gpresult command is used to show the Resultant Set of Policy (RSoP) report/values 
for a remote user and computer. Bear in mind that configuration settings occur at any num- 
ber of places: They are set for a computer, a user, a local workstation, the domain, and so 
on. Often one of the big unknowns is which set of configuration settings takes precedence 
and which is overridden. 

With gpresult, it is possible to ascertain which settings apply. 


Dir Command 


The dir command is used to display a list of the files and folders/subdirectories within a 
directory. When you use it without any parameters, dir will show you not only that infor- 
mation but also the volume label and serial number, along with the amount of free space, in 
bytes, remaining on the disk. 

The wildcards discussed with copy also work with this command, and there are a pleth- 
ora of parameters that can be used to customize the results or the display. Table 16.6 lists 
some of the most common switches available for dir. 


TABLE 16.6 Common dir switches 





Switch Purpose 

/a Allows you to specify the attributes of files you are seeking (hidden, system, 
and so on) 

/o Allows you to specify a different display order (Alphabetic is the default.) 

/l Returns the results unsorted and in lowercase format 

/s Recursively searches through subdirectories as well as the current directory 

/t Sorts the files according to time order 

/p Displays the results one page/screen at a time 


/q Shows file ownership 
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Dism Command 


The Deployment Image Servicing and Management (dism) tool is primarily used for the 
management of Windows image (.wim) files. The tool allows for the injection of drivers, the 
addition and removal of features, and the mounting of .wim files. The tool can also be used 
with the active operating system to install and remove features. 


Net Command 


The net command can be used with several different sub-commands. Most of the sub- 
commands have been deprecated with the last few releases of Windows. 


Net Use 


The net use sub-command is still widely used by administrators to map drive letters 
to network shares. The syntax for mapping a drive of Z: to the network location of 
\\server\share is as follows: 


net use Z: \\server\share 


Net User 


The net user is another sub-command widely used by administrators. This command 
allows an administrator to list all the local accounts on a Windows installation by entering 
net user. It can also be used to list local accounts or domain accounts by supplying some 
arguments to the command. If you wanted to create a local account of usertwo with a pass- 
word of PasswOrd, you would use the following syntax: 


net user usertwo Passw0rd /add 


Ipconfig Command 


The ipconfig command is a network administrator’s best friend, as it assists in the diag- 
nosis of network problems with the operating system. The ipconfig command without any 
switches will display basic information, such as the IP address, subnet mask, default gate- 
way, and DNS suffix. The command ipconfig /all will list adapters and their assigned IP 
address, subnet mask, default gateway, DNS suffix, DNS server(s), DHCP server, and MAC 
address, just to name the most important elements. Viewing these assignments can help you 
diagnose the current network status of the connection. 

In addition to verifying the status of a network connection’s assignments, you can 
release and renew DHCP assigned IP addresses. The /release switch will release the IP 
address, and the /renew switch will renew the lease of an IP address. 

The ipconfig command also allows you to view the local DNS cache with the 
/displaydns switch. You can flush the local DNS cache with the /flushdns switch. 

These switches come in handy when a DNS entry has changed and you want to 
immediately flush the cache and verify any cached entries. 
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Ping Command 

Next to the ipconfig command, the ping command is the runner up as the network 
administrator’s best friend. The ping command allows you to verify network connectivity 
via Internet Control Message Protocol (ICMP) packets. A common troubleshooting step 
used by network administrators is to ping the default gateway. If it returns a ping, then the 
network connectivity problem is probably beyond that device or your subnet mask is incor- 
rect. However, after a successful ping, you can verify that your computer has basic connec- 
tivity to it. An example of a successful ping is as follows: 


C:\Users\Sybex>ping 172.16.1.1 


Pinging 172.16.1.1 with 32 bytes of data: 

Reply from 172.16.1.1: bytes=32 time<1ims TTL=64 
Reply from 172.16.1.1: bytes=32 time<1ims TTL=64 
Reply from 172.16.1.1: bytes=32 time<ims TTL=64 
Reply from 172.16.1.1: bytes=32 time<ims TTL=64 


Ping statistics for 172.16.1.1: 

Packets: Sent = 4, Received = 4, Lost = 0 (0% loss), 
Approximate round trip times in milli-seconds: 

Minimum = Oms, Maximum = Oms, Average = Oms 


C: \Users\Sybex> 


Tracert Command 


The tracert command allows the network administrator to verify the path a network 
packet travels to its destination. As the diagnostic packet passes through the internetwork, 
each router will respond back with a response time. This enables you to locate a fault in an 
internetwork. An example is as follows: 


C:\Users\Sybex>tracert 8.8.8.8 


Tracing route to google-public-dns-a. google.com [8.8.8.8] 
over a maximum of 30 hops: 


<1 ms <1 ms <1 ms pfsense.Sybex.local [172.16.1.1] 

13 ms 12 ms 17 ms. 96.120.62.213 

15 ms 15 ms 12 ms teQ4012.comcast.net [68.86.101.141] 

13 ms 19 ms 12 ms 162.151.152.153 

12 ms 13 ms 20 ms 96.108.91.78 

22 ms 14 ms 20 ms 96.108.91.121 

21 ms 24 ms 20 ms be-7016-cr02.comcast.net [68.86.91.25] 
20 ms 20 ms 26 ms be-10130-pe04.comcast.net [68.86.82.214] 
20 ms 20 ms 21 ms as040-2-c.comcast.net [75.149.229.86] 


O oOo N DO BR WDN 
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10 22 ms 21 ms 20 ms 108.170.240.97 
11 20 ms 23 ms 21 ms 108.170.226.85 
12 20 ms 22 ms 18 ms google-public-dns-a.google.com [8.8.8.8] 


Trace complete. 


C: \Users\Sybex> 


Netstat Command 


The netstat command allows you to view listening and established network connections 
for the operating system, as discussed in Chapter 7, “Introduction to TCP/IP”. Several 
switches can be used with the netstat command. One of the most useful switches is the 
-b switch, which will display the name of the application and its current established con- 
nections. Adding the -a switch will display all the listening connections in addition to the 
established connections. 


Nslookup Command 


DNS is one of the most important network services that an operating system and user 
relies on for resolution of www. sybex .com to an IP address. Without DNS, we just couldn’t 
remember the millions of IP addresses; it would be like trying to remember everyone’s 
phone number you’ve ever met or going to meet. 

When DNS problems arise, the nslookup command allows you to verify that DNS is 
working correctly and that the correct results are being returned. The simplest way to use 
DNS is to use an inline query, such as ns Lookupwww. sybex.com. This will return the IP 
address associated with the fully qualified domain name (FODN) of ww.sybex.com. The 
nslookup command can also be used in the interactive mode, by just typing ns Lookup 
and pressing Enter. This mode allows you to query more than the associated IP address, 
depending on the type of DNS record you are trying to diagnose. DNS records are covered 
in Chapter 9, “Network Services, Virtualization, and Cloud Computing” 


Help and /? Commands 


The help command does what it says: It gives you help. Actually, if you just type help and 
press Enter, your computer gives you a list of system commands that you can type. To get 
more information, type the name of a command that you want to learn about after typing 
help. For example, if you type help rd and press Enter, you will get information about 
the rd command. 

You can also get the same help information by typing /? after the command. 


PP The /? switch is slightly faster and provides more information than the 

A: help command. The help command provides information for only system 
commands. (It does not include network commands.) For example, if you 
type help ipconfig at a command prompt, you get no useful informa- 
tion (except to try /?); however, typing ipconfig /? provides the help file 
for the ipconfig command. 
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Commands with Standard Privileges vs. Administrative Privileges 


By default, any user can open a command prompt and begin typing the names of command- 
line commands. Certain commands, however, can be dangerous when run and, as a safety 
precaution, require administrative privileges. The sfc command was mentioned earlier, for 
example, as requiring administrative privileges. 

With Windows 7, rather than opening a standard command prompt, choose Start 
> All Programs > Accessories, right-click Command Prompt, and then choose Run as 
Administrator. The UAC will prompt you to continue, and then you can run sfc without a 
problem. With Windows 8, there are two choices on the Start menu; the latter allows you 
to open the command prompt with administrative privileges. Windows 10 behaves similar 
to Windows 7; you can right-click the Command Prompt search result and choose Run as 
Administrator, as shown in Figure 16.28 


FIGURE 16.28 Opening acommand prompt with admin privileges in Windows 10 
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In most cases, if you try to run a utility that requires administrative privileges and you 
are not currently in a console session that has them, an error message will notify you of this. 


The Windows Registry 


Windows configuration information is stored in a special configuration database known 
as the Registry. This centralized database contains environmental settings for various 
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Windows programs. It also contains registration information that details which types of 
filename extensions are associated with which applications. So, when you double-click a 
file in Windows File Explorer, the associated application runs and opens the file that you 
double-clicked. 

The Registry was introduced with Windows 95. Most operating systems up until 
Windows 95 were configured through text files, which can be edited with almost any text 
editor. However, the Registry database is contained in a special binary file that can be 
edited only with the special Registry Editor provided with Windows. 


Current versions of Windows have what appear to be two applications that 

P can be used to edit the Registry: regedit and regedt32 (with no /). In real- 
ity, however, regedt32 opens regedit. They work similarly, but each has 
slightly different options for navigation and browsing. 


The Registry is broken down into a series of separate areas called hives. The keys in 
each hive are divided into two basic sections—user settings and computer settings. In 
Windows, a number of files are created corresponding to each of the different hives. The 
names of most of these files do not have extensions, and their names are SYSTEM, SOFTWARE, 
SECURITY, SAM, and DEFAULT. One additional file, whose name does have an extension, is 
NTUSER. DAT. 

The basic hives of the Registry are as follows: 


HKEY_CLASSES_ROOT Includes information about which filename extensions map to 
particular applications. 


HKEY_CURRENT_USER Holds all configuration information specific to a particular 
user, such as their Desktop settings and history information. 


HKEY_LOCAL_MACHINE Includes nearly all configuration information about the 
actual computer hardware and software. 


HKEY_USERS Includes information about all users who have logged into the system. The 
HKEY_CURRENT_USER hive is actually a subkey of this hive. 


HKEY_CURRENT_CONFIG Provides quick access to a number of commonly needed 
keys that are otherwise buried deep in the HKEY_LOCAL_MACHINE structure. 


Modifying a Registry Entry 

If you need to modify the Registry, you can modify the values in the database or create new 
entries or keys. You will find the options for adding a new element to the Registry under 
the Edit menu. To edit an existing value, double-click the entry and modify it as needed. 
You need administrative-level access to modify the Registry. 
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ZL Windows uses the Registry extensively to store all kinds of information. 

ING Indeed, the Registry holds most, if not all, of the configuration information 
for Windows. Modifying the Registry in Windows is a potentially danger- 
ous task. Control Panel and other configuration tools are provided so that 
you have graphical tools for modifying system settings. Directly modifying 
the Registry can have unforeseen—and unpleasant—results. You should 
modify the Registry only when told to do so by an extremely trustworthy 
source or if you are absolutely certain that you have the knowledge to do 
so without wreaking havoc. 


Restoring the Registry 


Windows stores Registry information in files on the hard drive. You can restore this infor- 
mation using the Last Known Good Configuration option in Windows 7, which restores 
the Registry from a backup of its last functional state. This can be used if—and only if— 
you have not logged in again since a change was made; otherwise, the Last Known Good 
Configuration option is useless. 

To use this option, press F8 during startup and then select Last Known Good 
Configuration from the menu that appears. You can also back up the Registry files to the 
systemroot\repair directory by using the Windows Backup program, or you can save 
them to tape during a normal backup. To repair the Registry from a backup, overwrite the 
Registry files in systemroot\system32\config. 


The Last Known Good Configuration option no longer exists at boot time 

JTE in Windows 8/8.1 and Windows 10. If the operating system suffers two 
consecutive failed attempts to boot into Windows, the Windows Recovery 
Environment (WinRE) will automatically boot. From the WinRE, the operat- 
ing system will try to automatically fix common issues. More information 
on WinRE can be found at: 


https: //support.microsoft.com/en-us/help/4026030/how-to-use- 
windows-recovery-environment-winre-to-troubleshoot-common-s 








© Real World Scenario 


Beware of Editing the Registry 


Just in case it hasn’t sunk in yet: Be careful editing the Registry! There is no Undo button, 
nor do you have the safety net of choosing not to save your edits before you close. Once 
you make the change, it’s made—for better or for worse. 


There have been countless examples throughout our careers of people going in to edit 
the Registry without really knowing what they were doing. In many cases, making small 
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changes to the Registry, without having a viable backup, means having to reinstall Win- 
dows. At the very least, this is inconvenient. 


Windows can help in this regard if you are in a networked environment with Windows- 
based servers. You can create system policies that prevent users from performing certain 
tasks, and the most important task to restrict is running Registry editors. 





Remember that a system restore will restore the Registry to the state it was in when a 
restore point was saved. As a very last-resort option for system recovery, Windows uses the 
Windows Recovery Environment (WinRE) to do a complete PC restore. It is your goal to 
make sure that you never need to use this. 


Virtual Memory 


Another setting that you may need to configure is virtual memory. Virtual memory uses 
what’s called a page file, or paging file. A page file is actually hard drive space into which 
idle pieces of programs are placed while other active parts of programs are kept in or 
swapped into main memory. The programs running in Windows believe that their informa- 
tion is still in RAM, but Windows has moved the data into near-line storage on the solid- 
state drive (SSD) or hard drive. When the application needs the information again, it is 
swapped back into RAM so that the processor can use it. 

Random access memory (RAM) is the computer’s physical memory. The more RAM you 
put into the machine, the more items it can remember without looking anything up. And 
the larger the page file, the fewer times the machine has swapped out the contents of what it 
is holding in memory. The maximum possible size of your page file depends on the amount 
of disk space that you have available on the drive where the page file is placed. Windows 
configures the minimum and maximum page file size automatically. If you want Windows 
to handle the size of the page file dynamically, you have to change the default setting by 
selecting System Managed Size in the Virtual Memory dialog box. We’ll show you how to 
get there in a moment. 

In Windows, the page file is called pagefile.sys and is located in the root directory of 
the drive on which you installed the OS files. The page file is a hidden file; to see the file 
in Windows File Explorer, you must have the Folder options configured to show hidden 
files. Typically, there’s no reason to view the page file in the filesystem, because you’ll use 
Control Panel to configure it. However, you may want to check its size, and in that case, 
you'd use Windows File Explorer. 


The moral of the story: As with most things virtual, a page file is not nearly 
P as good as actual RAM, but it is better than nothing. 


To modify the default virtual memory settings, follow these steps: Click Start, type 
Control Panel, and select it from the results. Click the System icon and select Advanced 
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System Settings from the left panel. In the Performance area, click Settings. Next, click the 
Advanced tab (yes, another Advanced tab), and then, in the Virtual memory area, click 
Change and the Virtual Memory dialog box will open, as shown in Figure 16.29. Note that 
in addition to changing the page file’s size and how Windows handles it, you can specify 
the drive on which you want to place the file. 


FIGURE 16.29 Windows 10 Virtual Memory settings 
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Paging file size for each drive 
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[Storage space] 





Custom size: 


System managed size 


No paging file 


Total paging file size for all drives 
Minimum allowed: 16 MB 
Recommended: 1407 MB 
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a general rule, try to keep 20 percent of your drive space free for the over- 
head of various elements of the OS, like the page file. Do not set the page 
file to an extremely small size. If you make the page file too small, the sys- 
tem can become unbootable—or at least unstable. In general, the page file 
should be at least 1.5x the amount of RAM in the machine. 


A You should place the page file on a drive with plenty of empty space. As 
P 
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Administrative Tools 


Microsoft has included a number of tools with each iteration of Windows to simplify sys- 
tem administration. While some tools have very specific purposes and are used only on rare 
occasions, you will come to rely on a number of tools and access them on a regular basis. It 
is this latter set that we will examine in the following sections. 


Task Manager 


Task Manager lets you shut down nonresponsive applications selectively in all Windows 
versions. In current versions of Windows, it can do so much more, allowing you to see 
which processes and applications are using the most system resources, view network usage, 
see connected users, and so on. To display Task Manager, press Ctrl+Alt+Delete and click 
the Task Manager button or option. You can also right-click an empty spot in the taskbar 
and choose Task Manager from the pop-up menu that appears. 


To get to Task Manager directly in any of the Windows versions that 
P include it, you can press Ctrl+Shift+Esc. 


Depending on the Windows version, Task Manager has various tabs. Figure 16.30 shows 
the common default display in Windows 10, but other versions vary from the seven tabs 
shown here to six: Applications, Processes, Services, Performance, Networking, and Users. 


FIGURE 16.30 The default Task Manager in Windows 10 
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Let’s look at these tabs in more detail: 


Processes The Processes tab lets you see which tasks are open on the machine. You also 
see the status of each task, which can be either Running or Not Responding. If a task/ 
application has stopped responding (that is, it’s hung), you can right-click the task in the list 
and click End Task. Doing so closes the program, and you can try to open it again. Often, 
although certainly not always, if an application hangs, you have to reboot the computer to 
prevent the same thing from happening again shortly after you restart the application. You 
can also use the Processes tab to switch to a different task or create new tasks. In Windows 
10, many of the elements that appear in Processes are copied between the Processes and 
Details tabs, while an App history tab was added that, as the name implies, displays usage 
settings for applications and the currently logged-in user account. 


Processes/Details In Windows 7, the Processes tab lets you see the names of all the 
processes running on the machine, whereas with Windows 8/8.1 and Windows 10, this 
tab now shows what Applications once did (and a little more). To illustrate this differ- 
ence, Figure 16.31 shows the Processes tab in Windows 7, while Figure 16.32 shows it in 
Windows 8.1. 


FIGURE 16.31 The Processes tab of Task Manager in Windows 7 
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notepad.exe user 00 920K Notepad 
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svchost.exe LOCAL ... 00 2,492K HostProc... 
svchost.exe NETWO... 00 5,324K Host Proc... 
svchost.exe SYSTEM 00 2,876K Host Proc... 
svchost.exe NETWO... 00 2,256K Host Proc... 
svchost.exe LOCAL ... 00 6,932K Host Proc... 
svchost.exe SYSTEM 00 3,312K Host Proc... 
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svchost.exe LOCAL ... 00 1,528K Host Proc... 
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IV Show processes from all users End Process 
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FIGURE 16.32 The Processes tab of Task Manager in Windows 8.1 
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In Windows 7, you also see the user account that’s running each process as well as how 
much CPU and RAM resources each process is using. Starting with Windows 8, this infor- 
mation was moved to the Details tab. Windows 10 is identical, as shown in Figure 16.33. 


FIGURE 16.33 The Details tab of Task Manager in Windows 10 
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To end a process, right-click it in the list and click End Task. Be careful with this choice, 
because ending some processes can cause Windows to shut down. If you don’t know what a 
particular process does, you can look for it in any search engine and find a number of sites 
that explain it. 


You can also change the priority of a process in Task Manager’s Processes tab for Windows 
7 (or on the Details tab in Windows 8/8.1 and Windows 10) by right-clicking the name 

of the process and choosing Set Priority. The six priorities, from lowest to highest, are as 
follows: 


Low For applications that need to complete sometime but that you don’t want interfer- 
ing with other applications. On a numerical scale from 0 to 31, this equates to a base 
priority of 4. 


Below Normal For applications that don’t need to drop all the way down to Low. This 
equates to a base priority of 6. 


Normal The default priority for most applications. This equates to a base priority of 8. 


Above Normal For applications that don’t need to boost all the way to High. This 
equates to a base priority of 10. 


High For applications that must complete soon, when you don’t want other applications 
to interfere with the applications’ performance. This equates to a base priority of 13. 


Realtime For applications that must have the processor’s attention to handle time- 
critical tasks. Applications can be run at this priority only by a member of the 
Administrators group. This equates to a base priority of 24. 


If you decide to change the priority of an application, you’ll be warned that doing so may 
make it unstable. You can generally ignore this option when changing the priority to Low, 
Below Normal, Above Normal, or High, but you should heed this warning when changing 
applications to the Realtime priority. Realtime means that the processor gives precedence to 
this process over all others—over security processes, over spooling, over everything—and 
this is sure to make the system unstable. 


Task Manager changes the priority only for that instance of the running application. The 
next time the process is started, priorities revert back to that of the base (typically, Normal). 


Services The Services tab lists the name of each running service as well as the process ID 
associated with it and its description, status, and group. A button labeled Open Services 
appears on the bottom of this screen. Clicking it will open the Microsoft Management 
Console (MMC) snap-in for Services, where you can configure each service. Within Task 
Manager, right-clicking a service will open a context menu listing six choices: Start, Stop, 
Restart, Open Services (which opens the Service MMC), Search Online and Go to Details 
(which takes you to the Processes or Details tab). 


Performance The Performance tab displays a variety of information, including overall 
CPU usage percentage, a graphical display of CPU usage history, the number of processes, 
and a graphical display of physical memory. This tab also provides you with additional 
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memory-related information, such as physical and kernel memory usage as well as the total 
number of handles, threads, and processes. Total, limit, and peak commit-charge informa- 
tion also appears. 


Some of the items are beyond the scope of this book, but it’s good to know that you can use 
the Performance tab to keep track of system performance. Note that the number of pro- 
cesses, CPU usage percentage, and commit-charge information always appears at the bot- 
tom of the Task Manager window, regardless of which tab you have currently selected. 


Networking In Windows 7, the Networking tab provides you with a graphical display of 
the performance of your network connection. It also tells you the network adapter name, 
link speed, and state. If more than one network adapter is installed in the machine, you can 
select the appropriate adapter to see graphical usage data for that adapter. Bluetooth would 
show up on this screen as well. 


In Windows 8/8.1 and Windows 10, the Networking tab has been removed and this infor- 
mation is provided on the Performance tab. 


Users The Users tab provides you with information about the users logged into the local 
machine. You'll see the username, status, CPU usage, memory usage, disk usage, and net- 
work usage. You can right-click the name of any connected user to perform a variety of 
functions, including viewing active processes, sending the user a message, signing off the 
user, switching accounts, and initiating a remote-control session to the user’s machine, if 
they are connected remotely. 


Startup The Startup tab lists the name of services configured to begin at startup as well 
as the publisher, status, and startup impact. From this tab, you can select any service listed 
and choose to disable it. This functionality is provided by msconfig in Windows 7. 


Use Task Manager whenever the system seems bogged down by an unresponsive 
application. 


Microsoft Management Console 


Microsoft created the Microsoft Management Console (MMC) interface as a frontend in 
which you can run administrative tools. Many administrators don’t even know that appli- 
cations they use regularly run within an MMC. In the following sections, we will cover 
many of the different MMC snap-ins you will use in your day-to-day administration of the 
operating system. You can start the MMC by pressing Windows+R to open Run, typing 
mmc in the empty box, and then clicking OK. Once the MMC is started, you can create a 
custom MMC, adding the snap-ins discussed below. Click File, then Add or Remove Snap- 
ins, and then select which snap-ins to add. For more information about the MMC, visit 
https: //technet.microsoft.com/en-us/library/dd632541. aspx. 


Computer Management 


Windows includes a piece of software to manage computer settings: the Computer 
Management console. The Computer Management console can manage more than just the 
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installed hardware devices; it can manage all the services running on a computer in addi- 
tion to Device Manager, which functions almost identically to the one that has existed since 
Windows 9x. It also contains Event Viewer, which shows any system errors and events as 
well as methods to configure the software components of all of the computer’s hardware. 

To access the Computer Management console, you can go through Administrative Tools 
in Control Panel or (in Windows 7) right-click the Computer icon and choose Manage. 
Windows 8.1 and Windows 10 allow you to right-click the Start menu and select it from 
the context list. (In Windows 8, it is on the Start Screen.) 

After you are in Computer Management, you will see all the tools available, as shown 
in Figure 16.34. This is one power-packed interface, which includes the following system 
tools: 


FIGURE 16.34 Windows 10 Computer Management 
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Task Scheduler Allows for the scheduling of tasks using a simple command, script, or 
external program. Many of the operating system’s functions are tasks such as checking for 
updates. 


Event Viewer A link to the tool that allows you to view application error logs, security 
audit records, and system errors. This tool is shown in Figure 16.35 (as it would appear in 
Windows 10). 
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FIGURE 16.35 Event Viewer's opening screen 
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Shared Folders Allows you to manage all of your computer’s shared folders. You can also 
view active remote sessions and open files from this console. 


Local Users and Groups Allows you to create and manage local user and group accounts 


Performance Shows you how your system hardware is performing and alerts you if system 
performance goes under a threshold that you set 


Device Manager Allows you to manage hardware devices and perform tasks such as 
updating drivers, disabling devices, and uninstalling devices. The Device Manager is the 
first place to visit if a device is physically installed but not working. 


Services and Applications Allows you to control services in the operating system 


Computer Management also has the Storage area, which lets you manage removable media, 
defragment your hard drives, or manage partitions through the Disk Management utility. 
Finally, you also can manage system services and applications through Computer Management. 


Services 


This tool (services.msc) is an MMC snap-in that allows you to interact with the services 
running on the computer. Select Start > Control Panel > Administrative Tools, and then 
choose Services. You will see the services that are configured on the system. The status of 
the services will typically be either started or stopped, and you can right-click and make 
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a choice from the context menu: Start, Stop, Pause, Resume, or Restart. Services can be 
started automatically or manually or be disabled. If you right-click a service and choose 
Properties from the menu, you can choose the startup type as well as see the path to the 
executable and any dependencies. 


Performance Monitor 


Performance Monitor differs a bit in different versions of Windows, but it has the same 
purpose throughout: to display performance counters. It will collect counter information 
and then send that information to a console or event log. 

Performance Monitor’s objects and counters are very specific; you can use Performance 
Monitor as a general troubleshooting tool as well as a security-troubleshooting tool. For 
instance, you can see where resources are being used and from where the activity is coming. 
In Exercise 16.6, you will see how to work with Performance Monitor. 


Working with Performance Monitor 
1. Select Start, type per fmon, and then press Enter. 


Make sure that you select Performance Monitor, as opposed to System Monitor or 
other default that may come to the forefront. 


Choose the Performance Monitor section under Monitoring Tools. 
Click the plus sign [+] or right-click in the graphical display area and select Add Counters. 
Expand the Processor section, and then select the %Processor Time object. 


Click Add >> and then OK. 


oa fF WY DN 


Open Windows File Explorer, click the C: drive, type * into the search box, and then 
press Enter. 


7. Quickly change to Performance Monitor and watch the impact of this search on the 
processor. 


This action is time consuming and therefore will help you notice the changes that 
take place in Performance Monitor. 


8. Run the same operation again. This time, however, change your view within Perfor- 
mance Monitor to Histogram bar by clicking the button directly to the left of the plus 
sign [+]. 


9. Runthe same operation again, changing your view within Performance Monitor to 
Report. 


10. Exit Performance Monitor. 


Administrative Tools 925 


Task Scheduler 


Accessible either beneath Computer Management or Administrative Tools in the Control 
Panel, the Task Scheduler allows you to configure an application to run automatically or at 
any regular interval (see Figure 16.36). A number of terms are used to describe the options 
for configuring tasks: action (what the task actually does), condition (an optional require- 
ment that must be met before a task runs), setting (any property that affects the behavior of 
a task), and trigger (the required condition for the task to run). 


FIGURE 16.36 Task Scheduler in Windows 10 
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For example, you could configure a report to run automatically (action) every Tuesday (trig- 
ger) when the system has been idle for 10 minutes (condition), and only when requested (setting). 


Windows Firewall 


The Windows Firewall, renamed in Windows 10 to be Windows Defender Firewall, is used 
to block access from the network (be it internal or the Internet). While host-based firewalls 
are not as secure as other types of firewalls, this was a great move in the right direction. 
It first appeared in Windows XP Service Pack 2 but was released as a polished product in 
Windows Vista. 

Figure 16.37 shows the opening screen of Windows Defender Firewall in Windows 


10. Windows Defender Firewall is turned on by default. It also blocks incoming traffic 
by default. 
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FIGURE 16.37 Windows Defender Firewall in Windows 10 
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Clicking Advanced Settings on the left opens the Windows Defender Firewall with Advanced 
Security MMC, as shown in Figure 16.38. This MMC allows great control of the Windows 
Defender Firewall controls for inbound and outbound rules. Inbound rules can be created to 
allow and deny network traffic inbound to applications and the operating system. Outbound 


inbound firewall rules are restricted by default. When an application attempts to listen to specific 
network traffic, the operating system will pop up a dialog asking you to confirm the network 
activity. This dialog box will automatically create an inbound rule for the application’s traffic. 
The Windows Defender Firewall with Advanced Security MMC allows you to pre-create the rule. 
In addition, you can create connection security rules for authenticating and encrypting traffic. 


FIGURE 16.38 Windows Defender Firewall with Advanced Security in Windows 10 
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Component Services 


Component Services is an MMC snap-in in Windows that allows you to administer and 
deploy component services. It can be used to configure various settings, such as security 
settings. With this tool, it is possible for administrators to manage components while 
developers configure routine component and application behavior. Figure 16.39 shows an 
example of the interface. 


FIGURE 16.39 Component Services in Windows 10 
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ODBC Data Sources 


The ODBC Data Source applet is accessed via Start > Windows Administrative Tools > 
ODBC Data Sources. It allows you to view, create, and modify connections to databases. 
Figure 16.40 shows an example of the screen. Database drivers that are added to the oper- 
ating system will show up here and can be shared between applications. In 64-bit operating 
systems, there is a 32-bit and 64-bit ODBC Data Source applet, depending on the applica- 
tion that is going to use the ODBC connection. 
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FIGURE 16.40 ODBC Data Sources in Windows 10 
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Print Management 


Windows 10 manages printers through the Print Management MMC, as shown in Figure 
16.41. To access it, choose Start > Windows Administrative Tools > Print Management. 
Print Management allows you to manage multiple printers and print servers from a single 
interface. The MMC also allows you to manage the print drivers installed in the operating 


system. 


FIGURE 16.41 Print Management in Windows 10 
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Windows Memory Diagnostics Tool 


The Windows Memory Diagnostics Tool is accessed via Start > Windows Administrative 
Tools > Memory Diagnostics Tool. It can be used to check a system for memory problems. 
For the tool to work, the system must be restarted. The two options that it offers are to 
restart the computer now and check for problems or to wait and check for problems on the 
next restart. 

Upon reboot, the test will take several minutes, and the display screen will show the 
number of the pass being run and the overall status of the test (percent complete), as shown 
in Figure 16.42. When the memory test concludes, the system will restart again, and noth- 
ing related to it having run is apparent until you log in. If the test is without error, you'll see 
a message that no errors were found. If any issues are detected, the results will be displayed. 


FIGURE 16.42 Windows Memory Diagnostics Tool in Windows 10 
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Local Security Policy 


To access the Local Security Policy tool, choose Start and then enter secpol.msc (or you 
can choose Start > Windows Administrative Tools > Local Security Policy). Local Security 
Policy allows you to set the default security settings for the system. We will dive deeper into 
securing the operating system in Chapter 22, “Security Concepts.” 
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User Account Management 


The Local Users and Groups MMC allows for granular control over local user accounts 
and groups for the Windows operating system. The basic User Accounts Control Panel 
applet allows for basic administration of user accounts, as described earlier in this 
chapter. You can access the Local Users and Groups MMC by right-clicking the Start 
menu and choosing Computer Management. When the MMC launches (as shown in 
Figure 16.43) the Local Users and Groups MMC extension can be chosen under System 
Tools. 


FIGURE 16.43 Local Users and Groups in Windows 10 
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The MMC extension is divided into the following two parts: 


= The Users section allows for the viewing, creation, and modification of individual 
users. You can also access disabled users, such as the built-in Administrator account 
and Guest account. 


a The Groups section allows for the viewing, creation, and modification of groups. The 
User Accounts Control Panel applet only allows assignment of the administrator group 
with a radio button-type dialog. However, from this MMC extension, you can assign 
many different groups. Each group assigns more permissions to a user. 
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Windows System Configuration Tools 


The tabs of the System Configuration tool (msconfig) differ a bit based on the Windows 
version you are running. Nonetheless, the key tabs are General, Boot, Services, Startup, 
and Tools. Figure 16.44 shows the General tab for Windows 10. From here, you can config- 
ure the startup options. 


FIGURE 16.44 System Configuration General tab in Windows 10 
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Figure 16.45 shows the Boot tab for Windows 10. Note that from here, you can configure 
the next boot to be a Safe boot, and you can turn on the boot information so that you can 
see drivers as they load—quite useful when a system keeps hanging during boot. Although 
the option is titled Safe boot, this is classically referred to as booting into Safe mode. 


FIGURE 16.45 System Configuration Boot tab in Windows 10 
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Figure 16.46 shows the Services tab for Windows 10. At this tab, you can view the ser- 
vices installed on the system and their current status (running or stopped). You can also 
enable or disable services, as necessary. 


FIGURE 16.46 System Configuration Services tab in Windows 10 
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Figure 16.47 shows the Startup tab for Windows 7. In Windows 8/8.1 and Windows 10 
the Startup tab redirects you to the Startup tab in Task Manager, where these tasks can be 
performed. At this tab, you can turn on or off items to run at startup, allowing for much 
simpler configuration than editing the Registry. 








FIGURE 16.47 System Configuration Startup tab in Windows 7 
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Figure 16.48 shows the Tools tab for Windows 10. At this tab, you can launch a number 
of administrative tools to configure various Windows features. 


FIGURE 16.48 System Configuration Tools tab in Windows 10 
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Although it has been said already, it must be stated again that the tabs differ slightly 
based on the operating system version. The CompTIA objectives related to this tool were 
walked through in this discussion. 

The msinfo32 tool, also known as System Information, displays a fairly thorough list of 
settings on the machine (see Figure 16.49). You cannot change any values from here, but 
you can search, export, and save the output. Several command-line options can be used 
when starting msinfo32. Table 16.7 summarizes them. 
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FIGURE 16.49 The Msinfo32 interface shows configuration values for the system. 
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TABLE 16.7 msinfo32 command-line options 


Option Function 

/computer Allows you to specify a remote computer on which to run the utility 
/nfo Creates a file and saves it with a .nfo extension 

/report Creates a file and saves it with a . txt extension 


Another utility to know is the dxdiag (DirectX Diagnostic) tool, as shown in Figure 16.50. 
This tool allows you to test DirectX functionality. When you start it, you can also verify 
that Microsoft has signed your drivers, as shown in Figure 16.51. DirectX is a collection of 
application programming interfaces (APIs) related to multimedia. 
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FIGURE 16.50 Testing DirectX functionality 
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FIGURE 16.51 Verifying that drivers have been signed 
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Finally, mstsc (Microsoft Terminal Services Client), known as the Remote Desktop 
Connection tool, is used to configure remote desktop connections. It offers a glut of 
options, as shown in Figure 16.52. 


935 


936 Chapter 16 = Operating System Administration 


FIGURE 16.52 Command-line options for Remote Desktop Connection 
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[/w:<width> /h:<height>] [/public] | [/span] [/multimon] [/edit "connection file"] 
[/restrictedAdmin] [/remoteGuard] [/prompt] [/shadow:<sessionID> [/control] 
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“connection file” -- Specifies the name of an .RDP file for the connection. 
/v:sserver[:port]> -- Specifies the remote PC to which you want to connect. 


/g:<gateway> -- Specifies the RD Gateway server to use for the connection. This parameter is 
only read if the endpoint remote PC is specified with /v. 


/admin -- Connects you to the session for administering a remote PC. 

/f -- Starts Remote Desktop in full-screen mode. 

/w:<width> -- Specifies the width of the Remote Desktop window. 

/h:<height> -- Specifies the height of the Remote Desktop window. 

/public -- Runs Remote Desktop in public mode. 

/span -- Matches the remote desktop width and height with the local virtual desktop, 
spanning across multiple monitors, if necessary. To span across monitors, the monitors must 


be arranged to form a rectangle. 


/multimon -- Configures the Remote Desktop Services session monitor layout to be identical 
to the current client-side configuration. 


/edit -- Opens the specified RDP connection file for editing. 

/restrictedAdmin -- Connects you to the remote PC in Restricted Administration mode. In this 
mode, credentials wona€™t be sent to the remote PC, which can protect you if you connect 
to a PC that has been compromised. However, connections made from the remote PC might 
not be authenticated by other PCs, which might impact application functionality and 
compatibility. This parameter implies /admin. 

/remoteGuard -- Connects your device to a remote device using Remote Guard. Remote 
Guard prevents credentials from being sent to the remote PC, which can help protect your 
credentials if you connect to a remote PC that has been compromised. Unlike Restricted 
Administration mode, Remote Guard also supports connections made from the remote PC by 
redirecting all requests back to your device. 

/prompt -- Prompts you for your credentials when you connect to the remote PC. 
/shadow:<sessionID> -- Specifies the ID of the session to shadow. 


/control -- Allows control of the session when shadowing. 


/noConsentPrompt -- Allows shadowing without user consent. 











It can be started from the command line using the options shown in the help screen, or it 
can be configured through the graphical interface (much easier), as shown in Figure 16.53. 
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FIGURE 16.53 Graphical configuration options for Remote Desktop Connection 
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Power Management 


The Advanced Configuration Power Interface (ACPI) must be supported by the system 
BIOS in order to work properly. With ACPI, it is the BIOS that provides the operating 
system with the necessary methods for controlling the hardware. This is in contrast to 
Advanced Power Management (APM), which gave only a limited amount of power to the 
operating system and let the BIOS do all the real work. Because of this, it is not uncommon 
to find legacy systems that can support APM but not ACPI. 

There are three main states of power management common in most operating systems: 


Hibernate This state saves all of the contents of memory to the hard drive, preserves all 
data and applications exactly where they are, and allows the computer to power off com- 
pletely. When the system comes out of hibernation, it returns to its previous state. 


Sleep In some operating systems, Sleep is used interchangeably with Hibernate, but that 
should not be the case. In Windows, Sleep puts the system in a low-power state, whereas 
Hibernate turns it off. 


Shutdown/Turn Off As the name implies, this shuts down everything and then turns off 
the system. You can shut down the system and have it stay off, or you can shut down the 
system and have it power back on (Restart). The latter option is often used when updates 
need to be applied. 
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If you are interested in saving power with a system that is not accessed often, one option 
is to employ Wake on LAN (WoL). Wake on LAN is an Ethernet standard implemented via 
a card that allows a “sleeping” machine to awaken when it receives a wakeup signal. Wake 
on LAN cards have more problems than standard network cards. In our opinion, this is 
because they’re always on. In some cases, you'll be unable to get the card working again 
unless you unplug the PC’s power supply and reset the card. 

Sleep timers allow you to configure a system to sleep for certain periods of time to con- 
serve power. Although sleep timers are not included with the operating system, you can 
find a number of downloadable programs that will turn off the machine at a certain time or 
after some specified condition is met. 


Disk Management 


Where there are files, there are disks. That is, all the files and programs that we’ve talked 
about so far reside on disks. Disks are physical storage devices, and they also need to be 
managed. There are several aspects to disk management. One is concerned with getting 
disks ready to be able to store files and programs; another deals with backing up your data; 
and yet another involves checking the health of disks and optimizing their performance. 
We’ll look at these aspects in more detail. 


Getting Disks Ready to Store Files and Programs 


In order for a hard disk to be able to hold files and programs, it has to be partitioned and 
formatted. Partitioning is the process of creating logical divisions on a hard drive. A hard 
drive can have one or more partitions. Formatting is the process of creating and config- 
uring a file allocation table (FAT) and creating the root directory. The New Technology 
Filesystem (NTFS) is available with all the versions of Windows you need to know about 
for the exam, but others are also recognized and supported. The file table for the NTFS is 
called the Master File Table (MFT). 

The following is a list of the major filesystems that are, or have been, used and the dif- 
ferences among them: 


File Allocation Table FAT is the acronym for the file table used to keep track of where 
files are within the filesystem. It’s also the name given to this type of filesystem, introduced 
in 1981. The filesystems for many OSs have been built on the design of FAT but without its 
limitations. A FAT filesystem uses the 8.3 naming convention (eight letters for the name, 

a period, and then a three-letter file identifier). This later became known as FAT16 (to dif- 
ferentiate it from FAT32) because it used a 16-bit binary number to hold cluster-numbering 
information. Because of that number, the largest FAT disk partition that could be created 
was approximately 2 GB. 
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Virtual FAT Virtual Fat (VFAT) is an extension of the FAT filesystem that was intro- 
duced with Windows 95. It augmented the 8.3 file-naming convention and allowed file- 
names with up to 255 characters. It created two names for each file: a long name and 

an 8.3-compatible name so that older programs could still access files. When VFAT was 
incorporated into Windows 95, it used 32-bit code for improved disk access while keeping 
the 16-bit naming system for backward compatibility with FAT. It also had the 2 GB disk 
partition limitation. 


FAT32 The FAT32 filesystem was introduced along with Windows 95 OEM Service 
Release 2. As disk sizes grew, so did the need to be able to format a partition larger than 2 
GB. FAT32 was based more on VFAT than on FAT 16. It allowed for 32-bit cluster address- 
ing, which, in turn, provided for a maximum partition size of 2 terabytes (2,048 GB). It 
also included smaller cluster sizes to avoid wasted space. FAT32 support is included in cur- 
rent Windows versions. 


New Technology Filesystem Introduced along with Windows NT, New Technology 
Filesystem (NTFS) is available with all current versions of Windows. NTFS is a much more 
advanced filesystem in almost every way than all versions of the FAT filesystem. It includes 
such features as individual file security encryption and compression, disk quotas, and 
RAID support, as well as support for extremely large file and partition sizes and disk trans- 
action monitoring. It is the filesystem of choice for higher-performance computing. 


Compact Disc File System Although not a filesystem that can be used on a hard drive, 
Compact Disc File System (CDFS) is the filesystem of choice for CD media. It has been 
used with 32-bit Windows versions since Windows 95. A CD mounted with the CDFS 
driver appears as a collection. 


Extended File Allocation Table Created by Microsoft, Extended File Allocation Table 
(exFAT) is a proprietary filesystem of choice for flash drives where NTFS cannot be used 
(because of overhead) and FAT32 is not acceptable (due to filesystem limitations). Although 
exFAT is a proprietary filesystem, it is being adopted by third-party device vendors to over- 
come the filesystem limitations of FAT32. It is ideal for SD cards that hold a lot of informa- 
tion, and it is supported in all current versions of Windows. exFAT is the default filesystem 
on USB flash drives over 32 GB in size. 


Network File System Network File System (NFS) was created by Sun Microsystems a 
number of decades ago and is widely used in UNIX and then Linux environments. Starting 
with Windows 7, Microsoft includes support for NFS with Windows (but it is not always 
installed). Windows versions prior to Windows 7 (Vista) can install Windows Services for 
UNIX (SFU) to gain this support. 


Extended File System Not natively supported with Windows, ext3 (Third Extended File 
System) became the default filesystem for many distributions of Linux due to its journ- 
aling capabilities. Enhancements were added to it to create ext4 (Fourth Extended File 
System), which is used with Android and other operating systems. It is possible to use ext4 
with Windows, but doing so requires making some sacrifices in features for the sake of 
compatibility. 
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Hierarchical File System Hierarchical File System (HFS) is a proprietary filesystem that 
was developed by Apple for the Mac OS back in 1985. The filesystem was originally created 
so that the filesystem could scale for larger disks. Today, HFS+ has replaced the original 
HFS filesystem and is the filesystem upon which macOS operates as well as the preferred 
filesystem for expansion drives. Windows operating systems cannot read drives formatted 
in HFS. 


Swap Partition Swap partitions, which are found only within Linux and UNIX installa- 
tions, are the equivalent of the page file in the Windows operating system, except that they 
are their own partition type. They are used for virtual memory when the physical memory 
is exhausted. 


When you’re installing any Windows OS, you will be asked first to format the drive 
using one of these disk technologies. Choose the disk technology based on what the com- 
puter will be doing and which OS you are installing. 

To format a partition, use the format command, which is available with all versions 
of Windows. You can run format from a command prompt or by right-clicking a drive 
in Windows File Explorer and selecting Format. However, when you install Windows, it 
performs the process of partitioning and formatting for you if a partitioned and formatted 
drive does not already exist. 

You can usually choose between a quick format and a full format: 


= With a quick format, a new file table is created on the hard disk, but files are not fully 
overwritten or erased from the disk. 


= A quick format is much faster since the normal format fully erases any and all existing 
data on the hard disk (a time-consuming process). 


ING treasured data can be lost. Before using the format command, make sure 


ZZ Be extremely careful with the format command! When you format a drive, 
N 
that you back up the data you want to save. 


Disk Management MMC 


In Windows, you can manage hard drives through the Disk Management console. To 
access Disk Management in Windows 10, right-click the Start menu and then click Disk 
Management. 

The Disk Management screen lets you view a host of information regarding all the 
drives installed in your system, including CD/DVD-ROM drives (see Figure 16.54). 

Given a scenario, there are many instances in which an administrator would turn to 
Disk Management during the course of trying to find the right storage solution. The Disk 
Management administrative console allows you to review all the logical partitions (vol- 
umes) configured and physical drives (disks) that are connected to the computer. 
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FIGURE 16.54 Disk Management MMC in Windows 10 
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The logical volume is displayed in the upper portion of the Disk Management console. 
This view allows you to see at a glance all the configured volumes on the operating sys- 
tem. Details about the volume letter or type, the layout type, the type of disk (basic vs. 
dynamic), filesystem, status, capacity, and free space can be seen in this logical view. 

The physical layout, displayed below the logical view, allows you to see the layout of the 
physical disks in a graphical format. Using both views, you can see the layout of a physical 
disk and its corresponding logical layout. The physical layout allows you to view the status 
of the drive, size of the drive, and its health, in addition to the layout of volumes on the 
physical disk. 

Windows supports three types of partition styles: Basic, GPT, and Dynamic. Partition 
styles are also known as partition schemes; the terms are used to describe the underlying 
structure of the partitioning of the physical disk. 


Basic Disks Master Boot Record (MBR) is the standard BIOS partition table used 

and predates GPT. MBR disk storage can have a maximum of four primary partitions or 
three primary partitions and one extended partition containing multiple logical partitions, 
for a maximum of 26 logical partitions. The partition from which the operating system 
boots must be designated as active and must be a primary partition. Only one partition on 
a disk can be marked active. 
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GPT Disks GUID Partition Tables (GPT) is the current partition table specification used 
with Unified Extensible Firmware Interface (UEFI) BIOS. GPT partition tables allocate 
64-bit logical block addressing for larger partitions. If you need to create partitions 2 TB 
or larger, it is required. A GPT disk can contain up to 128 primary partitions. The large 
number of primary partitions supported eliminates the need to create extended/logical 
partitions. 


Dynamic Disks Dynamic disks are proprietary to Microsoft Windows operating systems. 
Dynamic disks can contain up to 2,000 volumes. All the dynamic disks installed in the 
operating system contain an identical 1 MB database (partition table) that describes all the 
other disks installed. The true benefit of this 1 MB database is moving fault tolerant disks 
to another Windows operating system. The operating system will automatically recognize 
that the disks work together, and the Logical Disk Management (LDM) will configure 
itself according to the layout in the 1 MB database. 


P The terms partition and volume are interchangeable; they both mean the 
‘Qi same thing. They are logical subdivisions of a physical disk. Dynamic disks 
use the terminology of volumes, and MBR and GPT use the terminology 
of partitions. Sometime partitions will be referred to as volumes, such as 
when you use the diskpart command-line utility. 


The popup menu that comes from right-clicking any volume allows you to change the 
drive letter or paths, format, extend, shrink, delete, or add a mirror. The popup menu that 
comes from right-clicking any drive allows you to create a new spanned, striped, mirrored, 
or RAID-S volume. You can also convert to a dynamic or GPT disk. 

Let’s discuss the features and functions in further detail: 


Initializing Disks The phrase initializing a disk means different things depending on 

if it is a hardware initialization or, in this case, a Windows initialization. When you ini- 
tialize a disk in Windows, you are allowing the LDM to recognize the disk. When you 
initialize a disk in hardware disk systems, you are erasing the partition table and even the 
data. To initialize a disk, right-click the drive and select Initialize. This only needs to be 
performed once. 


Mounting Partitions Once a partition (volume) is created, you need to make it available 
to the operating system for use. You have two basic options. The first option is to assign the 
volume a drive letter. The second option is to mount the volume in an empty NTFS folder. 
So you can mount an entire volume in a specific folder. You can perform this task by right- 
clicking a partition and selecting Change Drive Letter and Paths. 


Extending Partitions When you install an operating system on a disk, you will more than 
likely use the entire disk for the installation of the operating system. However, if you ever 
fill it all up and buy a bigger drive, when you clone it over to the new larger disk, you will 
find that the partition is the same size. This is where extending a partition comes in handy. 
It is also very common for virtualized operating systems, since adding space to a virtual 
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disk can be done on-the-fly. As long as there is unallocated space on the disk, you can right- 
click the partition (volume) and choose Extend Volume. 


Shrinking Partitions Shrinking a partition, also known as splitting a partition, is not a 

common task, but it is done from time to time. It is usually performed when an installa- 

tion is not using a fraction of the physical disk storage and another partition is required. 

You can perform this action by right-clicking the partition (volume) and choosing Shrink 
Volume. 


P Extending partitions and shrinking partitions require that you are perform- 
‘GQ ing the task on the last partition (volume) created on the drive. This is not 
always the case. These functions will not always work from within the 
operating system. An open-source tool called SystemRescueCD contains a 
tool called GParted. This tool allows you to reconfigure the disk layout and 
move partitions around, as well as shrink and extend partitions. 


Adding Drives When you add a disk to the system, you normally have to power the com- 
puter down to attach the disk. However, servers have the capability to add drives on-the-fly, 
called hot swap disks. When a disk is added to the operating system, the operating system 
needs to know it. You can make the operating system take inventory of its disks by select- 
ing Rescan Disks from the Action menu item in the Disk Management console. 


Adding Arrays Arrays of disks are multiple disks working together for a specific pur- 
pose. These are also known as a Redundant Array of Independent (or Inexpensive) Disks 
(RAID). They are used for fault tolerance so that in the event of a disk failure, the system 
will continue to function. They can also be used to add performance to a system, by using 
multiple disks. Striped disks, also known as RAID-0, require two or more disks and 

are used for performance; they do not offer any fault tolerance. A mirror, also known as 
RAID-1, is the most basic type of fault tolerance, by creating an identical mirror of the 
information on another disk. Striped disks with parity, also known as RAID-S, offer per- 
formance and fault tolerance and require three or more disks. The Windows operating sys- 
tem is unique in that it allows volumes to participate in array groups, rather than requiring 
the entire disk. 


Storage Spaces This Windows feature was initially introduced in Windows Server 2012 
and Windows 8. It allows for a group of drives to be placed into a pool of storage that 
can be configured for fault tolerance. The benefit is that more disks can be added later, 
to extend a storage pool dynamically. The one caveat is that the hard drives can either be 
managed by the Disk Management MMC or Storage Spaces, but not both. 


Storage Spaces allows for the management of a variety of different hard drives. A unique 
feature to Storage Spaces is the capability to create a storage pool using two or more exter- 
nal (USB-attached) hard drives. Storage Spaces is not exclusive to external hard drives; 
internal hard drives can be used as well (although this is a very unique feature). 
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In Storage Spaces, you can create a two-way mirror, a three-way mirror, or parity resiliency 
of your data. A two-way mirror is identical in functionality toa RAID-1 mirror. A three- 
way mirror is similar to a RAID-1 mirror in that it duplicates the data on two other drives; 
unlike RAID-1, however, you can lose two hard drives and retain data. A parity resiliency 
type is identical in functionality to a RAID-S (striping with parity). You can also use Storage 
Spaces without resilency, which is called a Simple volume, as shown in Figure 16.55. 


FIGURE 16.55 Windows 10 Storage Spaces 
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Checking the Health of Hard Disks and Optimizing Their 
Performance 


As time goes on, it’s important to check the health of Windows computers’ hard disks and 
to optimize their performance. Windows provides you with several tools to do so, some of 
which we’ve already mentioned in this chapter. One important tool is Disk Defragmenter, 
which has existed in almost all versions of Windows. 

When files are written to a hard drive, they’re not always written contiguously, or with 
all the data in a single location. Files are stored on the disk in numbered blocks, similar 
to PO boxes. When they are written, they are written to free blocks. As a result, file data 
is spread out over the disk, and the time it takes to retrieve files from the disk increases. 
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Defragmenting a disk involves analyzing the disk and then consolidating fragmented files 
and folders so that they occupy a contiguous space (consecutive blocks). This increases 
performance during file retrieval, since the hard drive arm in mechanical hard disks needs 
to travel less to retrieve the blocks. Defragmentation of the filesystem is not required on 
solid state drives (SSDs), since the fragmentation of data blocks does not slow down the 
retrieval of the memory locations. 

To access Disk Defragmenter, perform the following steps: 


1. Click Start > Windows Administrative Tools > Defragment and Optimize Disk. 


2. Inthe list of drives, select the drive that you want to defragment, and then click 
Analyze. 


When the analysis is finished, Disk Defragmenter tells you how much the drive is 
fragmented and whether defragmentation is recommended. 


3. If defragmentation is recommended, click Defragment. 


Be aware that for large disks with a lot of fragmented files, this process can take quite 
some time to finish. 


In Windows, you can also access Disk Defragmenter through the proper- 

P ties of any partition listed in Disk Management (or, even easier, any disk 
root under This PC in Windows File Explorer). Click the Tools tab, and then 
click Defragment. 


Summary 


In this chapter, you learned about some of the tools that can be used with Windows. We 
covered basic Windows management concepts, including managing disks, using filesystems, 
and understanding directory structure. Keeping your computer healthy will save you a lot 
of stress. 

With the basic knowledge gained in this chapter, you are now ready to learn how to 
interact with the most popular operating systems in use today. These topics are covered in 
the next four chapters. 
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Know which filesystems are available in Windows and the differences between them. The 
most commonly used filesystem on Windows hard drives is NTFS. FAT32 is older and per- 
haps a bit quicker for smaller hard drives and USB thumb drives, but NTFS adds a plethora 
of important features, including security and auditing. 
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Know which Windows Control Panel utility to use for a given scenario. A number of 
Control Panel applets allow you to change the Windows operating system’s functional- 

ity. With the introduction of Windows 10, some of the functionality is split between the 
Settings app and the classic Control Panel applets. You should be proficient with both for a 
given scenario in which changes to the operating system need to be made. 


Understand what each of the commands-line utilities performs. Many utilities allow 

you to perform various functions at the command line. These include shutdown, dism, sfc, 
chkdsk, diskpart, taskkill, gpupdate, gpresult, format, copy, xcopy, robocopy, net use, 
net user, ipconfig, ping, tracert, netstat, and nslookup. The cmd command opens a 
command prompt, where you can type the rest of the commands. If you’re not sure how to 
use a particular utility, using the /? switch at the end of the command will provide infor- 
mation about how to use it. 


Know the main administrative tools. You should know the primary graphical tools 
for troubleshooting Windows and working with the operating system. These include the 
disk management tools, Administrative Tools, Device Manager, Task Manager, System 
Information, System Restore, and Task Scheduler. 


Know the various disk management concepts. You should know the various concepts 
related to disk management to initialize and mount a drive to assign a drive letter, as well 
as the concepts of extending, splitting and shrinking partitions (volumes), fault tolerance 
arrays, and Storage Spaces. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. 


Which of the following utilities is used to update Group Policy settings and replaces some 
of the functionality that previously existed with secedit? 


A. clobber 
B. gpupdate 
C. consolidate 


D. extract 


In Windows, which of the following is the filesystem of choice for CD media? 
A. NTFS 


B. EFS 
C. FAT32 
D. CDFS 


Which utility can be used to schedule a remote shutdown? 


A. taskmgr 
B. kill 

C. shutdown 
D. netstat 


You need to verify network connectivity for a host. Which tool should you use? 


A. ping 

B. net use 
C. sfc 

D. dism 


Which of the following filesystems is a proprietary filesystem created by Microsoft for use 
with large flash drives? 


A. GPT 
B. NFS 
C. ext3 
D. exFAT 


Which command terminates a running process at the command line? 
A. pskill 

B. ps 
C. kill 

D. taskkill 
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10. 


11. 


12. 
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Virtual memory is configured through which system tool? 
A. Taskbar 

B. System Properties 

C. Memory Manager 

D. Virtual Configuration 


Within the Services snap-in, services can be in any state except which of the following? 
A. Started automatically 

B. Started manually 

C. Disabled 

D. Detached 

What can you do if a program is not responding to any commands and appears to be 
locked up? 


A. Open the System Control Panel applet and choose Performance to see what process 
is causing the problem. 


B. Add more memory. 
C. Press Ctrl+Alt+Del to reboot the computer. 
D. Open Task Manager, select the appropriate task, and then click End Task. 


Which of the following commands can be used to configure a remote connection? 


A. regedit 

B. mstsc 

C. regsvr32 

D. spl 

Which tool can be used to verify that a display driver is signed? 
A. dxdiag 

B. msinfo 


C. msconfig 
D. msinfo32 


Which type of resources do you configure in Device Manager? 
A. Hardware 

B. Files and folders 

C. Applications 

D. Memory 
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13. You believe that there are corrupt clusters on your disk. Which tool should you use? 


A. Disk Management 


B. sfc 
C. chkdsk 
D. diskpart 


14. You believe that your system files are corrupted in Windows. You run the System File 
Checker. Which command should you run in order to make the System File Checker 
automatically repair your system files? 


A. sfc /recover 
B. sfc /repair 
C. sfc /verifyfile 
D. sfc /scannow 
15. Which of the following partitions is specifically the partition from which the operating 
system boots? 
A. Primary partition 
B. Extended partition 
C. Dynamic partition 
D. Logical partition 
16. Which of the following Registry hives contains information about the computer’s 
hardware? 
A. HKEY_CURRENT_MACHINE 
B. HKEY_LOCAL_MACHINE 
C. HKEY_MACHINE 
D. HKEY_RESOURCES 


17. Which of the following replaces the MBR in 64-bit versions of the Windows operating 


system? 

A. LILO 
B. NFS 
C. GPT 
D. GRUB 


18. Which of the following utilities will rearrange the files on your hard disk to occupy 
contiguous chunks of space? 


A. Disk Defragmenter 
B. Windows File Explorer 
C. Scandisk 

D. Windows Backup 
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19. Which of the following switches can be used with robocopy to mirror a complete directory 


tree? 
A. /s 
B. /mir 
C. /cdt 
D. /ah 
20. Which of the following utilities allows you to test network connectivity? 
A. netstat 
B. ping 
C. telnet 
D. dxdiag 


Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answers compare to the authors’, refer 
to Appendix B. 

You are working at a company that has standardized on Windows 10 workstations for 
all. The phone rings, and it is your superior. He tells you that his workstation is running 
incredibly slow, almost to the point where is it is unusable. When you ask what he is run- 
ning, he reports that he has exited out of everything but the operating system. You suspect 
there are background processes tying up the CPU and memory. Which utility can you have 
him use to look for such culprits? 
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THE FOLLOWING COMPTIA A+ 220-1002 
EXAM OBJECTIVES ARE COVERED IN 
THIS CHAPTER: 


vy 1.2 Compare and contrast features of Microsoft 
Windows versions. 


a Windows 10 


y 1.3 Summarize general OS installation considerations 
and upgrade methods. 


= Boot methods: Optical disc (CD ROM, DVD, Blu-ray), External 
drive/flash drive (USB/eSATA), Network boot (PXE), Internal 
fixed disk (HDD/SSD) 


= Types of installations: In-place upgrade, Clean install, 
Repair installation, Multiboot, Remote network installation, 
Recovery partition, Refresh/restore 


= Prerequisites/hardware compatibility 
= Application compatibility 
= OS compatibility/upgrade path 


Y 1.5 Given a scenario, use Microsoft operating system 
features and tools. 


a Msinfo32 


vy 1.7 Summarize application installation and configuration 
concepts. 


=» System requirements: Drive space, RAM 
a OS requirements: Compatibility 


= Methods of installation and deployment: Local (CD/USB), 
Network-based 


= Local user permissions: Folder/file access for installation 


= Security considerations: Impact to device, Impact to network 





Y 1.8 Given a scenario, configure Microsoft Windows 
networking on a client/desktop. 


= HomeGroup vs. Workgroup 
a Domain setup 
a Network shares/administrative shares/mapping drives 


a Printer sharing vs. network printer mapping 





In the previous chapters, we reviewed the basic principles 
of operating systems and the administration of the 
Windows operating system. In this chapter, we will focus 
on Windows 10, which is the first of three Windows operating systems we will cover 
for the 220-1002 exam. 

Windows 10 is considered the next major adopted Windows operating system for corpo- 
rate networks. Windows 10 has already become the most popular home use operating system, 
and a lot has to do with the free upgrade when it was first introduced to the market. 





Introduction to Windows 10 


Microsoft released Windows 10 on July 29, 2015, and offered a free upgrade from 
Windows 7, Windows 8, and Windows 8.1. The Windows 10 upgrade was initiated by the 
Get Windows 10 (GWX) upgrade tool, which was installed via a Windows Update. This 
tool was automatically installed on Windows operating systems that were eligible for the 
upgrade and just about forced users to upgrade. The free upgrade was limited to the first 
year of the Windows 10 release and expired on July 29, 2016. However, it was reported 
that up to two years after the initial launch, Microsoft was still allowing the activation of 
Windows 10 for free. For these reasons, Windows 10 was rapidly adopted and continues to 
be adopted as other Windows operating system versions end mainstream support. 

Windows 10 has had a total of 12 editions released, with three of the editions being dis- 
continued (Windows 10 Mobile, Windows 10 Mobile Enterprise, and Windows 10 S). Two 
of the editions are device-specific editions for IoT (Internet of Things) and Windows 10 
Team, which is loaded on the Surface Hub (interactive whiteboard). Only two of the 12 edi- 
tions were made available in the retail channel: Windows 10 Home and Windows 10 Pro. 
Microsoft has made it easy for the retail consumer to pick the right edition of Windows 10, 
narrowing down retail choices to the two editions. Technically, there is a third retail edi- 
tion called Windows 10 Pro for Workstations, which is pre-installed on high-end hardware 
for high-performance computing (HPC) requirements and allows up to 4 CPUs and 6 TB 
of RAM. 

The editions available for Microsoft volume licensing options are Windows 10 Enterprise, 
Windows 10 Enterprise LTSB (Long-Term Servicing Branch), Windows 10 Education, and 
Windows 10 Pro Education. Windows 10 volume license editions include features such as 
AppLocker, BranchCache, and DirectAccess, just to name a few. Windows 10 Enterprise 
LTSB is an edition that is released every 2-3 years and is supported for 10 years after its 
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initial release. Windows 10 LTSB receives normal Windows updates for security but does 

not receive feature upgrades. The Microsoft Store and bundled apps are also omitted from 
the Windows 10 Enterprise LTSB edition. Both Windows 10 Enterprise and Windows 10 
Education editions have the same features over and above Windows 10 Pro and Windows 10 
Home editions. Windows 10 Education editions are made available only to academic institu- 
tions and K-12 schools. 








Special Features of Windows 


The 220-1002 exam requires you to know the difference between Windows editions and 
their features. Additional information is provided below on these features so that you can 
be more familiar with what each of the various features entails: 


AppLocker allows for policies to be created in Group Policy to control the access to appli- 
cations. This can be based on the program’s path, publisher, or hash. More information 
can be found at: 


https: //docs.microsoft.com/en-us/windows/security/threat-protection/ 
windows-defender-application-control/applocker/applocker-overview 


BranchCache is a Microsoft client/server technology that allows for caching of commonly 
accessed files at branch office locations. This allows for faster access of documents when 
the initial request is made. When the user saves the file, it is written to the original file 
server at the main location and locally cached for any consecutive requests. More infor- 
mation can be found at: 


https: //docs.microsoft.com/en-us/windows/deployment/update/ 
waas-branchcache 


DirectAccess provides a method of an automatic connection for a virtual private network 
(VPN) between the client and a main office. It is location-aware as well. This allows users 
who travel access to corporate resources, as if they were in the office. More information 
can be found at: 


https: //docs.microsoft.com/en-us/windows-server/remote/remote-access/ 
directaccess/directaccess 





This chapter focuses on the two retails offerings of Windows 10 Home and Windows 10 
Pro. In addition, we will compare features that only exist in Windows 10 Enterprise. 


More information on Windows 10 editions can be found at: 


‘gr https: //www.microsoft.com/en-us/windowsforbusiness/compare 
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Table 17.1 compares the features of the five domestic editions of Windows 10. 
TABLE 17.1 Windows 10 features and editions 


Maximum Maximum Physical 
RAM CPUs Supported 
Edition Supported (Multiple Cores) Notes 





Home 128 GB 2 Lacks support for Remote Desktop 
(client only), BitLocker, Windows To 
Go, Hyper-V, joining to a domain, and 
participating in Group Policy. This 
edition is strictly for consumer use. 


Pro 2 TB 2 Can join a Windows server domain, 
includes Remote Desktop Server, 
BitLocker, Windows To Go, Hyper-V, 
and participating in Group Policy 


Education 2 TB 2 Features resemble the Enterprise 
feature set. This edition is available 
only to higher education and K-12 
schools and students. 


Enterprise 6 TB 2 Includes BitLocker, support for 
domain joining and Group Policy, 
DirectAccess, AppLocker, and 
BranchCache. This edition is available 
only via volume license subscription. 


Pro for 6 TB 4 Includes all features of the Pro edition, 
Workstations with support for 6 TB of RAM and up 
to 4 physical CPUs 


There are 32-bit and 64-bit versions available for each of the editions listed except 
Windows 10 Pro for Workstations, since it is specifically used for high-performance com- 
puting (HPC). The RAM listed in the table is for the 64-bit versions. Microsoft released 
Windows 10 as a successor to Windows 8.1, with the key goals of bridging the gap for 
cloud-based services while polishing the Windows 8.1 interface. 

Windows Media Center was originally introduced with Windows XP as Windows XP 
Media Center Edition. When Windows 8/8.1 was released, Windows Media Center was 
a paid add-on to Windows 8/8.1 Pro. However, when the Windows 10 operating system 
was released, the add-on was discontinued. If you had Windows Media Center installed 
on Windows 7, or Windows 8/8.1 and you upgraded to Windows 10, the add-on would be 
removed during the upgrade. Today there are many third-party applications that provide 
similar functionality of personal video recording and video playback. 
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Windows 10 Features 


The following is a list of features introduced and associated with the Windows 10 operat- 
ing system that you should know for the exam, along with a brief description of each: 


Cortana The Cortana digital personal assistant allows you to control and search 
Windows 10 with natural speech. You can now speak to the computer—for example, “Hey 
Cortana, show me the files I worked on last night.” This allows a more natural approach 
to searching not only the local computer but also the Internet. Cortana can also be used to 
set reminders and create emails, all via speech. It should be noted that although Cortana’s 
true potential is unlocked with speech, searching with the keyboard is also supported. 
Figure 17.1 shows an example of the Cortana interface. 


FIGURE 17.1 The Cortana interface 
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Microsoft Edge The Microsoft Edge web browser has been developed as a lightweight 
web browser, as shown in Figure 17.2. Microsoft Edge is the successor to Internet Explorer 
and has already replaced Internet Explorer as the default web browser on Windows 10. 
Microsoft Edge does not support ActiveX and browser helper objects. Therefore, Internet 
Explorer will remain an alternate web browser, but no new version should be expected in 
the future. 
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FIGURE 17.2 The Microsoft Edge web browser 
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Suggest an edit 


Universal Windows Platform The Universal Windows Platform (UWP) is a development 
platform that allows for the development of applications across the various Windows 10 
platforms. A developer can now write a UWP application, and the same application can be 
compiled and run over several different platforms, such as tablets, desktops, Xbox One, 
and Surface Hub, just to mention a few. 


Action Center The Action Center in Windows 10 allows for the quick control of fea- 
tures such as VPN, Settings, and Tablet mode. The Action Center acts as an aggregation 
for social media, email, and operating system notifications. It is accessed by clicking the 
notification icon on the rightmost portion of the taskbar. The Action Center will then pop 
out as a sidebar, allowing for an at-a-glance look at all important messages, as shown in 
Figure 17.3. 


BitLocker BitLocker allows you to use drive encryption to protect files, including those 
needed for startup and login, as shown in Figure 17.4. This feature is available in all edi- 
tions of Windows 10, except for Windows 10 Home. For removable drives, BitLocker To 
Go provides the same encryption technology to help prevent unauthorized access to the files 
stored on them. BitLocker is covered in Chapter 23, “Securing Operating Systems.” 
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FIGURE 17.3 The Windows 10 Action Center 


© Windows Defender Security Center 


Virus & threat protection 


Windows Defender summary 


See fewer notifications 


B A & 


Tabletmode Netwarle All settings 


O Type here to search 





FIGURE 17.4 The BitLocker Control Panel applet 
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Task View Task View allows you to have multiple desktops that appear to be virtual ses- 
sions inside of the operating system. You are no longer limited to one desktop containing 
all of your applications. You can now set up several desktops and switch between them. 
You can even drag an application from one desktop to another. By pressing the Windows 
key + Tab, you can access the Task View window, as shown in Figure 17.5. The Task View 
is enabled on the taskbar by default on the Windows 10 operating system. If it is not dis- 
played to the right of the Cortana dialog box, you can right-click the taskbar and select 
the Show Task View button. 


FIGURE 17.5 The Task View window 

















O Type here to search a = 


Start Menu The Start menu is back in Windows 10 and has similar functionality to the 
original Windows 7 Start menu. In Windows 8, Microsoft decided to replace the Start 
menu completely with a Start Screen. In Windows 8.1, the familiar Windows Start menu 
flag appeared, but when clicked the Start Screen would appear. In Windows 10, the Start 
menu also introduced Live Tiles, which could be placed into the Start menu, to show the 
weather, sports, or any other apps installed. In addition to Live Tiles, common application 
shortcuts can be pinned in the Start menu, as shown in Figure 17.6. 
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FIGURE 17.6 The Windows 10 Start menu 
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Xbox One Content from Microsoft Xbox One can be streamed to a Windows 10 device 
or computer. This allows for the access of content as well as recording of games from the 
Windows 10 operating system. 


Spotlight The Spotlight feature displays pictures on the lock screen. You can choose vari- 
ous types of pictures to display, and they are downloaded automatically from Bing and dis- 
played when the lock screen is activated, as show in Figure 17.7. 


a You can lock the Windows Desktop several different ways, as follows: 


s OTE Press the Windows key + L. 


Press Ctrl+Alt+Delete, then choose Lock. 


Click the Start menu, then select your user icon, and click Lock. 


Defender Antivirus Windows 10 includes an antivirus and anti-malware utility that 

is built into the operating system. You can always provide your own antivirus or anti- 
malware, but the Windows Defender Antivirus allows for protection from the time that 
Windows is installed. In addition to antivirus/anti-malware, Windows Defender Antivirus 
can protect against ransomware, as shown in Figure 17.8. 
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FIGURE 17.7 The Windows 10 Lock Screen and Spotlight 
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FIGURE 17.8 Windows Defender Virus & Threat Protectio 
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Settings App The Settings app is similar to the Control Panel in functionality, because 
you can control many aspects of the operating system. However, any new feature being 
added to the Windows 10 operating system is added to the Settings app in lieu of the cre- 
ation of new Control Panel applets. At this point in time, it looks like the Control Panel 
will become a legacy component in future versions of Windows. You can access the Settings 
app by clicking the Start Menu and selecting the gear on the left-hand side. You can also 
right-click the Start Menu and select Settings from the context menu that appears. The 
Settings app is shown in Figure 17.9. 


FIGURE 17.9 The Settings app in Windows 10 
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Pinning to the Taskbar The context menu for each application allows you to choose 
whether you want to pin (add) it to the Start menu, pin it to the taskbar, or remove it if it 
is already there. You can also uninstall an application with the context menu, as shown in 
Figure 17.10. 
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FIGURE 17.10 An application context menu 
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Snap Assist Windows Snap was first introduced with Windows 7. Snap allows for side- 
by-side automatic windowing of windows on the screen. All you have to do is move a 
window over to a side, and the window will resize to half of the screen. Windows 10 intro- 
duced Snap Assist, which allows for up to four quadrants of the screen to automatically be 
adjusted using snapping. When a window is snapped over to a side, a preview in the blank 
area will show a preview of windows, so that you can choose the next window to snap (see 
Figure 17.11). 
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FIGURE 17.11 Windows Snap Assist 
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HomeGroup HomeGroup is a simplified version of file and printer sharing for SOHO 
(small office, home office) networks. It was first introduced in Windows 7 and allowed for 
easy sharing on a small network with a simple password. However, with the introduction 
of Windows 10 Version 1803, it is now removed from the operating system. 


More information about the removal of the HomeGroup feature can be 
á TE found at: 


https://support.microsoft.com/en-us/help/4091368/ 
windows-10-homegroup-removed 


Windows Hello Windows Hello is a new feature on Windows 10 that allows the user to 
sign into Windows with biometrics. Windows Hello uses the built-in camera on the laptop 
or PC so that the device can be unlocked with facial recognition. On devices with a finger- 
print reader, you can also use your fingerprint to sign into Windows. 


P Windows features are added with every version/update of the Windows 
A: 10 operating system. You can view information about upcoming features 
that Microsoft is working on with the Windows Insider program. For more 
information, visit: https: //insider.windows.com/en-us/. 
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Windows Updates 


Probably the biggest change to Windows 10 is the way updates are delivered to the operat- 
ing system. The end user no longer has the option to choose if they want to set up Windows 
Updates; they are mandatory and unavoidable. You can defer an update for up to 8 days or 
pause all updates for up to 35 days, but inevitably they will be installed. To pause Windows 
Updates. right-click the Start menu, then select Settings, Click Updates & Security, choose 
Advanced Options, and then flip the slider for Pause Updates. Figure 17.12 shows the 
advanced options. 


FIGURE 17.12 Advanced options for Windows Updates 
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Windows 10 allows you to choose the build branch of code (updates) that will be 
installed on a regular basis with automatic updates. The branches are as follows: 


Semi-Annual Channel (Targeted) This is the default servicing channel for Windows 10 
devices, with the exception of Windows 10 Enterprise LTSB. Targeted means that the 
update is ready for most people and should be tested or targeted to a group of individuals 
in your organization for testing. 


Semi-Annual Channel This option is for most organizations that have already tested the 
Semi-Annual Channel updates. It is considered for broad or widespread use and is often 
delayed by 3 to 4 months behind the targeted release. 
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Long-Term Servicing Channel Only users of the Windows 10 Enterprise LTSB Edition 
can select this channel for updates. The operating system will receive monthly updates via 
Windows Updates, but no new features will be added over the lifetime of the product. 


Insider Program The Insider Program allows you to get the latest product updates from 
Microsoft before they are available for the targeted release. You must enroll your organiza- 
tion first, and then you can enroll your device to get the latest update from the Windows 
Insider Program build channel. 


Table 17.2 details the list of the various Windows 10 editions and the options for changing 
their service update channels. 


TABLE 17.2 Windows servicing channel options 





Semi-Annual Long-Term 
Windows 10 Channel Semi-Annual Servicing 
Edition (Targeted) Channel Channel Insider Program 
Home Yes No No Yes 
Pro Yes Yes No Yes 
Enterprise Yes Yes No Yes 
Enterprise LTSB No No Yes No 
Education Yes Yes No Yes 
Po With the introduction of Windows 10 and the new Windows Update servic- 
JTE ing channels options, Microsoft has introduced the concept of Windows 


as a Service (WaaS). A deeper dive on Windows servicing channels can be 
viewed at: 


https://docs.microsoft.com/en-us/windows/deployment/update/ 
waas-overview 


Windows 10 Versions 


Now that you understand more about the Windows Update process with Windows 10, 
let’s move on to the versions of Windows 10. Windows 10 is vowed by Microsoft to be 

the last major version of the Windows operating system; however, that is only a market- 
ing statement. Although the operating system is called Windows 10, the version is actually 
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the last major semi-annual Windows Update. Using the winver.exe utility, you can see the 
actual version of the operating system, as shown in Figure 17.13. This sub-version number 
is important, since features are added and removed with each version. If you discover that 
something is not working properly, the first step is to identify the current version number 
and start tracking down what has changed with the version. 


FIGURE 17.13 Discovering your version of Windows 10 





About Windows x 


aE Windows 10 


Microsoft Windows 

Version 1803 (OS Build 17134.286) 

© 2018 Microsoft Corporation. All rights reserved. 

The Windows 10 Enterprise operating system and its user interface are 
protected by trademark and other pending or existing intellectual property 
rights in the United States and other countries/regions. 


This product is licensed under the Microsoft Software License 
Terms to: 


User 











You can access the winver.exe utility by pressing the Windows key + R, 
OTE then typing winver.exe, and then selecting OK. 


Windows versions change twice a year (semi-annually) and have done so since the 
introduction of Windows 10. They just haven’t been obvious, as they are downloaded as 
a Windows Update. The original version of Windows 10 is 1507, which was released in 
July of 2015. You may have noticed the pattern, or maybe not. The version is a date code, 
consisting of the last two digits of the year (15) and the two-digit month (07). So, it’s 
really simple to calculate when the last major update was released and what is currently 
installed. 

Versions are updated twice a year (semi-annually), usually in spring and fall. They are 
often referred to as the Windows 10 Spring Update or Windows 10 Fall Update. They also 
have a theme, such as the Fall Creator Update, which bundles content creation tools, or the 
Anniversary Update, which bundles new features. As of the writing of this book, the cur- 
rent Windows 10 version is 1803, and it was used in the development of this book. 
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Installing Windows 10 


Windows 10 has been successful in its adoption because of its meager system requirements. 
Actually, the hardware requirements are identical to Windows 8/8.1 and Windows 7, as 
shown in Table 17.3. 


TABLE 17.3 Windows 10 system requirements 





Component Requirement 

Processor 1 GHz or faster 

RAM 1 GB (32-bit) or 2 GB (64-bit) 

Hard drive space 16 GB (32-bit) or 20 GB (64-bit) 

Graphics card DirectX 9 with WDDM 1.0 or higher driver 


If you are planning to install Windows 10 on a computer, it must meet the specifica- 
tions in Table 17.3, which are pretty easy to meet or exceed. However, sometimes you’ll 
find that your organization’s computers are older than you think. To learn more about 
Windows 10 system requirements, see: https: //www.microsoft.com/en-us/windows/ 
windows-10-specifications. 








Checking Hardware Compatibility 


In the past, Microsoft published a hardware compatibility list (HCL) for Windows XP and 
prior Windows operating systems. With the introduction of Windows Vista, Microsoft 
went away from a published list of vendors in a static document. They moved to the 
Windows Catalog, which not only listed compatible hardware but also compatible 
applications. Today, we find that the list of compatible hardware and software has 
changed again, to the Windows Certified Products List. However, the best way to check 
is to verify with the manufacturer that drivers exist and the hardware is compatible with 
Windows 10. 





Sometimes you need to deploy Windows 10 to a group of computers. There are several 
tools that can be used to collect information about the hardware of the current operat- 
ing system. The easiest tool to use is the System Information utility. To access this utility, 
you simply log in, search for System Information in the Start menu, and select it. The 
System Information utility allows you to investigate the processor, RAM, hard drive, and 
video card, as well as specifics about each of the peripherals connected (see Figure 17.14). 
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You can also access the System Information by pressing Windows key + R, then typing 
ms info32.exe, and then selecting OK. 


FIGURE 17.14 The System Information utility 
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The System Information utility can also be used remotely. Select View and then Remote 
Computer from the drop-down menu, and then select the remote computer. You can also 
access the System Information utility from the command line by typing msinfo32.exe. 
The msinfo32.exe command will allow remote collection of information to a flat text file 
using the following command line: 


msinfo32.exe /computer computername /report c:\report.txt 


The msinfo32.exe command can also be used to output the information to its native 
format using the following command line: 


msinfo32.exe /computer computername /nfo c:\report.nfo 


However, this .nfo file will need to be opened with the System Information utility, 
which might be difficult if there are over 10 or so machines. 

An alternative to the System Information (msinfo32.exe) utility is the Microsoft 
Assessment and Planning Toolkit (MAP), which can be downloaded from the Microsoft 
Download Center (www.microsoft.com/downloads). The MAP Toolkit allows for the auto- 
mated inventory collection of hardware and software from the current operating systems. 
The MAP Toolkit can then produce a report from the collection of data and provide the 
administrator with the readiness of current hardware for Windows 10. The MAP Toolkit 
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requires the installation of an SQL database, which is included in the installation of the 
MAP Toolkit. The MAP Toolkit requires a dual-core 1.5 GHz processor, 2 GB of RAM, 
and a minimum of 1 GB of free hard drive space. 


Windows Installation Options 


Windows 10 can be installed as an upgrade or as a clean installation. When you choose 
Custom, you can choose whether or not to format the hard disk. If you choose not to for- 
mat the hard disk, the old operating system is placed in a folder called WINDOWS . OLD. When 
you choose to format the hard disk, it will erase your files, programs, and settings. 

When installing Windows 10, you have the option to install it on Basic Input/Output 
System (BIOS)-based hardware or Unified Extensible Firmware Interface (UEFI)-based 
hardware. The hardware must support the newer standard of UEFI to install it in this 
fashion. UEFI hardware can provide a feature called Secure Boot. Secure Boot operates 
by checking the signatures of the hardware, including the UEFI drivers (also called option 
ROMs), EFI applications, and, finally, the operating system. If the signatures are verified, 
the operating system is then handed over control of the boot process and the hardware. 

For a UEFI installation, the partitioning of the drive will be laid out like Figure 17.15. 
The Recovery partition holds a bootable copy of the Windows Recovery Environment 
(WinRE) and is roughly 500 MB in size. The EFI System Partition (ESP) is a System parti- 
tion used to hold the Boot Configuration Data (BCD) for the booting of the boot partition 
containing the Windows kernel. 


FIGURE 17.15 Windows 10 default disk layout 
























A Computer Management -= o x 
File Action View Help 

e92 m Hm A pa 

Æ Computer Management (Local Volume Layout | Type | File System | Status Capacity | Free Space | %Free | _ [Actions 





























v Ü} System Tools = (C) Simple Basic NTFS Healthy (Boot, Page File, Crash Dump, Primary Partition) 9340GB 80.72GB 81% Tek is 
Q Task Scheduler = (Disk 0 partition 2) Simple Basic Healthy (EFI System Partition) coma oms 100 |—_—( ene) 
E] Event Viewer = Recovery Simple Basic NTFS Healthy (OEM Partition) 499MB 483MB 97% More Actions » 


E] Shared Folders 
B® Local Users and Groups 
@ Performance 
dh Device Manager 
v & Storage 
1P Disk Management 
v By Services and Applications 
©; Services 
S WMI Control 


=] 


=Disk0 T |) (fe) 





Basic Recovery a) 
99.98 GB 499 MB NTFS [99 MB 99,40 GB NTFS 
Online Healthy (OEM Partition) || Healthy (EFI System Partit || Healthy (Boot, Page File, Crash Dump, Primary Partition) 


== CD-ROM 0 
DVD (D) 


No Media 











H Unallocated [lJ Primary partition 











Installing Windows 10 971 


DPO The Windows Recovery Environment (WinRE) is a bootable environment 
‘gr used by Windows for recovery of the operating system. It will be 
discussed further in Chapter 24,” Troubleshooting Operating Systems 
and Security.” 


The Installation Process 


The installation of Windows 10 is almost identical to the installation of Windows 8/8.1 
and Windows 7. For that matter, it is similar to most operating systems, such as macOS 
or Linux. There are several common elements during the setup process that must be 
addressed, such as locale and where to install the operating system. 

The installation of Windows 10 can be performed from a Windows 10 installation 
DVD-ROM. Universal Serial Bus (USB) installation media is created with the Windows 10 
Media Creation Tool, which can be downloaded from: 


https: //www.microsoft.com/en-gb/software-download/windows10 


media. Starting with Windows Vista, the size of every Windows release has 
grown and required DVD media for the installation. Blu-ray is an objective 
for the 220-1002 exam. However, it is not common to burn the operating 
system to a Blu-ray Disc and install from it. This is because the installation 
media for Windows 10 is 4.5 GB in size, and a Blu-ray Disc can hold 50 GB 
of data. If burnt to a Blu-ray Disc and you use the appropriate Blu-ray 
player, Windows 10 can be installed from Blu-ray. 


~<a Windows XP was the last operating system to support CD-ROM installation 
á TE 


If you are performing an upgrade from within another operating system and the instal- 
lation does not begin immediately, look for the setup.exe file and run it. The following 
example shows the setup of Windows 10 with physical media for a clean installation: 

1. Start by booting the computer and directing it to boot from the physical media. 
Each computer will have a different way of entering the one-time boot menu, such as 
pressing the F12 key or Esc key, or sometimes by initiating it from the BIOS. 

2. After the media is selected and detected, it may ask you to press a key to continue with 
the setup of the media. 


Once it boots, you will see the initial setup screen displayed in Figure 17.16. 


3. Inthe Windows Setup dialog box, select the language for the installation to continue in 
as well as the format of the keyboard or input method; these are often referred to as the 
locale. 
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FIGURE 17.16 Windows Setup dialog box 
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Once the locale is set, a dialog box will present you with three options to proceed, as 
shown in Figure 17.17: 


= The first option is the most obvious: to install the operating system. 


= The second option is to enter into recovery mode by selecting Repair Your 
Computer. 


= The third option is less obvious: to exit the installation by pressing the X in the 
upper-right corner of the dialog box. 


4. Select Install Now. 
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You will be asked which version of operating system you want to install, as shown in 
Figure 17.18. 


FIGURE 17.17 Windows 10 setup options 
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FIGURE 17.18 Windows 10 edition selection 
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5. Select to install only the operating system for which you have a valid license key for 
activation, since you cannot change editions later without a complete reinstallation of 
the operating system. 


You can install Windows 10 without the product key. However, you will 
‘i need to activate Windows 10 with a valid 25-digit product key to allow 
personal customization, such as wallpaper and Start menu settings. 
Windows 10 installs into reduced functionality mode (RFM). \f you don’t 
enter a product key, RFM will eventually nag you by displaying an 
“Activate Windows” message in the lower-right corner of the Desktop. 


After selecting the edition, you will be prompted with the end-user license agreement 
(EULA), as shown in Figure 17.19. 


6. To continue, check the “I accept the license terms” box, and then click Next. 


FIGURE 17.19 Windows 10 end-user license agreement 
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After the EULA dialog box, you will be presented with a dialog box asking which type 
of installation you want. There are two options, as shown in Figure 17.20. 
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FIGURE 17.20 Windows installation options 
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Upgrade: Install Windows and keep files, settings, and applications 
The files, settings, and applications are moved to Windows with this option. This option is only 
available when a supported version of Windows is already running on the computer. 











Custom: Install Windows only (advanced) 

The files, settings, and applications aren't moved to Windows with this option. If you want to 
make changes to partitions and drives, start the computer using the installation disc. We 
recommend backing up your files before you continue. 


1 Collecting information 2 Installing Windows 





Upgrade If you choose Upgrade: Install Windows and Keep Files, Settings, and 
Applications, then you must have a compatible version of Windows for the upgrade 
(as we'll discuss in the next section). When you choose this option, it will upgrade the 
current operating system to Windows 10 and place the old operating system in the 
C:\WINDOWS.OLD folder. You have 30 days to roll back to the prior operating system, 
if you do not want to keep Windows 10. 


Custom If you choose the Custom: Install Windows Only (Advanced) option, you 
can perform a clean installation of Windows, meaning that the drive will be wiped 
clean. Always remember that a custom means a clean installation with Windows. 


7. Choose Custom: Install Windows Only (Advanced). This is also known as a clean 
installation, because it will format the installation drive. 


The next dialog box will ask where we want to install the new operating system. This 
dialog box will allow you to delete, create, and extend partitions. However, most of 
the time if a partition exists and you are not upgrading, then deleting the existing par- 
titions is the most common task. In rare instances where no drives show up, you may 
need to install custom drivers specified by the vendor. That task can be performed from 
this dialog box as well, by selecting Load Driver, as shown in Figure 17.21. 
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FIGURE 17.21 Windows installation partitioning 


(E) Gj Windows Setup 


Where do you want to install Windows? 





Neme Totalsize Free space Type 





Drive 0 Unallocated Space 60.0 GB 60.0 GB 





a 





fp Refresh PA Delete 


@ Load driver at Extend 





1 Collecting information 2 Installing Windows 


8. Select the drive for the installation of Windows 10, and then click Next. 


Once you have gone past this point, there is no going back. The Windows installation 
will begin, as shown in Figure 17.22. 


This is where the filesystem is formatted, the boot files are copied, and the operating 
system’s files are applied to the disk. After this stage completes, the files are on the hard 
drive, but the operating system is not generalized to your computer; that happens in the 
next boot. After the computer reboots, it will detect hardware and run through what is 
called a generalize pass. The dialog will flash by that device drivers are being detected 
along with a percentage, and then it will display a Getting Ready screen, as shown in 
Figure 17.23. This is the point where the operating system is adjusting itself to the com- 
puter hardware. 
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FIGURE 17.22 Windows 10 installation progress 


Gj Windows Setup 


Installing Windows 


Status 


Getting files ready for installation (0%) 
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FIGURE 17.23 Windows 10 Getting ready 


Getting ready 
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Once the drivers are detected, the operating system will reboot again. During this 
boot, the drivers detected in the prior stage will be instantiated and the specialize pass 
will begin. In this pass, the locale (region) of the operating system will be chosen, as 
well as the keyboard layout. You can even choose a second keyboard layout, in the case 
of switching a keyboard out. 


9. Confirm the region by clicking the Yes button, as shown in Figure 17.24. 


FIGURE 17.24 Operating system locale (region) setting 


Let's start with region. Is this right? 


U.S, Minor Outlying Islands 


U.S. Virgin Islands 


Uganda 


Ukraine 


United Arab Emirates 





10. Confirm the keyboard layout by clicking the Yes button, as shown in Figure 17.25. 
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FIGURE 17.25 Operating system keyboard layout setting 


Is this the right keyboard layout? 


If you also use another keyboard layout, you can add that next. 


Canadian Multilingual Standard 


English (India) 


Irish 


Scottish Gaelic 


United Kingdom 


United States-Dvorak 





The next set of dialog boxes sets up the first user account as well as the first 
administrator of the operating system. This is considered the OOBE pass, or the 
out-of-box experience pass, where the first account is set up for the operating system. 
You have the choice of logging in with a Microsoft account. This is great if you have 
the account combined with an Office 365 subscription, since the licensing of the Office 
products are all streamlined when performing a login of this nature. If you want to 
create a local user account, you can select Domain Join Instead from the dialog box, as 
shown in Figure 17.26. 
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FIGURE 17.26 Sign in with a Microsoft account 


11. 





aa Sign in with Microsoft 


Work or school account 


someone@example.com 


Which account should | use? 


Sign in with the username and password you use with Office 365 or other business services 
from Microsoft. 


Domain join instead Privacy & cookies Terms of use 


In this example we will install using a local user, by selecting the Domain Join 
Instead option. 


This option will take you to the familiar dialog box shown in Figure 17.27, where you 
can specify a user account. Although Domain Join Instead option specifies that you are 
going to join a domain, you are not forced to join a domain. You can continue to use 
the operating system in a stand-alone fashion using the account you specify here. If you 
still want to use an online account, select the lower-left corner of the dialog box Or, 
Even Better, Use An Online Account. 
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FIGURE 17.27 Create a local account 


Who's going to use this PC? 


What name do you want to use? 


Or, even better, use an online account 





12. Type in the username of the account you want as the administrator account and 
select Next. 


Of course, you need to protect your new account with a password. Figure 17.28 shows 


the password-input dialog box and the option to still use an online account in the 
lower-left corner. 
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FIGURE 17.28 Password dialog box 


Create a super memorable password 


Make sure to pick something you'll absolutely remember. 


Password 


Or, even better, use an online account 





13. Enter your password and select Next, then enter it a second time and select Next again. 


This is more for memorization and to make sure you didn’t mistype your password. 
You'll then be required to choose three security questions. This is for password recov- 
ery in the future, if you forget your password. 


14. Enter your answers, as shown in Figure 17.29. 
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FIGURE 17.29 Password recovery security questions 


Create security questions for this account 


Just in case you forget your password, choose 3 security questions, and make sure your answers are unforgettable. 


What was your childhood nickname? 


Or, even better, use an online account 





The password recovery for Windows 10 is pretty simple. At the initial login 

TE screen, if the password is entered incorrectly, Reset Password will show 
up. Answering the security questions will allow you to reset the password. 
In the event that you don’t remember your password and the security 


questions, then resetting the operating system will be required. More 
information can be viewed at: 


https: //support.microsoft.com/en-us/help/4028457/ 
windows-10-reset-your-local-account-password 


You then have the choice to use Cortana as your personal assistant, as shown in 
Figure 17.30. This can always be changed later. 


15. Select Yes, to make Cortana your personal assistant. 


The next dialog box offers what are known as telemetry options (see Figure 17.31). 


FIGURE 17.31 
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FIGURE 17.30 Windows Cortana options 


Make Cortana your personal assistant? 


Hey look, that’s me, Cortana! 
Can | have permission to use the info | need to do my best work? 


To let Cortana provide personalized experiences and relevant suggestions in Microsoft products that offer Cortana experiences, including this 
device when your device is locked, Microsoft collects and uses information including your location and location history, voice input, speech 
patterns, contacts, searching history, relationships, calendar details, email, content and communication history from text messages, instant 
messages and apps, and other information on your device. In Microsoft Edge, Cortana uses your browsing history. 


o Let Cortana respond to “Hey Cortana” 


Learn more 





Windows telemetry options 


Choose privacy settings for your device 


Microsoft puts you in control of your privacy. Choose your settings, then select ‘Accept’ to save them. You can change these settings at any 


Speech recognition 

Talk to Cortana and other apps that support cloud-based voice 
recognition. Send Microsoft your voice input to help improve our 
speech services. 


Coe Use speech recognition 


Find my device 

Tum on Find my device and use your device's location data to help 
you find your device if you lose it. You must sign in to Windows with 
your Microsoft account to use this feature. 


€D ve: 


Inking & typing 

Send inking and typing data to Microsoft to improve the language 
recognition and suggestion capabilities of apps and services running 
on Windows. 


m Yes 


time. 


Location 

Get location-based experiences like directions and weather. Let 
Windows and apps request your location and allow Microsoft to use 
your location data to improve our location services. 


me Yes 


Diagnostic data 

Send all Basic diagnostic data, along with info about the websites you 
browse and how you use apps and features, plus additional info about 
device health, device usage, and enhanced error reporting. 


oe ful 


Tailored experiences 

Let Microsoft offer you tailored experiences based on the diagnostic 
data you have chosen (either Basic or Full). Tailored experiences mean 
personalized tips, offers, and recommendations to enhance Microsoft 
products and services for your needs. 

a 


Learn more 
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16. Choose the level of privacy on the device as well as features like speech recognition, 
which is a type of privacy, since your speech will be transmitted to Microsoft’s cloud. 
Once you have made your selection, click Accept to continue. 

At this step of the installation, it may look like nothing is happening, but a lot is going 
on in the background. The installation process is actually creating your user account 
and copying the default profile over to your new account. While this happens in the 
background, you will see the screen shown in Figure 17.32. 


FIGURE 17.32 Default profile setup 


Almost done now. We just need to get a few more things polished up for you, and 


Windows will be all yours. Looking forward to helping out! 





At this point, you are pretty much done. The next screen you will see is the familiar 
Windows 10 Desktop. 

Throughout the entire setup, you were never asked for your time zone and the computer 
name. Both of these are automatically populated during the installation: The computer 
name is randomly selected, and the time zone is automatically calculated based on your IP 
address. You can change the computer name as follows: 


1. Right-click the Start menu. 
2. Select System. 
3. Select Rename This PC, as shown in Figure 17.33. 
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FIGURE 17.33 Rename This PC in the Settings app 





Settings = 
a Hom? About 
Find a setting Your PC is monitored and protected. 
System © Virus & Threat Protection 
© Firewall & Network Protection 
© Displ: 
pay @ Device performance & Health 
d) Sound © App & browser control 
A Account protection 
C1 Notifications & actions Bosena 


D Focus assist See details in Windows Defender 


© Power & sleep 


= Storage Device specifications 

[Tablet mode Devicename DESKTOP-NISNDT3 
Processor AMD FX(tm)-9370 Eight-Core Processor 

Hi Multitasking 4.42 GHz 
Installed RAM 4.00 GB 

Æ Projecting to this PC Device ID 632A6E87-4EB2-4319-GEB4-514A8815C738 
Product ID 00329-00000-00003-AA306 

Æ% Shared experiences System type 64-bit operating system, x64-based processor 


Pen andtouch No pen or touch input is available for this display 
>< Remote Desktop 
Rename this PC 
© About 








To manually adjust the time, perform the following steps: 
1. Right-click the clock in the lower-right corner of the Desktop. 
2. Select Adjust Date/Time. 


This will open the Date & Time dialog box, as shown in Figure 17.34. 
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FIGURE 17.34 Date & Time dialog box 








Settings - O X 
Ñ Home Date & time 
Le. 
Find a setting p Date and time 
Time & Language 10:38 PM, Thursday, November 8, 2018 
1 @ Date & time Set time automatically 
@D of 
a® Region & language 
Set time zone automatically 
Q Speech @ off 
Change date and time 
Change 
Time zone 








(UTC-05:00) Eastern Time (US & Canada) 








Adjust for daylight saving time automatically 
€D on 


Show additional calendars in the taskbar 





| Don't show additional calendars 





Formats 


First day of week: Sunday 
Short date: 0 
Lann data: Ihuredau Navamhar 2 IMO 

















3. Turn off Set Time Automatically if you want to change the time. Or if you want to 
change the time zone, then you must turn off Set Time Zone Automatically. 


P The preceding installation was based on the current version of Windows 10 
Pn version 1803. Although each version will introduce new dialog boxes and 
features, the basic setup has not changed. New features may be introduced 
to the setup process in future versions. For example, the password 
recovery was not included in the original release. 


Upgrading to Windows 10 


If you want to do an upgrade instead of a clean installation, review the recommended 
upgrade options in Table 17.4. This is a major change from prior upgrade paths, where 
there were specific restrictions. If you upgrade from Windows 7 Starter to Windows 10 
Pro, you’ll need to provide the new activation key for the higher edition. Although you can 
switch editions during an upgrade, it is recommended that you use like-to-like editions of 
Windows. A like-to-like edition is an edition with similar functionality, such as Windows 
7 Home Premium to Windows 10 Home, or Windows 7 Professional to Windows 10 
Professional. 
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TABLE 17.4 Windows 10 recommended upgrade options 





Windows 10 Windows 10 Windows 10 
Existing Operating System Home Pro Education 
Windows 7 Starter Yes No No 
Windows 7 Home Basic Yes No No 
Windows 7 Home Premium Yes No No 
Windows 8/8.1 Home Basic Yes No No 
Windows 7 Professional No Yes No 
Windows 7 Ultimate No Yes No 
Windows 8/8.1 Education No Yes Yes 
Windows 8/8.1 Pro No Yes No 


There are some prerequisites when performing an upgrade to Windows 10 in which you 
want to retain settings and applications. The first prerequisite is that you must have at least 
Windows 7 with Service Pack 1 installed. So if you have Vista installed, you would need to 
first perform an in-place upgrade to Windows 7 SP1. Then you could perform an in-place 
upgrade to Windows 10. An in-place upgrade is an upgrade in which you upgrade the 
current operating system to the desired version. 


Po More information about edition upgrades for Windows 10 can be found at: 
ITE 


https: //support.microsoft.com/en-us/help/12384/ 
windows-10-upgrading-home-to-pro 


It is also recommended to upgrade Windows 8 to Windows 8.1 before upgrading to 
Windows 10, but it is not a strict requirement. It is always recommended to have the high- 
est level of service pack or edition prior to performing and upgrade. It minimizes problems 
later, during the upgrade process. 

Another major restriction is that you cannot switch architecture during an in-place 
upgrade. If you have a 32-bit installation of Windows, then you will need to upgrade to a 
32-bit version of Windows 10. You can switch architectures only when performing a clean 
installation, in which the old operating system is overwritten. This means that you must 
back up and restore settings, files, and applications. However, the advantages of upgrading 
to a 64-bit version may out-weigh the bothersome process of reinstalling the applications. 
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It is always recommended to have a backup of your installation before you begin upgrad- 
ing. It is equally important to check the application compatibility before upgrading. You 
should always check with the vendor of the application prior to upgrading to make sure 
they support Windows 10. An upgrade of the application may be required, or a completely 
new version of the application may be required. 

In addition to checking application compatibility prior to upgrading, you should check 
the hardware compatibility. Most of the time, a simple upgraded driver is required; how- 
ever, sometimes you will find that the hardware is not compatible and new hardware 
is required. In rare instances, the PC hardware is just not compatible and a new PC is 
required. However, this is usually the case with laptops, since components are not easily 
upgradable or upgrades are impossible. So do your homework prior to upgrading and know 
what to expect after the upgrade process is complete. 

Now let’s take a look at the in-place upgrade process for a Windows 7 operating sys- 
tem to Windows 10. Start by inserting the Windows 10 media and launching setup.exe. 
This will require answering a User Access Control (UAC) prompt. When the setup process 
starts, it will ask to update the current operating system first, as shown in Figure 17.35. 


FIGURE 17.35 Windows 10 update dialog box 


Get important updates 


© Download and install updates (recommended) 


@ Not right now 





The next dialog box will ask which edition of Windows 10 you want to upgrade to (see 
Figure 17.36). 
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FIGURE 17.36 Windows 10 edition choice dialog box 


© Windows 10 Setup 


Select Image 


e nt to inst. 


Operating System: Language: 
Windows 10 Enterprise N en-US 
Windows 10 Pro N en-US 
‘Windows 10 Pro Education en-US 


Windows 10 Pro Education N en-US 
Windows 10 Pro for Workstations en-US 


uy Dea st Ene WA tnctenten tin n anue 





Before proceeding at this point, you must accept the end-user license agreement (EULA) 
also known as the license terms, as shown in Figure 17.37. 


FIGURE 17.37 Windows 10 end-user license agreement 


S Windows 10 Setup 


Applicable notices and license terms 


Please read this s 


four use of this software is subject to the terms and conditions of the license agreement by 
which you acquired this software. If you are a volume license customer, use of this software 
is subject to your volume license agreement. You may not use this software if you have not 
validly acquired a license for the software from Microsoft or its licensed distributors. 





A summary screen will appear to confirm your choices before you commit the in-place 
upgrade, as shown in Figure 17.38. 
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FIGURE 17.38 Windows 10 upgrade confirmation 


wi Windows 10 Setup 





D5 


The upgrade process will begin, and you will see the familiar progress percentage in the 
upper-left corner of the screen, as shown in Figure 17.39. The computer will reboot, and the 
Windows 10 setup will continue with a different progress screen, as shown in Figure 17.40. 
The computer will reboot several times during this process. As mentioned in the coverage 
of the initial installation process, device drivers will be detected; a reboot is required for 
the drivers to be properly loaded and instantiated. 


FIGURE 17.39 Windows 10 upgrade percentage 
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FIGURE 17.40 Windows 10 upgrade percentage after reboot 


settings (privacy), as shown in Figure 17.41. 


FIGURE 17.41 


The last part of the in-place upgrade process is to allow the user to select the telemetry 


Windows 10 telemetry settings 


Choose privacy settings for your device 


Microsoft puts you in control of your privacy. Choose your settings, then select ‘Accept’ to save them. You can change these settings at any 


Speech recognition 

Talk to Cortana and other apps that support cloud-based voice 
recognition. Send Microsoft your voice input to help improve our 
speech services. 


o n. Use speech recognition 


Find my device 

Turn on Find my device and use your device's location data to help 
you find your device if you lose it. You must sign in to Windows with 
your Microsoft account to use this feature. 


CD ves 


Inking & typing 

Send inking and typing data to osoft to improve the language 
recognition and suggestion capabilities of apps and services running 
on Windows. 


me yes 


time. 


Location 

Get location-based experiences like directions and weather. Let 
Windows and apps request your location and allow Microsoft to use 
your location data to improve our location services. 


@ vss 


Diagnostic data 

Send all Basic diagnostic data, along with info about the websites you 
browse and how you use apps and features, plus additional info about 
device health, device usage, and enhanced error reporting. 


ow fu 


Tailored experiences 

Let Microsoft offer yku tailored experiences based on the diagnostic 
data you have chosen (either Basic or Full). Tailored experiences mean 
personalized tips, offers, and recommendations to enhance Microsoft 
products and services for your needs. 

„i 


Learn more 
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Repair Installation 


A repair installation is used when you want to reinstall the operating system without losing 
personal data files, application settings, or applications installed. The installation is similar 
to an upgrade, as described in the prior section, except that Windows 10 will detect that it 
is installed already. You will be presented with an option to Keep Personal Files and Apps. 
The setup process will then reinstall the operating system without affecting your personal 
files, applications, and their corresponding settings. It will, however, reinstall the operating 
system files, so it is considered a repair installation. 

Another option for reinstalling Windows 10 is to reset the operating system with the 
Reset This PC option. This option is used to reset the operating system back to its original 
state. It provides another way to fix the operating system when it looks to be corrupted. 
This method should be used as a last resort. It does allow you the choice to keep personal 
files or completely erase them along with the operating system. You can reset the operating 
system with the Reset This PC option by clicking Start, then click the Settings gear, click 
Update & Security, then click Recovery, then choose the Get Started option under the 
Reset this PC heading. 


P Microsoft is constantly changing Windows 10 settings and options. In 
Pn recent versions of Windows 10, the option to refresh the operating system 
is gone from the Setting App. However, once the Reset This PC option is 
selected, you will be given the choice to keep personal files or delete them. 
This choice is the main difference between a reset and a refresh. 


Side-by-Side Upgrading Windows 10 


Side-by-side upgrades require additional hardware, since the original operating system 
will not be modified during the upgrade. The new hardware will be the hardware that 
is installed from scratch with Windows 10. The user setting and user data will then be 
migrated over from the prior operating system to the new system. 

Side-by-side upgrades are the best way to upgrade when you need to upgrade a system 
but the current system is in use. When dealing with one system, side-by-side upgrades are 
great because you don’t have to worry about backups of the operating system. However, 
applications must be reinstalled, so it does have its disadvantages. When multiple systems 
require upgrading, a rolling upgrade can be performed. A rolling upgrade is a variation on 
the side-by-side upgrade that allows the decommissioned equipment to be used to upgrade 
the next person, and this creates a cycle. In other words, as you complete the upgrade of 
one user, their old system becomes the next person’s new system, and the process continues 
until you get to the last person. 

There is only one method of migrating user data with Windows 10, and that is per- 
formed using the Microsoft Windows User State Migration Tool (USMT). The USMT 
allows you to migrate user file settings related to the applications, Desktop configuration, 
and accounts from one computer to another computer. The migration can be performed via 
a network connection or a hard drive. USMT version 10.0 is compatible with Windows 10, 
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but it is currently available only as part of the Windows 10 Assessment and Deployment Kit 
(ADK). Although the USMT is not part of the CompTIA objectives for the 220-1002 exam, 
it is important know that a tool like the USMT exists, because the migration of user infor- 
mation is a component of an upgrade. 


PP Additional information about the USMT can be found at: 


Oo https: //docs.microsoft.com/en-us/windows/deployment/usmt/ 
usmt-what-does-usmt-migrate 


Using the USMT requires an investment of time. If you are only performing a few side- 
by-side upgrades, you could alternately copy the user’s profile directory manually. Then, 
when the new computer is ready, you could copy the various folders over, such as videos, 
pictures, and documents, to name a few. 


ity. You simply connected a cable between two computers, and the pro- 
gram would transfer files and folders. In Windows 10, the WET utility has 
been deprecated. More information can be found at: 


~<a Prior editions of Windows included the Windows Easy Transfer (WET) util- 
TE 


https: //support.microsoft.com/en-us/help/4026265/ 
windows-windows-easy-transfer-is-not-available-in-windows-10 


To learn about WET with earlier versions of Windows, visit: 


https: //docs.microsoft.com/en-us/previous-versions/ 
technet-magazine/ff943667 (v=msdn.10) 


Upgrading Editions of Windows 10 


Windows 10 has the ability to upgrade at any time from one edition of the operating system 
to a higher one (for example, from Windows 10 Home to Windows 10 Pro). This can eas- 
ily be accomplished by entering the appropriate activation product key. You can access the 
activation menu by clicking the Start menu, typing Activation , then clicking the Activation 
shortcut. You can only upgrade editions; downgrading of retail editions is not supported. 
However, downgrading of volume license editions, such as Windows 10 Enterprise to 
Windows 10 Pro, is supported. Downgrading of Windows 10 Education to Windows 10 
Pro is also supported. 


Installation/Upgrade Boot Options 


You can begin the installation or upgrade process by booting from a number of sources. 
There are three sources in particular with which you should be familiar: optical disc 
(CD-ROM/DVD), USB flash drive, and network boot (PXE). The one most commonly 
used for an attended installation is the CD-ROM/DVD boot. (They are identical in 
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functionality.) Because Windows 10 only comes on DVD, though, the CD-ROM option 
applies to older operating systems, not this one. 

You can boot a PC over the network (rather than from a DVD, USB, or hard disk) with 
Windows Preinstallation Environment (WinPE), which is a stub operating system that cre- 
ates a Pre-boot Execution Environment (PXE). A stub operating system is characterized 
as a scaled-down version of the primary operating system. A stub operating system usually 
has basic functionality to perform a basic task, such as the installation of the Windows 
operating system. 


PP The 220-1002 exam lists the objective of External drive/flash drive (USB/ 

A: eSATA). In addition to the primary three methods mentioned previously, you 
can install the Windows operating system via an external drive. When used 
in this fashion, it is identical to a USB installation. Also, many External Serial 
Advanced Technology Attachment (eSATA) ports perform a dual function, 
acting as both a way to connect an external SATA drive and a USB port. 


Booting the Windows 10 
Operating System 


Windows 10 is commonly booted from an internal fixed disk, such as a conventional hard 
disk drive (HDD) or solid-state drive (SSD). You should know how to recognize common 
problems with the operating system and make certain it is booting correctly. 


Multiboot Installations 


Windows 10 can be installed in a multiboot installation, in which several other operating 
systems coexist on the same physical computer. When this installation scenario exists, the 
operating systems are installed on separate partitions. The Windows Boot Manager man- 
ages how the partition is booted, and the proper operating system is booted by default. We 
will discuss the Windows Boot Manager further in this section. 

The rule of thumb when creating a multiboot installation is that the oldest operating sys- 
tem is installed first, and then the newer operating system. The newer operating system will 
better understand how to boot the older operating system. If Windows 10 were installed 
first and then Windows 8, the Windows 8 installer might not know how to address the 
Windows 10 partition for booting. 

You can choose the default operating system from either the Startup and Recovery 
option in the System Properties dialog box, as shown in Figure 17.42, or the Boot tab in the 
System Configuration utility (msconfig.exe), as shown in Figure 17.43. The Startup and 
Recovery option can be accessed by clicking the Start menu, then typing System and then 
select System (Control Panel) from the results, click Advanced system settings on the left 
side, finally click Settings under the Startup and Recovery section. 
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FIGURE 17.42 Windows 10 Startup and Recovery in the System Properties dialog box 





System Properties 





Computer Name Hardware Advanced System Protection Remote 


You must be logged on as an Administrator to make most of these changes. 





Le Performance Startup and Recovery x 
Visual effects, processor scheduling, memory usage. and virtual 
System startup 
Default operating system: 
apni Windows 10 v 
Desktop settings related to your signin 
Time to display list of operating systems: 30 








= seconds 


C Time to display recovery options when needed: 30 seconds 
Startup and Recovery 


System startup. system failure, and debugging infomation 
System failure 

M Write an event to the system log 
Environment Automatically restart 

Write debugging information 


‘Automatic memory dump 





Dump file: 
‘%SystemRoot%\MEMORY.DMP 














© Overwrite any existing file 


[Disable automatic deletion of memory dumps when disk space is low 


[a] en 











FIGURE 17.43 Windows 10 Boot tab in the msconfig utility 
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Windows 10 Boot Process 


Windows 10 supports both UEFI Secure Boot, standard UEFI, and BIOS Windows boot- 
ing. When Secure Boot is enabled, the entire boot process, from the point the UEFI BIOS 
loads to the handover of control to the operating system is checked against prior established 
signatures. This eliminates the possibility of a bootkit or rootkit from being installed with- 
out the operator’s knowledge. 

Regardless of whether you are using Secure Boot or standard booting, Windows 10 uses 
the same files to start the operating system boot process. Each of the files performs specific 
tasks during the boot process. Other than Windows 10’s Secure Boot capabilities, the boot 
process is identical to that of Windows Vista, Windows 7, and Windows 8/8.1. Important 
boot files are discussed next, in the order in which they load: 


Windows Boot Manager The Windows Boot Manager (bootmgr) bootstraps the system. 
In other words, this file starts the loading of an operating system on the computer. 


BCD The Boot Configuration Data (BCD) holds information about operating systems 
installed on the computer, such as the location of the operating system files. 


winload.exe The Windows 10 boot loader calls for winload.exe, which, in turn, loads 
the operating system kernel (ntoskrnl.exe). 


winresume.exe If the system is not starting fresh but resuming a previous session, then 
winresume.exe is called by the BOOTMGR. 


ntoskrnl.exe ntoskrnl.exe is the Windows operating system executive kernel that is 
responsible for core services for the operating system. 


System Files In addition to the previously listed files, Windows needs a number of files 
from its system folders (for example, SYSTEM and SYSTEM32), such as the hardware abstrac- 
tion layer (hal.dll), session manager (smss.exe), user session (winlogon.exe), and security 
subsystem (lsass.exe). 


The boot configuration data (BCD) is stored in the EFI System Partition, as shown in 
Figure 17.44. The BCD is used by the Windows Boot Manager to direct from where the 
Windows operating system should be loaded. This partition is not accessible from the 
operating system by default. The exact location of the BCD is in the folder structure of 
\EFI\MICROSOFT\BOOT\BCD on the EFI System Partition. Exercise 17.1 shows how to view 
the Boot Configuration Data (BCD) and how the BCD is used by Windows to perform 
various functions. 
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FIGURE 17.44 Windows 10 disk layout 
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Viewing the Boot Configuration Data 

1. Click the Start menu and type cmd. 

2. Right-click Command Prompt from the results and select Run as Administrator. 
3. Answer Yes to the User Account Control prompt. 
4 


Type bcdedit /? and look at the various options for editing the boot configuration 
data. 


5. Type bcdedit /enum and record the setting under the Windows Boot Manager 
heading. 


6. Click the Start menu and type memory. 


7. Select Windows Memory Diagnostic. When it opens, select Check for Problems the 
Next Time | Start My Computer. 


8. Return to the command prompt and type bededit /enum. 


9. Compare the setting under the Windows Boot Manager heading and note what has 
been added under the bootsequence setting. 


10. Reboot your computer. It will automatically be directed to boot to the Windows 
Memory Diagnostic utility via the boot configuration data. 
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11. Escape out of the Windows Memory Diagnostic utility by pressing the Esc key. 
12. When Windows 10 restarts and you log in, click the Start menu and type cmd. 
13. Right-click Command Prompt from the results and select Run as Administrator. 
14. Answer Yes to the User Account Control prompt. 


15. Type bcdedit /enum and review the setting under the Windows Boot Manager 
heading. Note that the bootsequence setting is now gone. 


PP For detailed information about the various boot options and an overview 
PN on the Boot Configuration Data (BCD), visit: 


https://docs.microsoft.com/en-us/windows-hardware/drivers/ 
devtest/boot-options-in-windows#boot-configuration-data 


Windows Applications 


An operating system without any applications installed on it isn’t very useful. Even back when 
Windows 1.0 was released 30 years ago, it came with applications, such as Minesweeper, a 
file manager, and a simple word processor. In this section, we will explore installing applica- 
tions for Windows 10. However, these concepts can be applied to any operating system. 


Application Requirements 


Before installing an application, you must collect information on the requirements of the 
application to make sure that your system can satisfy the requirements. If your system 
cannot satisfy the requirements for the application, you may have to upgrade the system. 
You can find application requirements on the vendor’s website. For example, if you need 
to install the Microsoft Power BI Desktop application, you would search Microsoft’s site 
to find the system requirements for this particular application. The documentation would 
reveal several different requirements, such as the following: 


Memory The most common requirement that needs to be met before installing an appli- 
cation is the memory requirement. Memory is often displayed in the form of total random 
access memory (RAM) for the operating system. 


CPU The requirement for the central processing unit (CPU) required for an application is 
often displayed in the form of total CPU processing power of the system. It is often expressed 
in the form of GHz, and other requirements can include: physical number of CPUs, the num- 
ber of cores, the architecture (32-bit or 64-bit), and even the model of processor. 


Storage The requirement for the storage is often displayed in GB or TB, depending on 
the application. The storage requirement is often the free space required to install the 
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application. However, some software packages that require the storage of user data also 
display a separate storage requirement for the data. 


Prerequisites A common prerequisite to install an application might be a specific version 
of .NET framework. However, some applications have specific prerequisite requirements, 
such as a Microsoft SQL server for data storage. 


Display When data is to be displayed in a specific format, the application designer has 
formatted the application to a minimum display area. This requirement is often in the form 
of pixels, such as 1024 x 768. Although pixels are the most common display requirement, 
another type of requirement is a graphics processing unit (GPU). A specific GPU may be 
required if the application will process video or graphics. 


Other In addition to the common requirements, other requirements must be met before 
an application can be installed. The operating system requirement is one such requirement. 
Every application will have a minimum operating system on which it can be installed and 
supported. Other requirements can be for specific hardware, licensing, or drivers. 








E Real World Scenario 


Additional Applications Requirement Considerations 


When an application’s requirements are published, they are the bare minimum require- 
ments, not the optimal recommended specifications. The requirements are a conserva- 
tive estimate, so that a potential customer is not scared away with expensive hardware 
upgrades. When extremely low requirements are advertised, we always recommend call- 
ing a presales support person. You should describe how the application will be used and 
seek their recommendations for optimizing the application’s performance. You will often 
find that they are double or triple the advertised bare minimum requirements. 


Storage is probably the biggest consideration when evaluating the installation of an 
application that will store user data. It is extremely difficult to gauge how much storage 
should be set aside for the application for user data. If too much storage is allocated, 

the precious commodity might go unused for the life of the application. If too little is 
allocated, you may have to upgrade the storage—or, worse, you could fill the entire drive 
up and be forced to do it in a panic. 


Operating system compatibility is a consideration for older applications that are still 
required by organizations. Application compatibility has been incorporated into the 
Windows operating system since Windows XP. It allows for an application to behave as 
though the operating system was an older operating system. For example, over the years, 
Windows has become more restrictive of local permissions on the filesystem. If an appli- 
cation that was written for an older operating system expects to write to a Registry key, 
application compatibility will allow it to think it’s directly writing to the location. Filesys- 
tem permissions are covered in Chapter 23, “Securing Operating Systems.” 
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The Application Compatibility Toolkit (ACT) is a tool that enables you to 
OTE resolve compatibility issues with applications. The ACT can help an admin- 
istrator create a compatibility shim to allow legacy applications to run as if 
they ran on the supported operating system. The compatibility shim that 

is created with the ACT can then be deployed to an entire network of work- 
stations. You can download the ACT from Microsoft. More information can 
be found at: 


N 


https://docs.microsoft.com/en-us/windows/deployment/planning/ 
act-technical-reference 


Application Installation 


Once the requirements are met for an application and the considerations are investigated, 
you are ready to install the application. You must now consider how the application will 
be installed; the number of machines on which the application will be installed will factor 
into this consideration. This section discusses several different ways that an application 
can be installed. 


Optical Disk 


If the installation is a one-off installation, then a CD/DVD drive might be your best option. 
In recent years, applications have even been shipped on Blu-ray media. If you must install 
the application on several different PCs, then this method may not be the preferred instal- 
lation method. When installing from optical media, even the fastest optical drive is slow 
compared to other methods, such as USB. 


USB Drive 


Applications are outgrowing optical media such as CD-ROM and DVD-ROM, so USB 
drives have become popular. USB drives are faster and bigger than optical media. If a hand- 
ful of computers require the application, then this might be a better option. However, the 
disadvantage is the simultaneous installations are limited to the number of flash drives you 
have with the application loaded. Another common problem with USB drive installations is 
that the USB drives are lost from time to time and inadvertently overwritten. For this rea- 
son, many application vendors lock their drives from being overwritten and repurposed. 


Network Installation 


When you need to install an application on many different PCs, a network installation 
should be your first choice. The application is typically uploaded to a file share by the 
administrator, and then the file share is set to read-only access for the user who is per- 
forming the installation. Depending on the speed of the network, this could be the fastest 
method to install an application on several different PCs simultaneously. 

There are several different methods for deploying an application over the network. Each 
method depends on the number and location of the computers. 
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User-Initiated Installation 


These installations are used when the administrator of the PC will start the installation 
manually. This method is preferable when the administrator is expected to answer specific 
questions during the installation, such as where to install the application. 

The installation of any application generally requires that the user be an administrator 
of the operating system or have elevated privileges to install an application. If user-initiated 
installation is chosen as the method for deploying an application, you must be sure that the 
user account used to install the application has the appropriate permissions to install the 
application. 


Automated Installation 


Two different types of automated installations can be employed by the administrator: push 
installations and pull installations. Either installation type is used when the conformity of 
the installation is required. 

Automated installation products, such as Microsoft System Center Configuration 
Manager (SCCM), can deploy applications to multiple PCs with a push installation. 
Microsoft SCCM, formerly called Systems Management Server (SMS), is considered the 
Swiss Army knife of installation and reporting services. Each client in the network will 
have the SCCM agent installed prior to the push installation of the application. The agent 
will then be responsible for reporting on the current operating system. This allows you 
to collect information for determining if you can satisfy the requirements of the appli- 
cation. The agent can then be used as the contact point for the push installation of the 
application. 

Group Policy can also be used to automate the installation of applications. The Group 
Policy method is a pulled-based installation method, where the client will pull the applica- 
tion from the network share. This method contains no agent, so reporting is not available 
for client resources, installation requirements, or installation status. The benefit is that it 
requires very little infrastructure if you have Active Directory (AD) installed already. 

Regardless of the installation type, push- or pull-based, most automated installation 
methods do not require the user logged in to be an administrator. SCCM can be configured 
to use a system account that has elevated privileges in the target operating system to install 
the application. Group Policy pull-based installations can also be configured to use a sys- 
tem account that has elevated privileges to install the application. 


Push installations are installations in which the administrator can push an 

Qo application out to clients. Pull installations are installations in which the 
client pulls, or queries, for the application to be installed. Group Policy 
application deployment is a pull type of installation, since the client is 
responsible for pulling the application and installing it. SCCM is a push 
type installation method. For more information about SCCM, visit: 


https: //docs.microsoft.com/en-us/sccm/core/clients/deploy/ 
plan/client-installation-methods 
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Security Considerations 


When an application is installed in the operating system, the overall security of the operat- 
ing system can potentially be compromised. Of course, it is not the intent of the application 
to weaken the security of the operating system, but vulnerabilities in the application can 
exist. Applications developers realize that their code is not perfect and that vulnerabilities 
can exist, so many applications now include self-updating capabilities. 

Applications weakening the security of the local device should not be your only concern. 
Applications can actually weaken the security of the entire network, especially if they are 
not updated frequently. Applications that operate over the network with client/server func- 
tionality pose the largest security risks, since they allow for remote exploitation of vulnera- 
bilities. One measure that can be employed with network applications that are not updated 
frequently is to firewall the services. There are many other active measures, which we will 
discuss in further detail in Chapter 23, “Securing Operating Systems.” 


Networking in Windows 10 


CompTIA expects you to know a number of topics related to networking and Windows. 
This section covers the various scenarios in which you will deploy Windows 10 in a network. 
First, we'll cover small office, home office (SOHO) deployments, and then we’ll scale 

it out to an enterprise network. Many of these options are identical in Windows 8/8.1 

and Windows 7, with the exception of a few new features that we will highlight as specific 
to Windows 10. So the concepts explained in this section are universal with Windows 7 
and Windows 8/8.1. 


Networking Models 


There are several different networking models that you can use to facilitate Windows 
authentication. There is no single way to implement a network model; it all depends on the 
needs of the organization to share the resources. Each model has its advantages and disad- 
vantages. This section covers the three most popular methods. 


HomeGroup 


The HomeGroup feature is available in Windows 10 version 1709 and prior, as well as 
Windows 8/8.1 and Windows 7. The HomeGroup feature allows for the sharing of files and 
printers with a single password. You can choose which types of resources are shared, such 
as pictures, documents, music, videos, and printers. However, the HomeGroup feature has 
been removed as of Windows 10 version 1803. We will discuss alternatives to HomeGroups 
in the following sections. 


Workgroups 


The workgroup networking model has existed in the Windows operating system since it 
was first introduced. Windows can function as both a client and server simultaneously. 
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When an operating system can function as both a client and a server, it is considered peer- 
to-peer networking. Clients can join the network and leave the network at any time. 

The core of the Windows operating system is essentially the same for both a server and 
workstation. There are a few differences between the two—for instance, servers normally 
give priority to background services like file and printer sharing versus the Desktop. The 
second and most limiting is the restriction of connecting 20 simultaneous clients to a single 
workstation. After 20 simultaneous connections are made, all others clients will return 
an “Access Denied” error—that is, until one of the 20 connections are closed out and the 
session is terminated. This takes some time on the workstation side, so if you have more 
than 20 clients, you should plan to deploy an actual server system running software such as 
Windows Server 2016 or Windows Server 2019. 

Workgroups are normally used in SOHO environments or in situations that do not 
require the infrastructure of a dedicated server for authentication. They should be kept 
to a maximum of 20 clients, with the expectation that each client will maintain its own 
resources (files and printer sharing). Many small offices use this networking model and 
never need anything more. 

A typical situation where a workgroup is effective is when a printer needs to be shared 
from a single computer. The disadvantage is that the computer must be on in order for the 
clients to use the printer. Another disadvantage with workgroups is user authentication, 
which we will discuss in detail later in this chapter. 

When you install Windows 10, by default it is joined to the workgroup named 
Workgroup. However, there may be instances in which you want to join another work- 
group. To join another workgroup, perform the following steps: 


1. Click the Start menu. 

2. Type Control Panel and choose the result that comes up. 
3. Click System and Security. 

4. Click System. 
5 


Click Change Settings under the heading of Computer Name, Domain, and Work- 
group Settings. 


6. Click Change Next to Rename This Computer or Change Its Domain or Workgroup. 
7. Change the Workgroup option to the desired workgroup. 

8. Press OK. 

9. Press OK. 


10. Reboot the computer. 


Domains 


Domain functionality has existed since Microsoft Windows 3.51 (mid-1990s). Unlike the 
workgroup networking model, the domain networking model requires that clients be joined 
to a domain. Joining a domain creates a trust between the client (Windows 10 client, for 
example) and the authentication server (Windows Server 2016 running Active Directory, 
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for example). Joining a client to a domain allows users with an account in the domain to 


log into the client. To join a domain in Windows 10, perform the following steps: 


1. Click Start > Settings > Accounts > Access Work or School > Connect > Join This 


Device to a Local Active Directory Domain. You will be prompted to enter a domain 


name, as shown in Figure 17.45. 


FIGURE 17.45 Windows 10 Settings app for joining a domain 
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2. Enter your credentials on the domain when prompted, which allows the joining of the 


operating system, as shown in Figure 17.46. 


FIGURE 17.46 Windows 10 domain credentials prompt 
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3. Reboot the operating system for the changes to take effect. 
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An alternate way of joining a domain is through the System Properties dialog box. This 
can be achieved by clicking Start, then click System, choose System (control panel), then 
select Change settings under the heading of Computer name, domain, and workgroup set- 
tings, then click Change..., then select the radio button Domain under Member of, finally 
enter the domain name and select OK, as shown in Figure 17.47. The next dialog box will 
prompt you to enter your credentials on the domain that allows the joining of the oper- 
ating system. You will then need to reboot the operating system for the changes to take 
effect. This method of joining an operating system to a domain has been supported since 
Windows XP. 


FIGURE 17.47 Windows domain joining 
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Security and Maintenance 


Domains also allow for files and printers to be secured with domain credentials. The key 
take-away in the benefit to domains is centralized authentication for users and computers. 
It is important to note that the term domain describes both the networking model and the 
friendly name of the security domain of the network. 

Microsoft Active Directory is the main authentication technology used with domain 
controllers in a domain networking model. Active Directory contains objects such as 
users, computers, and printers, as well as many other types of objects, called Group 
Policy Objects (GPOs). Active Directory allows for the grouping of these objects logi- 
cally so that they can be controlled with policies through Group Policy. Active Directory 
domains can scale to any number of joined clients and user credentials. Many large 
organizations use Active Directory for centralized user authentication, because it is very 
scalable. 
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Group Policy is a component of Active Directory as well as a component 
OTE of the client-side operating system. Group Policy is used to create policies 

that can be applied to groups of users and a group of computers. Group 

policy is considered enforced, since it re-applies policies every 90 minutes. 


User Authentication 


When you choose to use a workgroup networking model, all authentication is local to the 
operating system. Windows operating systems contain a local authentication mechanism 
called the Security Account Manager (SAM). The SAM can be considered a local database 
of users and groups. All users locally authenticating to the workstation authenticate against 
this internal database of usernames and passwords and are granted a local access token, 

as shown in Figure 17.48. The local access token allows the user to access local resources 
secured with the user’s identity. 


FIGURE 17.48 Windows local authentication 
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Username: pc1\fred 
Password: ********* 


When clients are joined to a domain, a user with credentials on the domain can log into 
the workstation. When this happens, they are authenticating against an Active Directory 
domain controller. An Active Directory domain controller retains information about all 
access rights for all users and groups in the network. When a user logs in to the system, 
AD issues the user a globally unique identifier (GUID), also known as an access token. 
Applications that support Active Directory can use this access token to provide access con- 
trol. When a client is joined to a domain, users can still log into the local operating system 
using the SAM, as if they have a local account (see Figure 17.49). However, local logins are 
normally restricted to administrators once a client is joined to the domain. 
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FIGURE 17.49 Windows domain authentication 
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Username: fred@domain.com 
Password: KKKKKKKKK 


Active Directory simplifies the sign-on process for users and lowers the support require- 
ments for administrators. Access can be established through groups, and it can be enforced 
through group memberships. Active Directory can be implemented using a Windows Server 
(such as Windows Server 2016) computer. All users will then log into the Windows domain 
using their centrally created AD account. 

One of the big problems that larger systems must deal with is the need for users to access 
multiple systems or applications. This may require a user to remember multiple accounts 
and passwords. The purpose of a single sign-on (SSO) is to give users access to all the 
applications and systems that they need when they log in. 

SSO operates on the principle that the resource trusts the authentication server. When a 
user logs in initially, they will authenticate against the authentication server for their orga- 
nization. When the user then visits the resource, which is normally a cloud-based resource, 
it will prompt the authentication server to provide a claim on behalf of the user, as shown 


in Figure 17.50. 
FIGURE 17.50 Single sign-on 
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The claim normally contains basic information about the user, such as first and last 
name, email address, or any other attribute. At no time is the user’s password sent, 
because they authenticated once already. Although we’ve over simplified SSO in this 
example, it really is this simple, without the layers of encryption and complicated trust 
rules. As we adopt more and more cloud resources, it is becoming the number one way to 
provide authentication for our users because we never transmit the actual username and 
password. 


PP Single sign-on is both a blessing and a curse. It’s a blessing in that once 

A: the user is authenticated, they can access all the resources on the network 
and browse multiple directories. It’s a curse in that it removes the doors 
that otherwise exist between the user and various resources. This creates 
a security risk, because if an attacker gets the username and password for 
the user, they have access to all of the resources. 


Accessing Resources 


Now that you have an understanding of networking models and an understanding of 
authentication, let’s focus on the resources that the users will access. This section covers the 
most common types of resources. 


Network Shares 


A network share is a type of resource sharing that allows access to file and folder resources 
over a network. As the name implies, network shares are those that exist on the network; 
however, they can be mapped to appear as if they are local. The net use command can be 
used to establish network connections at a command prompt, for example. If you want to 
connect to a shared network drive and make it your M drive, the syntax is net use M: \\ 
server\share. The \\server\share portion of the command is called the Universal 
Naming Convention (UNC) path. The UNC path is a standard way to describe the server 
and file share to the Windows operating system. 

In addition to using the command line, you can use the GUI to map a network share. 
After browsing to the server by typing \\servername in the Windows File Explorer 
address bar, right-click the file share and select Map Network Drive. You will then be 
prompted with some options for mapping the network share, as shown in Figure 17.51. 
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FIGURE 17.51 Mapping a network drive 
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By default, the Reconnect at Sign-in option is selected. In order to ensure 
OTE that the mapped drive is reconnected when the user signs in, this option 
must be selected. 


Printer Shares 


Another common type of network resource is printing. Although we often need to access 
files and folders, at some point we will probably need to print. You can use the same com- 
mand to connect to a shared printer; the syntax of net use lpt1: \\server\printername 
will map a printer to the LPT1 device. As in the prior example, you can make the printer 
act as if it is locally connected to the operating system. You can also use the GUI method 
of connecting a printer, by right-clicking the printer after browsing to the server, and then 
selecting Connect, as shown in Figure 17.52. 
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FIGURE 17.52 Connecting to printers 
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Sharing printers was one of the primary reasons why networking became 
P popular in the workplace, and it still continues to be an important reason 


today. Know that you can map to any printer on the network, but it still 
must be shared in order for you to be able to use it. 


Administrative Shares 


Administrative shares are automatically created for administrative purposes on Windows 
operating systems. These shares can differ slightly based on which operating system is 
running, but they end with a dollar sign ($) to make them hidden. There is one for each 
volume on a hard drive (C$, D$, and so forth), as well as admin$ (the root folder—usually 
C:\WINDOWS), and print$ (where the print drivers are located). These are created for use by 
administrators and usually require administrator privileges to access. It’s important to note 
that they are hidden shares and that any shared folder created with a trailing $ will be hid- 
den from the users as well. Unless you know they exist, they will not be visible. 


Summary 


This chapter focused on Windows 10, one of the three Windows operating systems covered 
on the exam. CompTIA expects you to be familiar with it and be able to answer questions 
on everything from installing it to managing it. 
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We covered the various features of Windows 10—some that exist in other versions of 
Windows and some that are unique to this operating system. We also covered the various 
networking models you will see, not only with Windows 10 but also with other Windows 
versions. We then followed up with common methods of accessing resources on the 
Windows operating system. 


Exam Essentials 


Know which types of installations are possible with Windows 10. You should know 
which operating systems can be upgraded to Windows 10 and which require a clean 
installation. 


Understand the ways that applications can be installed. You should have a good under- 
standing of how applications can be installed on the operating system. This includes 
direct installations for one-time installations, and network installations using automated 
installations. You should also be able to identify requirements and prerequisites for 
hardware and software. 


Understand upgrading to Windows 10. You should know that a custom installation either 
wipes the old system or replaces the existing system, putting the old files into WINDOWS . OLD. 
Applications then have to be reinstalled, and user data has to be migrated from the old sys- 
tem using tools such as USMT. An upgrade preserves the existing applications and the user 
data, moving them into the new operating system. 


Know the editions of Windows 10. Windows 10 Home and Pro are retail editions. 
Windows 10 Enterprise is available only through volume licensing. Windows 10 Education 
is available only to higher education and K-12. 


Know the various features in Windows 10 editions. You should know which editions offer 
major features such as BitLocker, AppLocker, and DirectAccess. You should also know the 
restrictions for using certain editions—for example, that Windows 10 Home cannot join a 
domain. 


Understand networking in Windows 10. You should understand the different networking 
models in which a Windows operating system can participate: HomeGroup, workgroups, 
and domains. You should also understand the basic user authentication methods used with 
each of these networking models, as well as common methods for accessing networking 
resources. 


Review Questions 1013 


Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. 


You have a computer with four physical CPUs and 4 TB of RAM. Which edition of 
Windows 10 should you install? 


A. Education 

B. Enterprise 

C. Pro 

D. Pro for Workstations 

You need to install Windows 10 for your organization. Which edition should be installed to 
support DirectAccess? 

A. Education 

B. Enterprise 

C. Pro 

D. Pro for Workstations 

You have a Windows 10 Home laptop, and your organization has a Windows Server 2012 
domain. You cannot find the option to join the domain. What could be the problem? 

A. The domain needs to be at least Windows 2016. 

B. The edition of the Windows 10 operating system needs to be upgraded. 

C. Windows 10 does not support joining to a domain. 


D. The operating system must be installed on a desktop in order to join a domain. 


Which Windows 10 feature displays a random wallpaper on the login screen? 
A. Cortana 

B. Action Center 

cC. UWP 

D. Spotlight 


Which feature is used to align windows on the Desktop? 

A. Cortana 

B. Spotlight 

C. Snap Assist 

D. HomeGroup 

Which Windows Update branch for Windows 10 will install features as they are released to 
the general public? 

A. Semi-Annual Channel 

B. Semi-Annual Channel (Targeted) 

C. Long-Term Servicing Channel 


D. Insider Program 
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7. Which edition of Windows 10 will not allow for Windows Update Semi-Annual branch 


releases? 
A. Home 
B. Pro 


C. Education 
D. Enterprise 
8. You used the winver.exe utility and it reported Windows 10 Version 1703 (OS Build 
15063.145). What is the current date of the last update? 
A. 63rd day of 2015 
B. 145th day of 2015 
C. March of 2017 


D. The version needs to be looked up at Microsoft.com. 


9. You need to install a 64-bit version of Windows 10. How much RAM is required? 
A. 1GB 


B. 2GB 
C. 4GB 
D. 8GB 


10. Which tool allows you to report a remote computer’s inventory of hardware? 
A. regedit.exe 
B. msinfo32.exe 
C. msconfig.exe 
D. dxdiag.exe 


11. You need to install a 64-bit version Windows 10. How much drive space is required? 
A. 16GB 


B. 20GB 
C. 24GB 
D. 60GB 


12. Which restriction will be imposed on Windows 10 users until they activate the operating 
system? 


A. They won’t be able to launch applications. 

B. They won’t be able to run Windows Updates. 
C. They won’t be able to change the wallpaper. 
D 


They won’t be able to browse the Internet. 


13. 


14. 


15. 


16. 


17. 


18. 
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What is the name of the pass that configures and creates the user environment during the 
setup process? 


A. Generalization 


B. OOBE 
C. Specialization 
D. WinPE 


When installing Windows 10, you can control telemetry data. In which step during setup is 
this configured? 


A. Privacy settings 

B. Cortana options 

C. Partitioning options 

D. Account creation 

You want to upgrade from Windows Vista Home Basic edition to Windows 10. What are 
your options? 

A. Upgrade to Windows 10 Home. 

B. Upgrade to Windows 10 Pro. 

C. Upgrade to Windows 10 Enterprise. 

D. Upgrade first to Windows 7 Home Basic. 

You want to upgrade from 32-bit Windows 7 Professional to a 64-bit version of 
Windows 10. What are your options? 

A. Upgrade directly to Windows 10 Pro 64-bit. 

B. Upgrade first to Windows 10 Pro 32-bit, and then update to 64-bit. 

C. Upgrade to Windows 8.1 64-bit, and then upgrade to Windows 10 64-bit. 


D. You must perform a clean installation of Windows 10 Pro 64-bit. 


Where is the Boot Configuration Data stored on a Windows 10 installation utilizing EFI? 
A. EFI System Partition 

B. WinRE partition 

C. Secure Boot partition 

D. C:\WINDOWS 


What is a disadvantage of allocating too much storage for an application? 
A. The storage could fill up too quickly. 

B. The storage could need upgrading in the future. 

C. The storage might be used for other applications. 

D. The storage might go unused. 
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19. An application states that it requires 4 GB of memory. What does that mean? 


A. 
B. 
C. 
D. 


The application needs 4 GB of local storage. 
The application needs 4 GB of network storage. 
The application needs 4 GB of memory itself. 


The application needs 4 GB of memory on the operating system. 


20. What is the maximum number of concurrent connections that can be made to a 
Windows 10 workstation? 


A. 


B. 
C. 
D 


10 connections 
15 connections 
20 connections 


25 connections 


Performance-Based Question 


You will encounter performance-based questions on the A+ exam. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exam. To see how your answers compare to the authors’, refer 
to Appendix B. 

You need to join a Windows 10 workstation to an Active Directory domain. What are 
the steps you need to follow to complete the task? 


CompTIA® A+® Complete Study Guide, Fourth Edition 
By Quentin Docter and Jon Buhagiar 
Copyright © 2019 by John Wiley & Sons, Inc. 


Working with 
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THE FOLLOWING COMPTIA A+ 220-1002 
EXAM OBJECTIVES ARE COVERED 
IN THIS CHAPTER: 


vy 1.2 Compare and contrast features of Microsoft 
Windows versions. 


a Windows 8 
a Windows 8.1 


y 1.3 Summarize general OS installation considerations 
and upgrade methods. 


= Boot methods: USB, CD-ROM, DVD, PXE, Solid state/flash 
drives,Netboot, External/hot- swappable drive, Internal hard 
drive (partition) 


= Types of installations: Unattended installation, In-place 
upgrade, Clean install, Repair installation, Multiboot, Remote 
network installation, Image deployment, Recovery partition, 
Refresh/restore. 


a OS compatibility/upgrade path 





The preceding chapter covered the Windows 10 operating sys- 
tem, and the focus of this chapter is on Windows 8/8.1. The 
next chapter will similarly focus on Windows 7 to round out 
the coverage of the three. 

The leap from one operating system to another can be either an evolutionary change or a 
revolutionary change. Windows 8 was a revolutionary change from the operating systems that 
came before it in its adoption of a tablet-friendly interface implemented on all devices. The 
interface was designed to accommodate touch gestures on a touch screen, but it did not make 
their existence mandatory; you can still navigate with a keyboard, mouse, and touchpad. 

Windows 8.1 was released as an update to replace Windows 8 and to make running the 
operating system on a system without a touch screen easier. The changes from Windows 8 
to Windows 8.1 were evolutionary, as opposed to revolutionary, and they could arguably 
fall under the category of a patch (or a step backward to adapt to hardware). The biggest 
noticeable difference is that during boot, the operating system checks to see if it is on a 
touch-capable device. If it is not, it boots to the desktop view (which looks like Windows 7) 
instead of to the Start screen (which is still there just the same). 

Windows 8.1 also brought back the Start button, although it displayed the Start screen 
and not the traditional Start menu. In addition to the Start button, Windows 8.1 allowed for 
the setting of default apps, app updates, and a better ability to organize the home screen. 

Because the differences between Windows 8 and Windows 8.1 are minimal, this chapter 
discusses them as if they are the same and uses “Windows 8” to signify both. We’ll point 
out where there is a substantial difference between Windows 8 and Windows 8.1; there are 
only a few areas where they differ. 





Windows Editions 


Windows 8 was released in four different editions: Windows 8 (commonly called Core), 
Windows 8 Pro (similar to Windows 10 Pro in terms of features), Windows 8 Enterprise 
(for volume licensing), and Windows 8 RT (for preinstallation on tablets). The RT version 
includes touch-optimized versions of Microsoft Office. All the versions include the Start 
screen, Desktop, Microsoft Store, Secure boot, and drive encryption. Only the Pro and 
Enterprise versions support BitLocker and Encrypting File System (EFS). 

The minimum hardware requirements for a 32-bit installation are a 1 GHz (or faster) 
processor, 1 GB of RAM, 16 GB of hard drive space, and a DirectX 9 graphics device with 
a WDDM driver. For 64-bit installations, this raises to 2 GB of RAM and 20 GB of hard 
drive space. Naturally, for touch capabilities, you need a monitor that supports touch, and 
you need an Internet connection to be able to access the Microsoft Store. 
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DPO Windows 8 RT runs on an ARM (Advanced RISC Machine) processor, not 
‘gr on x86/x64 processors. This is important because programs and upgrades 
written for the x86/x64 processors will not work on RT. 


Table 18.1 lists a number of features associated with the Windows 8 operating system 
that CompTIA wants you to know for the exam, along with a brief description of each. 


TABLE 18.1 Windows 8 features 


Feature Significance 





Metro Ul When the new interface was released with Windows 8, it was called the 
Metro UI. This name did not last long; it came to be known as the new 
Windows UI or the Windows 8 UI. Figure 18.1 shows an example of the 
interface—in this case, the Windows Start screen. 


Pinning You can pin (add) your favorite apps to the Start screen or the Desktop so that 
you can get to them quickly or see updates to their tiles at a glance. To add 
an app to the taskbar, right-click the shortcut or icon on the Start Menu and 
choose Pin to Taskbar (or choose to unpin it, if you want to remove it). Choos- 
ing Pin to Start places the app on the Start screen instead of on the taskbar. 


OneDrive OneDrive is the online/cloud storage account that comes with your 
Microsoft account. You can save files there from applications or move 
them there (and back again) using File Explorer (previously called Windows 
Explorer). A limited amount of storage is given to each account for free, 
and you can purchase more as you need it. 


Microsoft The Microsoft Store is an online site, requiring Windows 8 or higher, from 
Store which you can download apps, games, software, and so on. Once they’re 
downloaded, you can install them, pin them, and use them. 


Multi-monitor Multiple monitors have been available with Windows for some time, but not 
taskbars until Windows 8 has it been possible to have a taskbar appear in each monitor. 


Charms Windows 8 introduced charms to the operating system. These are controls 
that are available on the side of the screen for every Microsoft Store app. 
They consist of Search, Share, Start, Devices, and Settings. 


Start screen The Windows Start screen, as shown in Figure 18.1, is the central location 
where you can access your most commonly used data and sites. 


PowerShell Windows PowerShell has been around for several years and was avail- 
able with previous versions of Windows as well. It can be thought of 
as a greatly enhanced command interface where you can write script 
files based on the .NET programming framework. Figure 18.2 shows an 
example of the interface and the results of the get-process command. 
Some common commands that can be used in PowerShell can be found at 
https: //technet.microsoft.com/en-us/library/ff714569. aspx. 
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TABLE 18.1 Windows 8 features (continued) 


Feature Significance 





Live sign-in In a non-domain-based environment, it is possible to use your Microsoft 
account (MSN, Hotmail, Outlook, and so forth), username, and password 
to log into your Windows 8-based PC. This is intended to serve as a single 
sign-on, allowing you to not only interact with the operating system but 
also to download apps from the Microsoft Store, sync files with OneDrive, 
and so on. As an alternative to this, you can still create a local account and 
use it to log in, but you will need to authenticate with cloud-based services 
when you connect to them. 


Action Center Also available in Windows 7, Action Center (Control Panel > System and 


Security > Action Center) is a central dialog box for dealing with problems, 
security, and maintenance. Figure 18.3 shows an example of the Action 
Center interface. 


Windows This feature allowed for DVD playback, the recording and playback of 

Media Center video from cable cards, and an on-screen display of the current TV guide 
for your area. The feature filled the gap of current day set-top boxes and 
streaming services. In order to install and use Windows Media Center, you 
were required to purchase an additional license from Microsoft and enter a 
separate product key for installation of the feature. 


FIGURE 18.1 The Windows 8 Start screen 























FIGURE 18.2 Windows PowerShell 


2 Administrator: Windows PowerShell 


Windows PowerShe 
‘opyright (C) 2012 Microsoft Corporation. All rights reserved. 
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PS C:\Windows\system32> Get-Process 


NPMCK) PMCK) 


73468 
42476 
(0 
3244 
4860 
2784 
162204 
1264 
68416 
1116 
BEEP) 
1944 
3408 
292 
6640 
7796 
2388 
2712 
14220 
14652 
5188 
32104 
10900 
1484 
120 
2292 
1668 
4304 
1024 
7496 
14064 
836 
1432 
1820 
4688 


CPU(s) 


ProcessName 


audiodg 
conhost 
csrss 
csrss 
dithost 
dwm 
explorer 
Idle 
Isass 
ManagementAgentHost 
msdtc 
MsMpEng 
notepad 
powershell 
SearchFilterHost 
SearchIndexer 
SearchProtocolHost 
services 
smss 
spoolsv 
svchost 
svchost 
svchost 
svchost 
svchost 
svchost 
svchost 
svchost 
svchost 
System 
taskhostex 
Thumbnai 1ExtractionHost 
VGAuthService 
vmacthlp 
vmtoolsd 
vmtoolsd 
wininit 

inlogon 
Wmi PrvSE 
WmiPrv5E 


OCI 


NO ONION HOS IIE) 





FIGURE 18.3 The Action Center interface 


4 © > Control Panel » System and Security + Action Center vė 


Control Panel Home 


Change Action Center settings 


@ Change User Account Control 
settings 


Change Windows SmartScreen 
settings 


View archived messages 


View performance information 


See also 
File History 
Windows Update 


Windows Program 
Compatibility Troubleshooter 


Action Center 


Search Control Panel 


Review recent messages and resolve problems 


No issues have been detected by Action Center, 





If you don't see your problem listed, try one of these: 


Tro ootine 
A Find and fix problems 








4 Refresh your PC without affecting 


your files, or reset it and start over. 
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The Windows Start screen, with its tiled look, provides a main location where you can 
access everything. Depending on whether you have a touch-enabled device or not, how 
you interact with this screen will differ. Table 18.2 lists common actions and ways of 
navigating the Start screen based on whether you are using touch gestures or a keyboard 


and mouse. 


TABLE 18.2 Navigating the Windows 8 Start screen 


Action 


With Touch Gestures 


With Keyboard and Mouse 





Open an app. 


Return to the Start screen 
from an app. 


Display the charms. 


Display the Start screen 
menu. 


See all the apps on your 
computer. 


Switch between open apps. 


Tap the app. Figure 18.4 
shows the tile representing 
the Calendar app. 


Tap the Start button in the 
lower-left corner of the 
screen. 


Swipe from the right edge 
of the screen. Figure 18.5 
shows the charms. 


Tap the Desktop tile and then 
press and release the Start 
button. Figure 18.6 shows 
the Start button. 


Swipe to the left until the 
down arrow appears, and 
then tap the arrow in the 
lower-left corner of the Start 
screen (as shown in Figure 
18.7). A list of the apps will 
appear, by name and in 
alphabetical order. 


Swipe in and out from the 
left edge of the screen to see 
a list of open apps, 

and then tap one. 


Click the app. 


Press the Windows key on 
the keyboard. 


Point to the upper-right or 
lower-right corner of the 
Desktop or Start screen. 


Point to the lower-left 
corner of the Desktop to 
display the Start screen 
button, and then right-click 
it. 


Point to the lower-left area 
of the Start screen, and 
then click the down arrow. 


Point to the upper-left 
corner of the Start screen to 
see a list of open apps, and 
then click one. 


FIGURE 18.4 A tile/icon for an app 


Calendar 





FIGURE 18.5 The Windows 8 charms 





FIGURE 18.6 The Windows 8 Start screen button 
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FIGURE 18.7 The down arrow 


© 





On the Start screen, you can start typing the name of any app, setting, or file, and the 
operating system will attempt to find what you are looking for and narrow your options to 
that. You can also search by using the Search icon (which looks like a magnifying glass) in 
the upper-right corner of the Start screen, as shown in Figure 18.8. 


FIGURE 18.8 _ The Search icon appears on the Start screen. 


Search 


Apps Results for “note” Apps 
note| 
a 
FY Sticky Notes 
‘o Settings 
b Files 


(®) Bing 

ai Finance 

a Games 

e Intemet Explorer 
Mail 
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Installing Windows 8 


As with any operating system installation, the two primary methods of installing Windows 
8 or Windows 8.1 are either a clean install or an upgrade. 


Clean Install With a clean install, no traces of any previous operating system are kept. 
The main concern is that the hardware meets (or preferably, exceeds) the minimum require- 
ments. Clean installs are usually done with new hardware and virtual machines (and, to a 
limited extent, multiple boot installations). 


Upgrade With an upgrade, the focus is on keeping something from the previous operating 
system that was installed earlier on the machine. That “something” can be user accounts, 
data, apps, or almost anything else. 


If you're keeping any existing data, it is an upgrade; otherwise, it is a 
TE clean install. 


An upgrade that is performed without removing the existing operating system (the 
norm) is known as an in-place upgrade. Windows 8.1 can do an in-place upgrade only 
from Windows 7 or Windows 8. Table 18.3 shows the upgrade possibilities. It is also 
important to understand that an upgrade can be performed only to the same processor 
architecture. If you have Window 7 Professional installed using x86 (32-bit) architecture 
and you want to upgrade to Windows 8.1 x64 (64-bit), you will need to perform a clean 
install. Operating system architecture was discussed in Chapter 15, “Operating System 
Basics.” 


TABLE 18.3 Windows 8.1 upgrade options 


Windows 8.1 Windows 8.1 Windows 8.1 





Existing Operating System Core Pro Enterprise 
Windows 7 Starter Yes Yes No 
Windows 7 Home Basic Yes Yes No 
Windows 7 Home Premium Yes Yes No 
Windows 7 Professional No Yes Yes 
Windows 7 Ultimate Yes No Yes No 


Windows 7 Enterprise No No Yes 
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Since Windows RT 8.1 is designed for preinstallation on tablets, there is not an upgrade 
path for it. 

The easiest way to see if your current hardware can run Windows 8.1 is to download 
and run the Windows 8.1 Upgrade Assistant. Figure 18.9 shows the opening screen, 
and Figure 18.10 shows an example of the results it found when run on a Windows 7 
laptop. 


FIGURE 18.9 The opening screen of the Windows Upgrade Assistant 


Let's see what's compatible 


7". Checking apps and devices 





FIGURE 18.10 An example of the Windows Upgrade Assistant results 


Here’s what we found 


4 60of your apps and devices are compatible 





Clicking to see more information (See Compatibility Details) brings up information 
similar to that which is shown in Figure 18.11, allowing you to work through each issue 
individually. 


FIGURE 18.11 


As mentioned, Windows 8 can be installed as an upgrade or a clean installation— 
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The compatibility details offer more information. 


Compatibility details 


If you decide to install Windows 8.1, we'll help you take care of the things that need your attention later. 


Compatible 


HID-compliant mouse 
Microsoft 


High Definition Audio Device 
Microsoft 


Intel(R) 82574L Gigabit Network Connection 
Intel Corporation 


VMware Pointing Device 
VMware, Inc. 


VMware SVGA 3D 
VMware, Inc. 


VMware USB Pointing Device 
VMware, Inc. 


Why are some apps and devices not listed? 


Print Save 


https://support.microsoft.com/en-gb/help/15288/ 
windows-8-update-to-windows-8-1 
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Microsoft is currently recommending that Windows 10 be installed in lieu 
of Windows 8.1. However, information on an upgrade from Windows 8 to 
Windows 8.1 can be found at: 


accomplished with the Custom option (think custom = clean). When you choose Custom, 


you can choose whether or not to format the hard disk. If you choose not to format the 


hard disk, the old operating system is placed in a folder named Windows.old, which allows 


you to attempt to return to the old operating system, if needed. After 28 days, any files 


placed in the Windows.old folder are automatically deleted. 
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When formatting is involved, it is a clean install. 
ITE 


Regardless of whether you are doing a clean install or an upgrade, there are a number of 
ways to approach doing it, and CompTIA has placed them into several categories, which we 
will walk through next. 


DVD Installation 


The most common way to install Windows 8 is via DVD. With the introduction of 
Windows Vista, the installation size outgrew the capacity of a CD-ROM disc, on which 
Windows XP was supplied. The installation media is now supplied on DVD-ROM media 
and grows in size with every release of the Windows operating system. 


Unattended Installation/Image Deployment 


An unattended installation, as the name implies, is an installation that is scripted with an 
answer file that allows for an installation of the operating system without any user input. 
The heart of an unattended installation is image deployment, which is sort of like copying 
an ideal image from one machine to other machines. Microsoft makes tools available with 
which to create images. The core deployment tools are in the Windows Assessment and 
Deployment Kit (usually referred to as the Windows ADK). Expanding on these core tools 
is the Microsoft Deployment Toolkit (commonly called MDT), which simplifies the process 
and reduces the time each installation takes. 


P You can download and learn more about the latest MDT from: 
‘Qi https: //docs.microsoft.com/en-us/sccm/mdt/ 


To download and learn more about the latest Windows ADK, visit: 


https: //docs.microsoft.com/en-us/windows-hardware/ 
get-started/adk-install 


The Windows ADK is a series of tools with much less automation than the MDT. The 
installation of the Windows ADK is a requirement for the MDT, since many of the tools 
the MDT automates are in the Windows ADK. You can perform any of the steps in the 
next section manually with the Windows ADK. 

The Microsoft Deployment Toolkit (MDT), on the other hand, allows for the ultimate 
streamlining of the initial image creation, modification, and deployment. With the MDT, 
you create a reference image for deployment to the physical machines. Once the reference 
image is created, you can use the System Preparation Tool (Sysprep) to reset specific 
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information about the installation, such as the computer name and other specifics. This 
action is called generalizing the operating system. The MDT will allow you to create a 
Windows Imaging (WIM) file to roll out. To simplify matters, the initial image is usually 
created on a virtual platform, to help rule out hardware-related issues and speed up devel- 
opment of the final image. 

The intricacies of both the Windows ADK and the Windows MDT are beyond the 
scope of the CompTIA objectives. We could write a book just on creating images using 
these two tools, since they allow for ultimate control over the imaging process. Complete 
documentation on using the MDT for Windows 8.1 deployment can be found at: 


https: //technet.microsoft.com/en-us/library/dn744280.aspx 


Remote Network Installation 


An installation can be started many ways—with a USB drive, a DVD, and so on. An image 
and setup files can also be located on and installed from a network, thereby saving you 
from having to keep all the files on the local machine. In what is known as a PXE-initiated 
boot (for Preboot Execution Environment), the workstation retrieves the files from the net- 
work, as needed, and configures variables accordingly. 

There are many different BIOS/UEFI firmware vendors, and every firmware will be 
slightly different for initiating PXE booting. All firmware will initiate PXE roughly the 
same way, though, which is either from an internal menu inside of the BIOS/UEFI setup 
program or from a boot menu. You often enter the boot menu by pressing the Esc key, 
the Enter key, the F12 key, or the Delete key during the firmware boot. A boot menu 
will then be displayed, with the network interface card as an option. Once selected, the 
firmware for the network interface card will obtain an IP address from a DHCP server, 
along with a DHCP option that specifies what file to boot and from which server to 
boot it. 


Multiboot Installation 


If there is sufficient space on a machine, and the hardware will support it, you can have 
more than one operating system and choose which one to run when you boot. A rule of 
thumb from Microsoft is that you should always install older operating systems first, and 
then work forward—for example, have Windows 7 installed before installing Windows 
8. If you go in the other direction, an earlier version of Windows may not recognize the 
startup files and will overwrite them, rendering the system inoperable. 

To change which operating system to boot to, go to Control Panel > System and Security 
> System, and then click Advanced System Settings. On the Advanced tab, chose Settings 
(under Startup and Recovery). Under System Startup, choose the default operating system 
that you want to use when the computer restarts, as shown in Figure 18.12. 
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FIGURE 18.12 Windows 8.1 startup options 


System startup 
Default operating system: 
Windows 8.1 


[V] Time to display list of operating systems: 
[C] Time to display recovery options when needed: 30 





System failure 
[V] Write an event to the system log 
[V] Automatically restart 

Write debugging information 





Automatic memory dump 


Dump file: 
%SystemRoot%\MEMORY.DMP 


Overwrite any existing file 





If you install Windows on a system with multiple hard drives, you can use 
á TE diskpart to verify that images are pointing to their intended drives. The 

system partition (containing BCD) usually appears as 0. However, the sys- 

tem can assign different numbers, and different computers that have iden- 


tical hardware configurations can end up having different disk numbers 
assigned to them. 


Repair Installation/Refresh/Restore 


When a problem pops up with the Windows 8 operating system, you can boot into the 
Windows Recovery Environment (Windows RE) and repair it by choosing to refresh, reset, 
or restore it. Refreshing it keeps personal files and settings, along with the default apps and 
those that you installed from the Microsoft Store, as shown in Figure 18.13. 

The Windows Recovery Environment can be accessed, if the operating system identifies 
that it can’t boot successfully. After two failed attempts, it will automatically boot into the 
Windows Recovery Environment. Another method of booting into the Windows Recovery 
Environment is to hold the Shift key while restarting the operating system. 

Resetting reinstalls Windows and deletes all but the default apps (meaning that you lose 
your personal files and settings). Restoring allows you to just undo recent system changes. 
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FIGURE 18.13 Windows 8 Recovery Environment 


© Troubleshoot 


Refresh your PC 


If your PC isn’t running well, you can 
refresh it without losing your files 


Reset your PC 


If you want to remove all of your files, 
you can reset your PC completely 


Advanced options 





Depending on the type of repair operation that you perform, you may or may not need 
the Windows 8 product key to continue. The product key is a 25-character code used for 
Windows activation (primarily to keep you from installing it on more PCs than you have 
licenses for). 


Recovery Partition 


A recovery partition is an area of the hard drive set aside to hold files that can be used to 
recover the operating system in the event of a failure. You can copy the information from 
this partition to another location (usually a USB drive) to use in the event that the partition 
fails. In Exercise 18.1, we will walk through creating a USB recovery drive. 


EXERCISE 18.1 


Creating a USB Recovery Drive 


1. Ifyou are using a mouse/keyboard, point to the lower-right corner of the screen and 
then click Search. If you are using a touch screen, swipe in from the right edge of the 
screen and tap Search. 


2. Type Recovery, select Settings, and then choose Create a Recovery Drive. 
Click Next to copy the contents of the recovery partition to the recovery drive. 


4. Inserta USB drive, when prompted, as shown in Figure 18.14. 
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EXERCISE 18.1 (continued) 


FIGURE 18.14 Creating a recovery drive 


Select the USB flash drive 


The drive must be able to hold at least 512 MB, and everything on the drive will be deleted. 


Available drive(s) 
C:\ (no label) 


Cancel 





Note the massive size of this file and that everything currently on the USB drive will 
be deleted. 


5. Click Next. 
6. Click Create. 


7. After the process is finished, you can choose whether you want to keep the recovery 
partition on your machine (in which case, click Finish) or delete it (in which case, click 
Delete). 


The latter is recommended only when you need to free up the disk space. 


P Most personal computer vendors include a recovery partition from 
PN the factory, along with a bootable utility to restore the image stored on the 
recovery partition. 


Windows 8 Boot Methods 


Windows 8 can be booted from a number of sources. To simplify matters, we’ve lumped 
them into categories constituting the ones that you need to know for the A+ exam. 


Internal Hard Drive (Partition) 


The most common method of booting the operating system—the traditional method of 
so doing—is to boot from an internal hard drive. In this case, the files are installed on a 
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partition. A hard drive can be divided into multiple partitions; it is not uncommon to have 
one partition for the system and one partition for data or recovery. By definition, a system 
partition is one that contains the Boot (BCD) folder that tells the computer where to look 
to start Windows, whereas a boot partition (which can be the same as the system partition) 
contains the actual files used to start Windows, and a recovery partition includes recovery 
tools (like Windows RE tools or a recovery image). 

The boot files are the same as for Windows 7, and they load in the following order: 


bootmgr The Windows Boot Manager (bootmgr) bootstraps the system. In other words, 
this file starts the loading of an operating system on the computer. 


BCD The Boot Configuration Data (BCD) holds information about operating systems 
installed on the computer, such as the location of the operating system files. 


winload.exe winload.exe loads the operating system kernel (ntoskrnl.exe). 


winresume.exe Ifthe system is not starting fresh but resuming a previous session, then 
winresume.exe is called by the BOOTMGR. 


ntoskrnl.exe ntoskrnl.exe is the Windows operating system kernel. 


System Files In addition to the previously listed files, Windows needs a number of files 
from its system directories (that is, SYSTEM and SYSTEM32), such as the hardware abstraction 
layer (hal.d11), session manager (smss.exe), user session (winlogon.exe), and security sub- 
system (Lsass.exe). 


External/Hot-Swappable Drive 


Rather than booting from an internal drive, it is possible to install and boot Windows from 
an external drive—if your BIOS supports it (and looks for the external drive in the boot 
order). You need to image/clone the operating system to the external drive and then change 
the boot order. Since many external drives are USB, one simple solution is to use Windows 
To Go, which is discussed with flash drives in the next section. 


As silly as it sounds, bear in mind when taking the exam that an external 
á, TE drive will not boot if it is not found at startup. 


Flash Drives 


Microsoft created Windows To Go (WTG) to allow Windows 8/8.1 to be installed on any 
USB-bootable device: flash drive, external hard drive, and so forth. It is officially included 
only with the Enterprise version, but workarounds can be found on the web to work with 

lesser versions. 

With Windows To Go, an image of the operating system is known as a workspace, and 
you can use BitLocker with WTG to secure the workspace further. WTG works with both 
USB 2.0 and USB 3.0 ports, but it requires USB 3.0 drives. Because of the size of the operat- 
ing system, it is recommended that USB drives used for WTG not be less than 20 GB in size. 
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One exam-worthy note is that WTG does not support operating system upgrades. It 
was created for use by enterprise departments, and there is no current model for upgrading 
WTG in place. 


Solid-State Drives 


Just as Windows 8 can run from USB, internal, and external drives, it can also run on 
solid-state drives (SSDs), as long as they meet the standard minimum requirements for 

size (a minimum of 16 GB, in this case). Microsoft recommends that winsat.exe be used 
with the formal option to optimize Windows for the SSD. (This reduces the number of 
write operations that Windows makes.) Figure 18.15 shows the winsat utility assessing the 
operating system. 


FIGURE 18.15 winsat assessing the operating system 


Alindows Syste 


z B ent ’-anane DWM -time 10 -fbc 10 -disp off -no 
alphaw 2 ght 1024 -winwidth C¢1144> -winheig: €<915> - 
6 delta 3 -nolock’ 
op Graphics Performance 
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> Run Tim 
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-rtde lta -t <1)? 


> Running i D c ent ’-aname Alpha -time 5 -fbc 1@ -disp off -al 
mimate 16 2 totalobj 3090 -batchcnt C¢?75> -objs C<26) -re 
6 a j 1)? 


rformance 


> Running i D As t ’-aname Tex -tinme 5 -fbc 16 ~ off -ani 
mate 10 -width 12 ght 1024 -totalobj 500 -batchcnt CC125> -objs C¢2@) -noa 
ader t ex 10 -texpohj C<4) -rendertotex 6 -rtdelta 3’ 
ng DirectX Texture load Performance 





For more information about the winsat command, visit: 


https: //docs.microsoft.com/en-us/windows/desktop/winsat/ 
using-winsat 


Netboot 


The process of booting the operating system from the network— performing a netboot— 
is commonly done with a thin client. This can be done with Windows 8 using Microsoft 
Desktop Virtualization. This is a useful option for environments where hardware is kept to 
a minimum. 

After using DHCP to obtain network configuration parameters from a server, 
the thin client can locate a PXE boot server to send it the files that it needs to boot. The 
PXE server can be the same server as the DHCP server or a different server dedicated to 
the task. 
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Summary 


This chapter focused on Windows 8/8.1. This is one of the three Windows operating sys- 
tems covered on the exam, and CompTIA expects you to be able to answer questions on 
everything from installing it to managing it. 

We looked at the various editions of Windows 8, how to install it, and the boot options. 
The key system boot files for Windows 8/8.1 are similar to the system boot files for 
Windows 10. 


Exam Essentials 


Know which types of installations are possible with Windows 8/8.1. You should know 
which operating systems can be upgraded to Windows 8 and which require a clean 
installation. 


Understand the difference between the various installations of Windows 8. You should 
know that a clean installation replaces the operating system that was previously there (if 
there was one) and often includes a format. An upgrade, on the other hand, keeps some 
of the existing values, such as user accounts and user files. Also know that unattended 
installations are scripted installations, which do not require user input. 


Know the editions of Windows 8. Windows 8 was released in four different editions: 
Windows 8 (commonly called Core), Windows 8 Pro (similar to Windows 7 Professional 
and Windows 7 Ultimate in terms of features), Windows 8 Enterprise (for volume 
licensing), and Windows 8 RT (for preinstallation on tablets). Windows 8.1 was a second 
release of the Windows 8 operating system. 


Know the Windows 8/8.1 installation methods. You should know the various boot 
methods used for the installation of Windows 8/8.1 (USB, CD-ROM, DVD, and PXE), as 
well as the destination disks that can be used for an installation of Windows 8/8.1. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. When Windows 8 was initially released, what was the interface called? 


A. Starter 

B. Aero 

C. Charm 
D. Metro UI 


2. Which editions of Windows 8 support EFS? (Choose all that apply.) 
A. Enterprise 


B. Pro 
C. RT 
D. Core 


3. What is the minimum amount of hard drive space needed for a 32-bit installation of 
Windows 8? 


A. 16 GB 

B. 20GB 

C. 24GB 

D. 28 GB 

4. Fora 64-bit installation of Windows 8, how much RAM is considered the minimum 

requirement? 

A. 1GB 

B. 2GB 

C. 4GB 

D. 8GB 


5. Which of the following is the online/cloud storage account (to which you can save or move 
files) that comes with your Microsoft account? 


A. eDirectory 
B. Cloud+ 

C. OneDrive 
D. PostBox 


10. 


11. 
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Previous versions of Windows included Windows Explorer. What is this utility called in 
Windows 8? 


A. Finder 

B. OneDrive 

C. File Manager 

D. File Explorer 

Which of the following is an online site, requiring Windows 8 or higher, where you can 
download apps, games, software, and so forth? 

A. Microsoft Store 

B. Windows Easy Transfer 

C. Windows Anytime 

D. Windows Roller 

Which of the following are controls that are available on the side of the screen and consist 
of Search, Share, Start, Devices, and Settings? 


A. Ornaments 


B. Sidecars 

C. Gestures 

D. Charms 

PowerShell script files are based on which programming framework? 
A. API 

B. PHP 

C. .NET 

D. ASP 


Windows 7 Ultimate can be upgraded to which edition of Windows 8? 
A. Enterprise 


B. Pro 
C. RT 
D. Core 


Which tool can evaluate your current system and determine whether it can be upgraded to 
Windows 8? 


A. Windows Compatibility Advisor 
B. Windows Upgrade Wizard 

C. Windows Administrative Tools 
D. Windows Upgrade Assistant 
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12. Which tool from Microsoft simplifies the process of creating a Windows 8 image for 
upgrading multiple machines and reduces the time each installation takes? 


A. MDT 


B. MAP 
C. MAB 
D. WVE 


13. If Windows is installed on a system with multiple hard drives, which tool can be used to 
verify that images are pointing to their intended drives? 


A. GRUB 

B. LILO 

C. diskpart 
D. Sysprep 


14. Which of the following was created to allow Windows 8 to boot from flash drives? 
A. BitLocker 
B. Windows To Go 
C. OneDrive 
D. Load2Go 
15. You are installing Windows 8 on a solid-state drive (SSD). Which of the following can 


be used to reduce the number of write operations Windows makes, thereby optimizing 
Windows for the SSD? 


A. msd tiny 
B. diskpart ssd 
C. winsat formal 


D. mcat now 


16. Which partition contains the hardware-specific files needed to load Windows? 
A. Recovery 
B. Data 
C. Windows 
D. System 


17. 


18. 


19. 


20. 
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Which edition of Windows 8 includes Windows To Go? 
A. Enterprise 


B. Pro 
C. RT 
D. Core 


Which repair option keeps personal files and settings along with the default apps and those 
that you installed from the Microsoft Store? 


A. Reset 

B. Restore 

C. Refresh 

D. Replace 

How many characters are in a Windows 8 product key? 
A. 25 

B. 32 

C. 64 

D. 128 


In a drive path, what does the system partition usually appear as? 
A. A 
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Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answers compare to the authors’, refer 
to Appendix B. 

Your Windows 8.1 installation has been running slow and now you are having issues 
booting the installation. You have several applications from the Microsoft Store that you 
want to keep. What is the best resolution to the problem? List your process to fixing the 
problem. 
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THE FOLLOWING COMPTIA A+ 220-1002 
EXAM OBJECTIVES ARE COVERED IN 
THIS CHAPTER: 


vy 1.2 Compare and contrast features of Microsoft 
Windows versions. 


a Windows 7 


y 1.3 Summarize general OS installation considerations 
and upgrade methods. 


= Boot methods: Optical disc (CD_ROM, DVD, Blu-ray), External 
drive/flash drive (USB/eSATA), Network boot (PXE), Internal 
fixed disk (HDD/SSD) 


= Type of installations: Unattended installation, In-place 
upgrade, Clean install, Repair installation Multiboot, Remote 
network installation Image Deployment, Recovery partition, 
Refresh/restore 


a OS compatibility/upgrade path 


vZ 1.5 Given a scenario, use Microsoft operating system 
features and tools. 


a Administrative 
a Local Users and Groups 
a Local Security Policy 
a System Configuration 
= Component Services 
a Data Sources 
= Print Management 


a Windows Memory Diagnostics 





a MSConfig: Boot 


= System utilities: System Restore 


y 1.6 Given a scenario, use Microsoft Windows Control 
Panel utilities. 


a Windows Firewall 
a HomeGroup 
= Troubleshooting 


a BitLocker 


Y 1.8 Given a scenario, configure Microsoft Windows 
networking on a client/desktop. 


= HomeGroup vs. Workgroup 
= Domain setup 


= Establish networking connections: VPN, Dial-ups, Wireless, 
Wired, WWAN (Cellular) 


= Proxy settings 

= Remote Desktop Connection 

a Remote Assistance 

= Home vs. Work vs. Public network settings 


= Firewall settings: Exceptions, Configuration, Enabling/ 
disabling Windows Firewall 


a Configuring an alternative IP address in Windows: IP 
addressing, Subnet mask, DNS, Gateway 


= Network card properties: Half duplex/full duplex/auto, 
Speed, Wake-on-LAN, QoS , BIOS (on-board NIC) 





In the previous chapters, we looked at more recent Windows 
operating systems. This chapter focuses exclusively on 
: Windows 7—the third of the three Windows operating systems 
that you need to know well for the 220-1002 exam. 

Some of the tools covered in this chapter have been touched on in previous chapters, but 
care has been taken to avoid redundancy whenever possible. Be certain that you know the 
specifics of Windows 7 and how this operating system stands out from its successors. 





Windows 7 Editions 


Windows 7 was released in six different editions, only three of which were made available 
in the retail channel: Windows 7 Home Premium, Windows 7 Professional, and Windows 
7 Ultimate. There is also Windows 7 Enterprise, which offers the same features as Ultimate 
(more than Professional), and is licensed with a Software Assurance contract, also called 
a volume license agreement. Note that Windows 7 Enterprise is not available in the retail 
channel. Windows 7 Starter was created for OEMs to install on netbooks. The sixth edi- 
tion, Windows 7 Home Basic, was marketed only in emerging technology countries. 

Windows 7 was released on July 22nd, 2009, and became a popular operating system 
very quickly. This was mainly because many corporate network administrators skipped 
upgrading to its predecessor, Windows Vista, and upgraded from Windows XP straight to 
Windows 7. However, the fact remains that as of the writing of this book, Windows 7 is 
9 years old. Its mainstream support ended on January 13th, 2015, and its extended support 
is scheduled to end on January 14th, 2020. You may ask yourself, why learn this operating 
system then? The answer is simple: because its wide adoption means Windows 7 will be in 
use way past its extended support date. We’ve seen this trend when Windows XP was the 
dominant operating system and Windows Vista and then Windows 7 was released. We still 
know of organizations that use Windows XP in certain areas of their network that they 
still can’t migrate due the specialized software. 

In addition to the high adoption rate of Windows 7, many of the features introduced 
in Windows 7 are currently supported and have not changed in recent versions of the 
Windows operating system. So the topics covered in this chapter can also be applied to 
current versions of Windows, unless otherwise stated. 


jA More information on the end of Windows 7 extended support can be found at: 
TE https://support.microsoft.com/en-us/help/4057281/ 


windows-7-support-will-end-on-january-14-2020 
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In addition to the six domestic edition of Windows 7, there is a special edition of 
Windows 7 called Windows Media Center. This edition was only supplied as original 
equipment manufacturer (OEM) edition of Windows 7, so it does not fit into the traditional 
editions found in Table 19.1. The edition was customized for specific brands of personal 
computers. The edition provided entertainment center functionality, such as playback of 
video and recording of television (TV) shows, playing digital versatile discs (DVDs), and 
remote control functionality. 

Table 19.1 compares the features of the five domestic editions of Windows 7. 


TABLE 19.1 Windows 7 features and editions 





Maximum Maximum Physical 
RAM CPUs Supported 
Edition Supported (Multiple Cores) Notes 
Starter 2 GB (x86) 1 Lacks support for Aero; cannot join a 


Windows Server domain; no parental 
controls; Remote Desktop client only; 
can join a HomeGroup but not create one 


Home 16 GB 1 Includes support for multi-touch; 

Premium cannot join a Windows Server domain; 
Remote Desktop client only; can join or 
create a HomeGroup 


Professional 192 GB 2 Can join a Windows server domain; 
includes Remote Desktop Server; 
includes EFS; includes Windows XP 
Mode; can create a HomeGroup if the 
computer is not joined to a domain; 
supports offline files/folders and Group 
Policy 


Enterprise 192 GB 2 Includes BitLocker; not available 
in retail or OEM channels (volume 
licensing only); includes Multilingual 
User Interface (MUI); can create a 
HomeGroup if the computer is not 
joined to a domain; supports offline 
files/folders and Group Policy 


Ultimate 192 GB 2 Includes BitLocker; available in retail 
and OEM channels; includes MUI; can 
create a HomeGroup if the computer 
is not joined to a domain; supports 
offline files/folders and Group Policy; 
functionally identical to Windows 7 
Enterprise 
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Encrypting File System (EFS) is available in the Professional, Enterprise, 

4 JTE and Ultimate editions of Windows 7. It allows for the encryption/decryption 
of files stored in NTFS volumes. EFS can be used by all users (whereas 
BitLocker can be turned on only by administrators) and does not require 
any special hardware. While BitLocker benefits from the Trusted Platform 
Module (TPM), it doesn’t need it; it can also be operated using a USB key to 
store the encryption keys. Finally, EFS can encrypt just one file, if so desired, 
whereas BitLocker encrypts the whole volume and whatever is stored on it. 
You can use EFS in conjunction with BitLocker to increase security further. 


Each Windows 7 edition, with the exception of Windows 7 Starter, is available in both 
32-bit and 64-bit versions. Except where indicated, the RAM support in Table 19.1 is for the 
64-bit versions. Microsoft released Windows 7 as a successor to Windows Vista with the key 
goals of overcoming the sluggishness in Vista as well as the incompatibilities with applica- 
tions written for previous versions. 


EZ Some features of the operating system are available, or not available, only 
‘i as certain conditions exist. For example, Parental Controls ceases to be 
available if the workstation is part of a domain. 


Table 19.2 provides a brief description of a number of features associated with Windows 7 
that you should know for the exam. 


P machine, you can click Start and type winver in the search box. The 
resulting About Windows dialog box will identify the edition as well as the 
service pack installed (see Figure 19.1). 


i If you don't know which edition of Windows 7 is running on a particular 


FIGURE 19.1 The About Windows dialog box shows the current operating system and 
service pack. 


d Windows 7 Professional 


Microsoft Windows 

Version 6. 1 (Build 7601: Service Pack 1) 

Copyright © 2009 Microsoft Corporation. All rights reserved. 

The Windows 7 Professional operating system and its user interface are 
protected by trademark and other pending or existing intellectual property 
rights in the United States and other countries. 


This product is licensed under the Microsoft Software License 
Terms to: 


User 
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TABLE 19.2 


Feature 


Windows 7 features 


Significance 





Aero 


Gadgets 


Sidebar 


User Account 


Control (UAC) 


BitLocker 


Shadow Copy 


ReadyBoost 


The Aero interface offers a “glass” design that includes translucent 
windows. It was new with Windows Vista and is available in every 
edition of Windows 7 except Starter. 


These are mini programs, introduced with Windows Vista, which can 

be placed on the Desktop, allowing them to run quickly and personalize 
the PC (clock, weather, and so on). Windows 7 renamed these Windows 
Desktop Gadgets. (Right-click the Desktop, click Gadgets in the context 
menu, and then double-click the one that you want to add.) Microsoft 
has discontinued the download of new gadgets, but the gadgets that are 
packaged with the operating system still work. 


Figure 19.2 shows an example of the gadgets. 


Windows Vista had an area known as the Sidebar that was designed for 
gadgets and could be placed on the Desktop. Windows 7 did away with 
the Sidebar, and the gadgets are now placed directly on the Desktop. 
Interestingly enough, though, sidebar .exe is the program that runs if 
any gadgets are running. 


The UAC is intended to prevent unintentional/unauthorized changes to 
the computer. It does so either by prompting for permission to continue 
or by requiring the administrator password before continuing. Changes 
to this from Windows Vista allow for more granular control over how 
UAC intercedes. 


BitLocker allows you to use drive encryption to protect files, including 
those needed for startup and login. This is available only with 
Windows 7 in the Enterprise and Ultimate editions and is shown in 
Figure 19.3. For removable drives, BitLocker To Go provides the same 
encryption technology to help prevent unauthorized access to the files 
stored on them. 


The Volume Shadow Copy Service creates copies from which you can 
recover, should a file be accidentally deleted or overwritten. Windows 7 
includes an interface for configuring storage used by volume shadow 
copies. The Properties dialog box for a file contains a Previous Versions 
tab that can be used to return to another version of the file. 


ReadyBoost allows you to use free space on a removable drive to 
speed up a system by caching content. In Windows 7, it can work with 
a USB drive, flash memory, SD card, or CompactFlash drive. Up to 
eight devices can employ ReadyBoost in Windows 7 (each needing a 
minimum of 256 MB of free space). ReadyBoost is configured from the 
ReadyBoost tab of the Properties dialog box for the removable media 
device. 


Feature 
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Significance 





Compatibility 
Mode 


XP Mode 


Windows 
Defender 


Windows 
Firewall 


Compatibility Mode is included with Windows 7 to configure programs 
to believe that they are running with an older version of Windows: 
Choose Start > Control Panel > Programs, and then click Run Programs 
Made For Previous Versions of Windows. 


Windows 7 Professional, Enterprise, and Ultimate enable you to run 
applications in Windows XP Mode (XPM), a virtual client (emulating 
Windows XP Professional with Service Pack 3). You must download and 
install Windows Virtual PC to use it. You can download Windows Virtual 
PC from https: //technet.microsoft.com/en-us/library/hh859554 

. aspx? f=255&MSPPError=-2147217396. You should have 2 GB RAM and 
15 GB hard drive space for each virtual Windows instance. 


Windows 7 includes the Windows Defender antispyware program. 
Windows 7 incorporates Windows Firewall, which can be used to stop 


incoming and outgoing traffic. There are only three basic settings: On, 
Off, and Block All Incoming Connections. 


FIGURE 19.2 The default Desktop Gadgets. 





=a: 


= =p a 
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FIGURE 19.3 Windows BitLocker can encrypt files and folders. 











COO [Re > Control Panel » [System and Security | >| BitLocker Drive Encryption =] 4] [ Search Control Panel p] 
Control Panel Hi i i à 
Gian Help protect your files and folders by encrypting your drives 


BitLocker Drive Encryption helps prevent unauthorized access to any files stored on the drives shown below. 
You are able to use the computer normally, but unauthorized users cannot read or use your files. 


What should I know about BitLocker Drive Encryption before Iturn it on? 


BitLocker Drive Encryption - Hard Disk Drives 


ee o 


@ Turn On BitLocker 


BitLocker Drive Encryption - BitLocker To Go 
Insert a removable drive to use BitLocker To Go. 


See also 
@ TPM Administration 
@ Disk Management 


Read our privacy statement 
online 











While several of the items in Table 19.2 are specifically listed in the objectives, you 
should also know the following other key features of Windows 7: 


Jump Lists This is a quick way to access files that you’ve been working on through their 
association with the application that has been using them. Right-click the application and a 
list of current files appears. 


Pinning to the Taskbar The context menu for each application allows you to choose 
whether you want to pin (add) it to the taskbar or remove it if it is already there. 


Windows Taskbar The taskbar has been redesigned to include thumbnail previews. 


Snap Also known as Aero Snap, this is a quick way to resize windows on the Desktop and 
work with side-by-side apps. Windows will remember the sizes and locations of the apps 
and enable you to work with them much simpler than was possible in the past, allowing for 
true side-by-side multitasking. 


HomeGroup This is a simplified way to set up a home network. HomeGroup allows you 
to share files and prevents changes from being made to those files by those sharing them 
(unless you give them permission to do so). 


Windows Search The Windows Search feature allows you to instantly find anything on 
your PC, as soon as you start typing into the search box. 
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A Word about Upgrades 


At some point, you could find yourself upgrading from Windows Vista to Windows 7. (Recall 
from Chapter 17 “Working with Windows 10” that upgrading to Windows 10 requires at least 
Windows 7.) As you prepare for the exam, make sure you know the differences between the 

following three items: 


= İn place upgrade—This is when the upgrade is done without removing the existing 
operating system (the opposite on a clean install). 


a Compatibility tools—These are used to keep legacy applications thinking they are 
running on a previous version of the operating system after you've upgraded. 


= Windows upgrade advisors—These are Microsoft utilities—called either Upgrade 
Advisor (Windows 7) or Upgrade Assistant (Windows 8/8.1)—that check your current 
configuration and report what you need to take into account (update, abandon, etc.) 
before upgrading to a newer OS. 


The Windows 10 Update Assistant is used to help you upgrade from Windows 7 and 
Windows 8/8.1 to Windows 10. The Windows 10 Update Assistant will download the 
necessary files and upgrade your operating system to Windows 10. 





Windows Touch This feature adds touch screen functionality to the operating system, 
allowing you to make selections without using a keyboard or mouse. 


Libraries You can logically (as opposed to physically) group files and folders that are not 
in the same location and make them appear as if they are. For example, suppose that you 
have to rewrite four chapters of a book. There can be one chapter stored in a folder beneath 
C:\BOOK, another beneath C:\REWRITES, and images beneath C: \USERS\PUBLIC\PICTURES, 
and all can be grouped into a library so that when you open C:\A_PLUS, all the entities 
appear to be beneath it. 








© Real World Scenario 
ReadyBoost or ReadyDrive? 


In addition to ReadyBoost, Windows offers a similar technology: ReadyDrive. You are 
not required be familiar with ReadyDrive for the exam, but it’s a feature worth knowing 
about. Included with Windows 7, ReadyDrive is the acceleration technology used with 
hybrid hard disk drives (H-HDD) that combines flash drives and traditional hard drives for 
faster disk performance. 


There have been problems with ReadyDrive. For example, when the first partition is 
small, the hybrid drive is not recognized. 


When the technology works, the results are nothing short of impressive. When it does not 
work, however, its absence can be noticeable. 
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Installing Windows 7 


Like every operating system, Windows 7 requires more (newer, better, and so forth) hardware 
than the previous version. If you are planning to install Windows 7 on an older machine, 

you will want to verify that you can do so before you start. Make sure that the hardware on 
which you plan to install Windows 7 can support the OS. 








Checking Hardware Compatibility 


The easiest way to see if your current hardware can run Windows 7 is to download and 
run the Windows 7 Upgrade Advisor, available at: 


http: //windows.microsoft.com/en-US/windows/downloads/upgrade-advisor 





If you are installing an operating system on more than one computer, it is always 
worth the effort to master an automated tool that can simplify this process. In the case of 
Windows 7, Microsoft released the Microsoft Assessment and Planning (MAP) Toolkit, 
which can be downloaded from the Microsoft Download Center (www.microsoft.com/ 
downloads). 

The MAP Toolkit was originally released to support Windows 7 but now supports all 
operating systems up to Windows 10. Using this tool, you can get an inventory of comput- 
ers on your network and plan a rollout of this operating system. The current version of 
MAP (9.9) requires a dual core 1.5 GHz or faster processor, 2 GB of RAM, 1 GB of free 
hard drive space, a network adapter card, and a graphics adapter that supports 1024x768 
or higher resolution. 

Windows 7 can be installed as an upgrade or a clean installation, which is accom- 
plished with the Custom option (think custom = clean). When you choose Custom, you 
can choose whether or not to format the hard disk. If you choose not to format the hard 
disk, the old operating system is placed in a folder called WINDOWS. OLD. If you choose to 
format the hard disk, the Custom option will erase your files, programs, and settings. 
On a standard, default installation, the \BOOT directory on the System Reserved partition 
holds the boot file configuration for Windows. This partition is not accessible from the 
operating system by default but can be seen in the Disk Management tool, as shown in 
Figure 19.4 

The installation can be started from an installation disc or from a download 
(preferably to a USB drive). If the installation does not begin immediately on bootup, 
look for the setup.exe file and run it. When the Install Windows page appears, click 
Install Now. 
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FIGURE 19.4 Windows 7 default disk layout 
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You'll be asked if you want to get any updates (recommended) and to accept the license 
agreement. After you’ve done so, choose Custom (advanced) for the installation type and 
specify where you want to install Windows. (C: is the most common location.) Follow the 
steps to walk through the remainder of the installation. It is highly recommended that after 
the installation is complete, you run Windows Update to get the latest system updates and 
drivers. 

You will need to activate Windows 7 with a valid 25-digit product key. Activation is 
required, but registration is not. You have 30 days in which to do the activation; otherwise, 
Windows 7 will enter into reduced functionality mode (RFM). Reduced functionality mode 
will nag you between switching applications, limit Windows Update, and display a message 
stating, “This copy of windows is not genuine” on your Desktop wallpaper. All that you 
truly need to complete the process is a valid product key. 


Upgrading to Windows 7 


If you want to do an upgrade instead of a clean installation, then review the upgrade 
options in Table 19.3. (Note that a “No” does not mean that you can’t buy the 
upgrade version of Windows 7, but rather that you can’t keep your files, programs, 
and settings.) 
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TABLE 19.3 Windows 7 upgrade options 


Windows7 Windows 7 





Existing Home Home Windows7 Windows7 Windows7 Windows 7 
Operating Premium Premium Professional Professional Ultimate Ultimate 
System 32-bit 64-bit 32-bit 64-bit 32-bit 64-bit 
Windows XP No No No No No No 
Windows Vista No No No No No No 
Starter 32-bit 

Windows Vista No No No No No No 
Starter 64-bit 

Windows Vista Yes No No No Yes No 
Home Basic 

32-bit 

Windows Vista No Yes No No No Yes 
Home Basic 

64-bit 

Windows Vista Yes No No No Yes No 
Home Premium 

32-bit 

Windows Vista No Yes No No No Yes 
Home Premium 

64-bit 

Windows Vista No No Yes No Yes No 
Business 32-bit 

Windows Vista No No No Yes No Yes 
Business 64-bit 

Windows Vista No No No No Yes No 
Ultimate 32-bit 

Windows Vista No No No No No Yes 


Ultimate 64-bit 


There are additional versions of Windows Vista that are not shown in Table 19.3 
because they do not offer an upgrade to Windows 7—that is, you must buy the full ver- 
sion of Windows 7. An easy way to remember the upgrade options is that you must have 
at least Windows Vista in order to be able to upgrade to Windows 7. In the real world, the 
Windows Vista machine should be running Service Pack 1 at a minimum, and you can 
always take an earlier OS and upgrade it to Vista SP1 and then upgrade to Windows 7. 
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What Is the Latest Version of Windows 7? 


As of this writing, Service Pack 1 is the latest available service pack for Windows 7, 
Service Pack 2 is the latest available for Windows Vista, and Windows 8.1 is the latest 
update available for Windows 8. You can find the latest service packs at: 


https: //support.microsoft.com/en-us/help/14162/ 
windows-service-pack-and-update-center 


In the past, all service packs had been cumulative, meaning that you needed to load 

only the last one. Starting with Windows XP SP3, however, all Windows service packs 
released have been incremental, meaning that you must install the previous one(s) before 
you can install the new one. 


Windows 10 has abandoned the concept of service packs and adopted the concept of 
updates. For more information, refer to Chapter 17, “Working with Windows 10.” 





Microsoft created the Windows 7 Upgrade Advisor to help users upgrade to this operating 
system. You can download the advisor from: 


http: //windows.microsoft.com/en-US/windows/downloads/upgrade-advisor 

The Upgrade Advisor will scan your hardware, devices, and installed programs for any 
known compatibility issues. When it finishes, it will give you advice on how to resolve the 
issues found and recommendations on what to do before you upgrade. The reports are 


divided into three categories: System Requirements, Devices, and Programs. Figure 19.5 
shows the opening screen. 


FIGURE 19.5 The opening screen of the Windows 7 Upgrade Advisor 


sa Windows 7 Upgrade Advisor 





£ Windows 7 


Checking compatibility... 


This will take a few minutes. 


While we're checking your PC, you can visit these websites: 


Go online to learn more about Windows 7 Go online to get compatibility information 
Explore features and choose which edition of Windows 7 Browse and find compatibility information on programs 
is best for you. and devices at the Windows 7 Compatibility Center. 
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Figure 19.6 shows an example of a report generated by the Windows 7 Upgrade Advisor. 
FIGURE 19.6 A sample report generated by the Windows 7 Upgrade Advisor 
Jd Windows 7 Upgrade Advisor re} 


Your computer can run Windows 7 lal Save Report m Print 








System Details 


va 4 system requirements passed 


See all system requirements 


Devices 


af 4 devices listed as compatible 
See all devices 


Programs Status Details 


Jf 2 programs listed as compatible 
See all programs 


Looking for compatibility information about other programs and devices? 
Visit the Windows 7 Compatibility Center 





[Start again | | Close 

















After all incompatibilities have been addressed, the upgrade can be started from an 
installation disc or from a download (preferably a USB drive for speed). If the setup routine 
does not begin immediately on bootup, look for the setup.exe file and run it. When the 
Install Windows page appears, click Install Now. 

You'll be asked if you want to get any updates (recommended) and to accept the license 
agreement. After you’ve done so, choose Upgrade for the installation type and follow the 
steps to walk through the remainder of the installation. It is highly recommended that after 
the installation is complete, you run Windows Update to get the latest drivers. 


In-Place vs. Side-by-Side Upgrades 


You can upgrade to Windows 7 two different ways. The first (and most common) way is 
called an in-place upgrade. An in-place upgrade will upgrade the current operating sys- 
tem to Windows 7. Before performing an in-place upgrade, be sure to back up your data, 
because if something goes wrong, the current operating system will be affected. The second 
way, called a side-by-side upgrade, is less common, unless you are rolling out Windows 7 
via an upgrade to a number of computers. A side-by-side upgrade requires a second com- 
puter that is upgraded, leaving the original operating system untouched. After the computer 
is upgraded, a migration of data is required from the original operating system to the newly 
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upgraded Windows installation. Then the original computer can be repurposed for the next 
upgrade. Side-by-side upgrades are also common when upgrading to new hardware along 
with a newer version of the operating system. 

The User State Migration Tool (USMT) allows you to migrate users’ file settings 
related to the applications, Desktop configurations, and accounts. Version 5.0 works 
with Windows 7, but it is currently only available as part of the Windows Automated 
Installation Kit (WAIK). Although USMT is not part of the CompTIA objectives for the 
220-1002 exam, you should know about it because the migration of user information is a 
component of an upgrade. 


_ For additional information about the USMT requirements, visit: 
Ore https: //technet.microsoft.com/en-us/library/hh824913.aspx 


USMT is not required if you are simply migrating from one OS to another. It is invalu- 
able, however, for large deployments. Of course, you also don’t need to use USMT if you 
chose the Upgrade option and are doing an in-place upgrade, because user files and applica- 
tions are preserved. 

If you are migrating only a few accounts, Microsoft recommends using Windows Easy 
Transfer (WET) instead of USMT. When you're transferring to Windows 7, a version of 
Windows Easy Transfer can be downloaded in either 32-bit or 64-bit versions for Windows 
Vista from www. microsoft.com/downloads. 


P ber of accounts, and WET would be used if you were transferring only a 
few accounts. The Windows Upgrade Advisor can check your current con- 
figuration and report what you need to take into account (update, abandon, 
etc.) before upgrading to a newer OS. 


w Given a scenario, USMT would be used when you need to migrate a num- 


Upgrading Editions of Windows 7 


Windows 7 had the ability to upgrade at any time from one edition of the operating system 
to a higher one (for example, from Home Premium to Professional) using the Windows 
Anytime Upgrade utility in Control Panel. The Windows Anytime Upgrade utility no lon- 
ger functions, because Windows 7 is no longer sold as a current product. 


Installation/Upgrade Boot Options 


You can begin the installation or upgrade process by booting from a number of sources. 
You should be familiar with three in particular: optical disc (CD-ROM, DVD, Blu-ray), 
USB flash drive, and network boot (PXE). The one most commonly used for an attended 
installation is the CD-ROM/DVD/Blu-ray boot. (They are identical in functionality.) 
Because Windows 7 comes only on DVD, however, the CD-ROM option applies to older 
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operating systems. You can boot a PC over the network (rather than from a DVD, USB/ 
eSATA, or hard disk) with Windows Preinstallation Environment (WinPE), a stub operat- 
ing system that creates a Pre-boot Execution Environment (PXE). 


P It’s important to note that although Blu-ray appears in the CompTIA objec- 

A: tives for 220-1002. The CompTIA objectives for exam 220-1002 describe the 
type of optical disc player, not the installation media. Although you can cre- 
ate bootable media for a Windows installation on Blu-ray media, it is very 
uncommon. The same is true for eSATA installations as media. You can put 
the installation on an eSATA hard drive and boot from it, but it is uncom- 
mon. However, eSATA ports often have the dual functionality of both USB 
and eSATA. So the key takeaway is that a USB drive can be plugged into an 
eSATA port and booted when installing, if the port supports USB. 


WinPE can be installed onto a bootable CD, USB, or network drive using the copype . cmd 
command from the Windows Automated Installation Kit (WAIK). This can be used in con- 
junction with a Windows deployment from a server for unattended installations and image 
deployments. It is also used to host the Windows Recovery Environment (WinRE). Image 
deployment is covered in Chapter 17, “Working with Windows 10.” The processes and tech- 
niques used for image deployment are identical for Windows 7. 

As we discussed with the other operating systems, you want to make certain that you 
use the latest driver software and Windows Updates that are applicable for the operating 
system you are running. This can solve a great many problems with security holes and 
compatibility issues. Make certain, as well, that the boot drive is properly formatted and 
partitions are correct for your desired setup. Remember that a recovery partition, factory 
or otherwise, can be used to recover the operating system in the event of a failure. 


A repair installation is another type of installation that can repair your 

~<a computer while retaining applications, settings, and personal data. You 
can start the repair installation from within Windows 7 by inserting the 
media and double-clicking setup.exe. The Windows 7 setup program will 
ask which type of installation you want, Upgrade or Custom (clean instal- 
lation). The Upgrade option will retain all programs, settings, and personal 
files, while reinstalling the operating system. 


Booting the Windows 7 
Operating System 


Windows 7 is commonly booted from an internal fixed disk, such as a conventional hard 
disk drive (HDD) or solid-state drive (SSD). You should know how to recognize common 
problems with the OS and make certain that it is booting correctly. 
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Multiboot Installations 


Windows 7 can be installed in a multiboot installation, in which several other operating 
systems coexist on the same physical computer. When this installation scenario exists, the 
operating systems are installed in separate partitions. The BOOTMGR manages how the 
partition is booted, and the proper operating system is booted by default. We will discuss 
the BOOTMGR further in this section. 

The rule of thumb when creating a multiboot installation is that the oldest operating sys- 
tem is installed first, and then the newer operating system. A newer operating system will 
better understand how to boot with the older operating system. For example, if Windows 8 
was installed and then Windows 7 was installed, the Windows 7 installer might not know 
how to address the Windows 8 partition for booting. 

You can choose the default operating system from either the Startup and Recovery 
options in the System Properties, as shown in Figure 19.7, or from the Boot tab in the 
msconfig.exe utility, as shown in Figure 19.8. The Startup and Recovery options can be 
accessed by clicking the Start, then right clicking Computer and selecting Properties, then 
click Advanced System Settings on the left side of the dialog, finally click Settings under the 
Startup and Recovery section. 


FIGURE 19.7 Windows 7 Startup and Recovery in the System Properties 





r 7 
Startup and Recovery ee x 





System startup 
Default operating system: 
[Windows 7 z 








[F] Time to display list of operating systems: 30 +$ seconds 
[E] Time to display recovery options when needed: 30 — seconds 


System failure 
[7] Write an event to the system log 
[F] Automatically restart 
Write debugging information 
[ Kernel memory dump X 








Dump file: 
%SystemRoot%\MEMORY.DMP 


[F] Overwrite any existing file 
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FIGURE 19.8 Windows 7 Boot tab in the msconfig utility 
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Key Boot Files 


Windows 7 requires only a few files, each of which performs specific tasks. The boot pro- 
cess is identical to the prior operating system, Windows Vista, and Windows 7’s successor, 
Windows 8/8.1. They are discussed next in the order in which they load: 


bootmgr The Windows Boot Manager (bootmgr) bootstraps the system. In other words, 
this file starts the loading of an operating system on the computer. 


BCD The Boot Configuration Data (BCD) holds information about operating systems 
installed on the computer, such as the location of the operating system files. 


winload.exe The program used to boot Windows 7. It loads the operating system ker- 
nel (ntoskrnl.exe). 


winresume.exe Ifthe system is not starting fresh but resuming a previous session, then 
winresume.exe is called by the BOOTMGR. 


ntoskrnl.exe ntoskrnl.exe is the Windows operating system executive kernel that is 
responsible for core services for the operating system. 


System Files In addition to the previously listed files, Windows needs a number of files 
from its system directories (for example, SYSTEM and SYSTEM32), such as the hardware 
abstraction layer (hal.d11), session manager (smss.exe), user session (winlogon.exe), and 
security subsystem (lsass.exe). 
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A number of features make Windows 7 notable. In the following sections, we will focus on 
the tools that you need to know for the A+ exam. The tools that stand out in Windows 7 


include System Restore, Windows Defender, Windows Firewall, and Action Center. 


System Restore 


Chapter 15, “Operating System Basics,” explored System Restore as it appears in the current 
version of Windows. This section will focus on the Windows 7 version of System Restore, 


which is almost identical. System Restore allows you to restore the system to a previous 
point in time. To access System Restore, choose Start > All Programs > Accessories > 


System Tools > System Restore. You use System Restore to roll back as well as to create a 


restore point. 


Figure 19.9 shows the opening dialog box. A restore point is automatically created 
when applications are installed, updates are installed, and drivers are installed. If no 


restore points have been created in the past 7 days, Windows will automatically generate a 


restore point. 


FIGURE 19.9 System Restore in Windows 7 


É ) System Restore = 











Restore system files and settings 


System Restore can help fix problems that might be making your 
computer run slowly or stop responding. 


System Restore does not affect any of your documents, pictures, or 
other personal data. Recently installed programs and drivers might be 
uninstalled. {s thi S revi 4 














Restore points can be created manually with the process: 


1. Inthe System Properties under the System Protection tab, click Next, pick a restore 


point to return to, as shown in Figure 19.10. 
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FIGURE 19.10 Choosing a restore point in Windows 7 


— 
© System Restore 





Restore your computer to the state it was in before the selected event 


How do I choose a restore point? 


Current time zone: Eastern Daylight Time 





Date and Time Description 
9/2/2018 6:34:39 PM | Automatic Restore Point 











[E] Show more restore points Scan for affected programs 








(cones) 














2. Click Next, and then click Finish on the confirmation screen. 


It will prompt you one more time with a Yes or No dialog box. 
3. Choose Yes to restart the computer and begin the restore point process. 


Choosing No will allow you to exit out of the restore point selection. 


Windows Defender 


Windows Defender, included with all versions of Windows 7, can identify spyware. To 
access Windows Defender, choose Start > Control Panel > Windows Defender. As with 
similar programs, in order for Windows Defender to function properly, you need to keep 
the definitions current and scan on a regular basis. Windows Defender can scan your com- 
puter for spyware as shown in Figure 19.11. 


Windows Firewall 


Windows Firewall is used to block access from the network. To access Windows Firewall, 
choose Start > Control Panel > Windows Firewall. In Windows 7, Windows Firewall is 
divided into separate settings: for private networks, public networks, and domain networks 
(if you’re connected to a domain). In Figure 19.12, we can see that we are configuring the 
Home or Work (Private) Network. If you are using Category view in the control panel, 
instead of Small/Large Icons option, then you will need to click System and Security before 
going to the Firewall applet. 
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FIGURE 19.11 Windows Defender 


J® Scan|~ @® History S Tools (2) |~ 


Protection against spyware and potentially unwanted software 


SS 
e Scanning your computer... 





This might take a few minutes. 


Scan type: 
Start time: 
Time elapsed: 


Quick scan 
10:54 PM 
00:00:05 


Resources scanned: 8065 


Resource: 


C:\Windows\system32\wucltux.dil 





FIGURE 19.12 Windows Firewall in Windows 7 
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=~ 
OO: e > Control Panel » System and Security » Windows Firewall 


~ [44] Search Control Panel 





Control Panel Home 


Allow a program or feature 
through Windows Firewall 


@ Change notification settings 


@ Turn Windows Firewall on or 
off 


E Restore defaults 
(® Advanced settings 
Troubleshoot my network 


See also 
Action Center 
Network and Sharing Center 








Help protect your computer with Windows Firewall 


Windows Firewall can help prevent hackers or malicious software from gaining access to your computer 
through the Internet or a network. 








How does a firewall help prot 


What are network locations? 
ig Home or work (private) networks Connected (a) 


Networks at home or work where you know and trust the people and devices on the network 





Windows Firewall state: On 


Block all connections to programs that are not on the 
list of allowed programs 


lin Network 


Incoming connections: 


Active home or work (private) networks: 


Notification state: Notify me when Windows Firewall blocks a new 
program 


Not Connected © 




















While host-based firewalls are not as secure as other types of firewalls, Windows 


Firewall provides much better protection than in previous versions of Windows, and it is 
turned on by default. It is also included in the Security component of the Action Center 
(discussed in the next section) and can be tweaked significantly using the advanced settings. 
Once you click Advanced Settings, Windows Firewall with Advanced Security opens (see 


Figure 19.13). 
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FIGURE 19.13 Windows Firewall with Advanced Security in Windows 7 


Windows Firewall with Advanced Security on Local Computer 


a 








a Windows Firewall with Advanced Security provides network security for Windows computers. 





Overview 

Domain Profile 

@ Windows Firewall is on. 

© inbound connections that do not match a rule are blocked. 
iv} Outbound connections that do not match a rule are allowed. 


Private Profile is Active 

@ Windows Firewall is on. 

98 Inbound connections that do not match a rule are blocked. 
© Outbound connections that do not match a rule are allowed. 


m 


Public Profile 

@ Windows Firewall is on. 

© Inbound connections that do not match a rule are blocked. 
© Outbound connections that do not match a rule are allowed. 


E Windows Firewall Properties 








Getting Started 


Authenticate communications between computers 


Create connection security rules to specify how and when connections between computers are authentic 
protected by using Intemet Protocol security (IPsec). 


8 Connection Security Rules 


View and create firewall rules 


Create firewall rules to allow or block connections to specified programs or ports. You can also allow a co 
it is authenticated, or if it comes from an authorized user, group, or computer. By default, inbound connec 
blocked unless they match a rule that allows them, and outbound connections are allowed unless they m: 
blocks them. 














Here you can configure inbound and outbound rules as well as import and export 
policies and monitor the security of your system. Monitoring is not confined to the fire- 
wall; you can also monitor security associations and connection security rules. In short, 
Windows Firewall with Advanced Security is an incredibly powerful tool that builds on 
what Windows Vista started. Not only can this MMC snap-in do simple configuration, but 
it can also configure remote computers and work with Group Policy. 

Firewall logging is not on by default in Windows 7. In Exercise 19.1, we will look at the 
firewall log settings in Windows 7 and turn them on. 


Turning On Windows 7 Firewall Logs 
1. From the Start menu, choose Control Panel > System and Security > Windows Firewall. 
2. Click Advanced Settings. 


3. Right-click Windows Firewall with Advanced Security On Local Computer, and then 
choose Properties under Actions on the right side. 
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4. Click Customize beneath Logging to open the Customize Logging Settings for the 
Domain Profile dialog box, as shown in Figure 19.14. 


Note that unless your computer is connected to a domain, the logging option will 
have no effect. 


FIGURE 19.14 Windows Firewall custom logging options 
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Getting Started 





Authenticate communications between computers 


Create connection security rules to specify how and when connections between computers are authentic 
Protected by using Intemet Protocol secunty (IPsec). 





E Connection Security Rules 


View and create firewall rules 


Croate frowall des to alow or block connections to specified programs ot pots You can also alow a co 

or É t comes from an authorized user, group, or computer. By default, inbound connec 
iaar ar onde nee, ‘and outbound connections are allowed unless they m: 
blocks them. 



































5. Change the setting for Log Dropped Packets to Yes. This will log information about 
why and when a packet was dropped. 


Note that you can also elect to change the setting on Log Successful Connections, 
but that can create quite a few more entries, and you'll need to check the log files 
more often; it logs why and when a connection was allowed. 


6. Change Size Limit from the default of 4,096 KB to 8,192 KB. 
Note that this value is limited to sizes between 1 KB and 32,767 KB. 
7. ClickOK. 


As they occur, the events can be found in Event Viewer beneath Applications 
and Services Logs. (Choose Microsoft > then Windows > Windows Firewall with 
Advanced Security.) 
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Exceptions 


Exceptions are configured as variations from the rules. Windows Firewall will block incom- 
ing network connections except for the programs and services that you choose to allow 
through. For example, you can make an exception for Remote Assistance to allow commu- 
nication from other computers when you need help. (The scope of the exception can be set to 
allow any computer, only those on the network, or computers from a custom list of allowed 
addresses that you create.) Exceptions can include programs as well as individual ports. 


Configuration 


Most of the configuration is done as network connection settings. You can configure both 
Internet Control Message Protocol (ICMP) and Services settings. Examples of ICMP set- 
tings include allowing incoming echo requests and allowing incoming router requests and 
redirects. Examples of services often configured include FTP Server, Post Office Protocol 
Version 3 (POP3), and Web Server (HTTP). 


Enabling/Disabling Windows Firewall 


In Windows 7, clicking Turn Windows Firewall On or Off on each profile tab in the 
Windows Firewall applet, gives you control over the firewall for each location. While it 

is possible to choose to turn off Windows Firewall, it is not recommended. You can also 
toggle to block all incoming connections and to be notified when Windows Firewall blocks 
a new program. 


Action Center 


The Windows 7 Action Center allows you to view security and maintenance settings. In 
Windows 10, it has been renamed to Security Maintenance. You can access Action Center 
by clicking Start > Control Panel > Action Center. The interface (shown in Figure 19.15) 
still includes security settings, but it has been expanded to include maintenance issues, such 
as problem reports and backup settings. 

The Security settings show the status of, and allow you to configure, the fire- 
wall, Windows Update, virus protection, spyware and unwanted software protection, 
Internet security settings, UAC, and network access protection. The solutions portion of 
Maintenance rolls in the problem reporting features from earlier versions of Windows. In 
Windows 7, there are four error-reporting options: 


= Automatically check for solutions (recommended). 

= Automatically check for solutions and send additional data, if needed. 
= Fach time a problem occurs, ask me before checking for solutions. 

=» Never check for solutions (not recommended). 


The setting that you want can be configured in Problem Report Settings (under 
Maintenance, click Settings). The administrator can choose to set one universal setting for 
the machine (not the default) or allow each user to make their own setting (the default), as 
shown in Figure 19.16. 
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FIGURE 19.15 Action Center in Windows 7 
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Control Panel Home 


Review recent messages and resolve problems 


Change Action Center settings Action Center has detected one or more issues for you to review. 


@ Change User Account Control 


settings Secu rity 
View archived messages 


View performance information Virus protection (Important) 


Turn off messages about virus protection 


Windows Update (Important) 
Turn off messages about Windows Update 


jaintenance 


Set up backup 
Your files are not being backed up. 


Turn off messages about Windows Backup 


Check for solutions to problem reports On 


Check for solutions | Privacy policy | Settings | View reliability history 
See also 


Backup and Restore Backup Not set up 
Windows Update Your files are not being backed up. 


Windows Program . 
Compatibility Troubleshooter Check for updates No action needed 


Windows Update does not require any action. 





K à = F Find a program online 
Windows did not find antivirus software on this computer. 


Windows Update is not set up for this computer. Shang ga 


(Set up backup 


@- 











FIGURE 19.16 Configuring Windows error-reporting options in Windows 7 
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Choose when to check for solutions to problem reports 


When you send problem reports to Microsoft, you will receive solutions when they are available. You can 
adjust how much information is sent. 
What information is sent? 


© Automatically check for solutions (recommended) 

© Automatically check for solutions and send additional report data, if needed 
ach time a problem occurs, ask me before checking for solutions 

Never check for solutions (not recommended) 





Change report settings for all users 
Select programs to exclude from reporting 
Read the Windows Error Reporting privacy statement online 
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Windows 7 Administrative Tools 


Windows 7 includes a number of system tools that you need to know for the exam. 
These administrative tools were discussed in Chapter 16, “Operating System 
Administration,” but we focused on Windows 10. In this section, they will be discussed 
as they pertain to Windows 7 and will appear in the order they appear in the objectives. 
This is to include Windows Firewall with Advanced Security, previously covered in this 
chapter. 


Local Users and Groups 


You can use Computer Management to access Local Users and Groups. As an administra- 
tor, you can also configure the users and groups on a system in the Microsoft Management 
Console (MMC). Click Start, type MMC in the search box, and press Enter. If Local Users 
and Groups is not visible in the left pane, choose File > Add/Remove Snap-in, select Local 
Users and Groups from the list of possible snap-ins, and then click Add (or double-click 

it). You can choose to manage the local computer or another computer (requiring you to 
provide its address). Figure 19.17 shows the default groups and explanations for each. The 
built-in groups for a domain are a superset of this set. 


FIGURE 19.17 Default groups in Windows 7 


Æ Computer Management 





File Action View Help 
es ¿Anae bh 


Æ Computer Management (Local) Name Description 





a ü System Tools # Administrators Administrators have complete an... 
é © TER Sctewulet E Backup Operators Backup Operators can override se... 
RA Æ Cryptographic Operat.. Members are authorized to perfor. 
å E3 LocallUsensand Groups Z Distributed COM Users Members are allowed to launch, a... 
BB) Users Æ Event Log Readers Members of this group can read e... 
©) Groups Æ Guests Guests have the same access as mM... 
® parerent ZÆ ISUSRS Built-in group used by Internet Inf... 
Ay Device Manager Æ Network Configuratio... Members in this group can have s... 
4 &3 Storage Z Performance Log Users Members of this group may sche... 
{=P Disk Management Ss Performance Monitor ... Members of this group can acces... 
Ely Services and Applications Æ Power Users Power Users are included for back... 
@® Remote Desktop Users Members in this group are grante... 
Æ Replicator Supports file replication in a dom... 
E Users Users are prevented from making ... 


More Actions 


























Local Users and Groups is not available for Windows 7 editions lower than 
Professional. In all other editions, you must manage user accounts using the User 
Accounts applet in Control Panel, and you cannot create or manage groups. The default 
users created are Administrator, Guest, and the administrative account created during 
the install. 
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Local Security Policy 


Local Security Policy (choose Start > Run and then enter secpol.msc) allows you to set 
the default security settings for the system. This feature is not available for Windows 7 in 
any editions other than Windows 7 Professional, Windows 7 Ultimate, and Windows 7 
Enterprise. Figure 19.18 shows the utility. A scenario in which you would use this tool is 
when you want to change the default system settings for many security-related features hid- 
den deep within the Registry. 


FIGURE 19.18 Local Security Policy in Windows 7 


& Local Security Policy 





File Action View Help 
@9 (Xela 


| Es Security Settings | Name Description 
EÀ Account Policies | 

> DÀ Local Policies | 
b © Windows Firewall with Advanced Security | 
E Network List Manager Policies | 

| 








TÀ Account Policies Password and account lockout policies 

TÀ Local Policies Auditing, user rights and security options polici... 
E Windows Firewall with Advanced Security Windows Firewall with Advanced Security 

E] Network List Manager Policies Network name, icon and location group policies. 





E Public Key Policies 


> [El Software Restriction Policies M PublicKeyPolicies, 
> E Application Control Policies E] Software Restriction Policies 


. 8 IP Security Policies on Local Computer E Application Control Policies Application Control Policies 
E Advanced Audit Policy Configuration | 2 IP Security Policies on Local Computer Internet Protocol Security (IPsec) Administratio... 
|| D Advanced Audit Policy Configuration Advanced Audit Policy Configuration 











The following sections examine some of the Security Settings choices. 


Account Policies 


Account Policies further divides into Password Policy and Account Lockout Policy. The fol- 
lowing choices are available under Password Policy: 


Enforce Password History This allows you to require unique passwords for a certain 
number of iterations. The default number is 0, but it can go as high as 24. 


Maximum Password Age The default is 42 days, but values range from 0 to 999. 


Minimum Password Age The default is 0 days (the password can be changed immedi- 
ately), but values range from 0 to 998. 


Minimum Password Length The default is 0 characters (meaning no passwords are 
required), but you can specify a number up to 14. 


Password Must Meet Complexity Requirements The default is disabled. When this is 
turned on, the password must include at least three of the following elements: uppercase 
characters, lowercase characters, numerical characters, non-alphanumeric characters, and 
Unicode characters. 
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Store Password Using Reversible Encryption The default is disabled. When enabled, it 
provides support for applications that require knowledge of the password. 


Because the likelihood of laptops being stolen always exists, it’s strongly encouraged that 
you use good password policies for this audience and security locks. Here’s an example: 


a Enforce Password History—8 passwords remembered 
a Maximum Password Age—42 days 

a Minimum Password Age—3 days 

= Minimum Password Length—6-8 characters 


The default for domain machines is that complexity requirements be enabled. It is a 
good idea, and accepted practice, to do so. 


Account Lockout Policy 
The Account Lockout Policy setting is divided into the following three values: 


Account Lockout Duration This is a number of minutes ranging from 1 to 99999. A value 
of 0 is also allowed here, signifying that the account never unlocks itself—administrator 
interaction is always required. 


Account Lockout Threshold This is the number of invalid attempts before lockout occurs. 
The default is 0 (meaning that the feature is turned off). The settings for invalid attempts 
range from 1 to 999. A number greater than 0 changes the values of the two associated 
options to 30 minutes; otherwise, they are “not defined.” 


Reset Account Lockout Counter After This is a number of minutes, ranging from 1 to 
99999, that each failed login attempt remains on the counter. 


When you’re working with a mobile workforce, you must weigh the choice of users call- 
ing you in the middle of the night when they’ve forgotten their password against keeping 
the system from being entered if the wrong user picks up the laptop. A good recommenda- 
tion for a medium-to-low security environment may be to use a lockout after five attempts 
for a period of time between 30 and 60 minutes. 


Local Policies Settings 
The Local Policies section is divided into the following three subsections: 


Audit Policy The Audit Policy section contains nine settings; the default value for each is 
No Auditing. Valid options are Success and/or Failure. The Audit Account Logon Events 
entry is the one you should consider turning on for mobile users to see how often they 

log in and out of their machines. When auditing is turned on for an event, the entries are 
logged in the Security log file. 


User Rights Assignment User Rights Assignment has many options, most of which are 
self-explanatory. Not Defined indicates that no one is specified for this operation. You can 
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add groups and users. If you want to remove users or groups from the list, use the Remove 
button. The Power User group has no more rights than a Standard user in Windows 7; the 
group has only been left to provide backward compatibility. 


Security Options The Security Options section includes many options, most of which are 
Registry keys. The default for each is usually Not Defined. 


System Configuration 


The System Configuration tool (msconfig.exe) in Windows 7 has gone unchanged since 
its introduction in Windows XP. Even today with Windows 10, it looks basically the 
same. The five tabs it contains in Windows 7 are General, Boot, Services, Startup, and 
Tools. These tabs were discussed in Chapter 16, “Operating System Administration.” 
The Tools tab settings, and the executables associated with them, are as follows (see 
Figure 19.19): 


About Windows—winver .exe 

Change UAC Settings—useracccountcontrolsettings.exe 
Action Center—wscui.cpl 

Windows Troubleshooting—control.exe /name Microsoft. troubleshooting 
Computer Management—compmgmt.msc 

System Information—msinfo32.exe 

Event Viewer—eventvwr .exe 

Programs—appwiz.cpl 

System Properties—control.exe system 

Internet Options—inetcpl.cpl 

Internet Protocol Configuration—ipconfig.exe 
Performance Monitor—per fon.exe 

Resource Monitor—resmon.exe 

Task Manager—taskmgr .exe 

Command Prompt—cmd. exe 

Registry Editor—regedt32.exe 

Remote Assistance—msra. exe 

System Restore—rstrui.exe 


Each of these should be considered troubleshooting utilities that you can use to solve 
system problems. Know what they do and the executable associated with each, to solve the 
majority of problems that you will encounter when working with Windows 7. 
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FIGURE 19.19 msconfig tools 


© System Configuration 








General | Boot _| Services | Startup | Tools 


Tool Name Description 

About Windows Display Windows version information 

Change UAC Settings Change User Account Control settings. 

Action Center Open the Action Center. 

Windows Troubleshooting Troubleshoot problems with your computer. 

Computer Management View and configure system settings and components. 

System Information View advanced information about hardware and software settings. 
Event Viewer View monitoring and troubleshooting messages. 

Programs Launch, add or remove programs and Windows components. 


eee Pronerties View hasic information ahout vour comnuter svstem settinas. 
< m i 


























Selected command: 7 
C:\Windows\system32\winver.exe 

















Component Services 


Component Services is an MMC snap-in in Windows 7 that allows you to administer, 

as well as deploy, component services, and configure behavior like security. Component 
Services is normally used by developers to deploy and configure Component Object Model 
(COM+) applications. Although the concepts of COM+ applications are outside of the scope 
of the CompTIA exam and generally suited for a programming course, as a PC technician 
you should know where to go to support COM+ applications. Figure 19.20 shows an exam- 
ple of the interface (Start > Control Panel > Administrative Tools > Component Services). 


FIGURE 19.20 Component Services in Windows 7 


®. Component Services 
®. File Action View Window Help 
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> (SL COMs Applications) 
> ©) DCOM Config ® 











b E Running Processes System VMware 

> ©) Distributed Transaction Coordinator || Application  Snapsh... 
b Event Viewer (Local) 
b {3 Services (Local) 
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Data Sources 


ODBC Data Source Administrator—Start > Control Panel > Administrative Tools > Data 
Sources (ODBC)—allows you to interact with database management systems. As a PC tech- 
nician, you will use this administrative tool to configure connections to a database so that 
the applications running on Windows 7 can connect to the database. Figure 19.21 shows an 
example of the screen. 


FIGURE 19.21 Data Sources in Windows 7 


T ODBC Data Source Administrator 





User DSN | System DSN | File DSN | Divers | Tracing | Connection Pooling | About| 





User Data Sources: 





Name Driver 











An ODEC User data source stores information about how to connect to 
2| the indicated data provider. A User data source is only visible to you. 
— and can only be used on the current machine. 




















Database drivers that are added to the system will show up here and can be shared 
between applications. 


Print Management 


The Print Management MMC (Start > Control Panel > Administrative Tools > Print 
Management) debuted in Windows Vista and has been included in every version of 
Windows since. Print Management allows you to manage multiple printers and print serv- 
ers from a single interface (see Figure 19.22). One of the more significant features to this 
management console is the ability to add and remove printer drivers. 
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FIGURE 19.22 Print Management in Windows 7 


{fe Print Management 
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4 Geton hte [6] Microsoft Shared Fax Driver  Windowsx64  6.1.7601.17514 None Microsoft ClientA (local) || All rivers (4) - 
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[ETP Output Gateway PS Windows x64 94.0.5 None ThinPrint Client (local) 











& Printers Not Ready 
EË Printers With Jobs 
a Ẹ Print Servers 
> Ë ClientA (local) 
E Deployed Printers 





























Print Management is not available for Windows 7 in any edition lower than Windows 7 
Professional. In all other editions, you must manage individual printers using the Printers 
applet in Control Panel, and you are very limited in what you can manage. 


Windows Memory Diagnostic 


The Windows Memory Diagnostic tool (Start > Control Panel > Administrative Tools > 
Windows Memory Diagnostic) can be used to check a system for memory problems. In order 
for the tool to work, the system must be restarted. The two options are to restart the com- 
puter now and check for problems or to wait and check for problems on the next restart. 
When the computer reboots, the test will take several minutes, and the display screen will 
show which pass number is being run and the overall status of the test (percent complete). 
When the memory test concludes, the system will restart again, and nothing related to it is 
apparent until you log in. If the test is without error, you’ll see a message that no errors were 
found. If any issues have been detected, the results will be displayed, as shown in Figure 19.23. 


FIGURE 19.23 Windows Memory Diagnostic test result 


Windows Memory Diagnostic > * 
=E No memory errors were detected, 


1:27 PM 


< |e. & ) 
= PT oppose 
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Windows 7 Control Panel Utilities 


There are four Control Panel applets unique to Windows 7 of which you should be aware. The 
Action Center applet was addressed earlier in this chapter. This section discusses the other 
three applets: HomeGroup, RemoteApp and Desktop Connections, and Troubleshooting. 


HomeGroup 


The purpose behind HomeGroup is to simplify home networking and, more specifically, 
the sharing of files and printers. Windows 7 Starter can only join a HomeGroup, whereas 
all other editions of Windows 7 can both join and create a HomeGroup. The location from 
which you network must be set to Home. 

Shared files can include libraries (a big feature of Windows 7). All computers participat- 
ing in the HomeGroup must be running Windows 7, Windows 8/8.1, Windows 10 (Version 
1709 and below, as HomeGroup was removed from Version 1803), and the network cannot 
extend outside of the small group. 

To create a HomeGroup, perform the following steps: 


1. Click Start > Control Panel > HomeGroup. 
You will be presented with the status of any HomeGroups detected on the local network. 
2. Ifa HomeGroup does not exist on the local network, create a HomeGroup by clicking 


the Create a HomeGroup button, as shown in Figure 19.24. 


FIGURE 19.24 The HomeGroup Control Panel applet 





QE [& © Control Panel > Network and Intenet + HomeGroup 





Share with other home computers running Windows 7 


ae There is currently no homegroup on the network. 


With a homegroup, you can share files and printers with other computers running Windows 7. You can also 
stream media to devices. The homegroup is protected with a password, and you'll always be able to choose 
what you share with the group. 


Tell me more about homegroups 
Change advanced sharing settings... 


Start the HomeGroup troubleshooter 


aaa 














3. The Create a HomeGroup dialog box will open. You can select Pictures, Music, Printers, 
Videos, and Documents (by default Documents are not shared), as shown in Figure 19.25. 
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FIGURE 19.25 Create a HomeGroup dialog box 





en wee eee 


Q2 Create a Homegroup 





Share with other home computers running Windows 7 


Your computer can share files and printers with other computers running Windows 7, and you can 
stream media to devices using a homegroup. The homegroup is protected with a password, and 
you'll always be able to choose what you share with the group. 


Tell me more about homegroups 


Select what you want to share: 


[7] Pictures E] Documents 








7) Music [F] Printers 














V] Videos 











The last dialog box will display the password that other computers will use to join the 
HomeGroup, as shown in Figure 19.26. 


FIGURE 19.26 HomeGroup confirmation dialog box with the HomeGroup password 


4 —-—-—, 


© Create a Homegroup 
4 


Use this password to add other computers to your homegroup 


Before you can access files and printers located on other computers, add those computers to your 
homegroup. You'll need the following password. 


Write down this password: 


Print password and instructions 


If you ever forget your homegroup password, you can view or change it by opening HomeGroup in 
Control Panel. 


How can other computers join my homegroup? 








4. If you forget the password, click the View or Print the HomeGroup password selection 
under Other HomeGroup Actions, as shown in Figure 19.27. 
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FIGURE 19.27 HomeGroup Control Panel applet after configuration of a HomeGroup 





O6-& > Control Panel » Network and Internet » HomeGroup 





Change homegroup settings 


ad This computer belongs to a homegroup. 


Share libraries and printers 


[T Pictures [F] Music [T] Videos 





[E Documents [F] Printers 


How do I share additional libraries? How dol exclude files and folders? 
Share media with devices 
[E Stream my pictures, music, and videos to all devices on my home network 
Choose media streaming options... 
Note: Shared media is not secure, Anyone connected to your network can receive your shared media, 
Other homegroup actions 
View or print the homegroup password 
Change the password 
Leave the homegroup... 
Change advanced sharing settings... 


Start the HomeGroup troubleshooter 


Save changes Cancel 














You can also leave the HomeGroup, change the password, or change what is being 
shared. 


RemoteApp and Desktop Connections 


This applet (Start > Control Panel > RemoteApp and Desktop Connections) in Windows 
7 is used, as the name implies, to access remote computers and virtual machines made 
available over the network through the Remote Desktop Protocol (RDP) using TCP port 
3389. This allows a remote application to run as if it were installed on the local machine. 
RemoteApp can be used to directly connect to the server, and it can also be used through 
Remote Desktop Web Access, which uses HTTPS as a transport at the client end. The 
applications and virtual machines are hosted on Windows servers. The client application 
used to connect to the RemoteApp and Remote Desktop is the Remote Desktop Connection 
utility. This utility was covered in Chapter 16, “Operating System Administration.” 

For the exam, remember that all versions of Windows 7 support outgoing connections, 
but only Professional, Enterprise, and Ultimate can be used for hosting. To enable a remote 
connection, perform the following steps: 


1. Click Start. 
2. Right-click Computer. 
3. Click Properties, and then choose Remote Settings. 
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You can now turn on Remote Assistance and/or Remote Desktop, as shown in Figure 19.28. 


FIGURE 19.28 Windows 7 remote settings 























Computer Name | Hardware | Advanced | System Protection 
Remote Assistance 





[F] Allow Remote Assistance connections to this computer 





at ens when | enable Remote Assi e? 


Remote Desktop 
Click an option, and then specify who can connect, f needed. 


@ Dont allow connections to this computer | 


© Allow connections from computers running any version of i] 
Remote Desktop (less secure) 

© Allow connections only from computers running Remote l 
Desktop with Network Level Authentication (more secure) 


Help me choose 














fop 











Remote Assistance is either on or off, while Remote Desktop offers the following three 
options: 


a Don’t allow connections to this computer. 


a Allow connections from computers running any version of Remote Desktop (less 
secure). 


= Allow connections only from computers running Remote Desktop with Network Level 
Authentication (more secure). 


Troubleshooting 


This applet (Start > Control Panel > Troubleshooting) in Windows 7 is used, as the name 
implies, to provide a simple interface to use to solve many common problems. Figure 19.29 
shows the opening screen. 
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FIGURE 19.29 The Troubleshooting applet in Windows 7 








van s | 
[E > Control Pane! > Al Control Panelitems > Troubleshooting ~ [4] [ Search Troubleshooting P 





Control Panel Home 
a Troubleshoot computer problems 


View all Click on a task to automatically troubleshoot and fix common computer problems, To view more troubleshooters, click on a category or 
3 use the Search box. 

View history 

Change settings S| Programs 

Get help from a friend Run programs made for previous versions of Windows 





Hardware and Sound 
È Configure a device | Use a printer ` (@ Troubleshoot audio recording 
@ Troubleshoot audio playback 


a 


Network and Internet 
Connectto the Internet Access shared files and folders on other computers 


if) 


Appearance and Personalization 
® Display Aero desktop effects 


# 








System and Security 
Fix problems with Windows Update | Run maintenance tasks  (@ Improve power usage 
Check for performance issues 


e 


See also 
Action Center 
Help and Support 


Recovery) [Z] Get the most up-to-date troubleshooters from the Windows Online Troubleshooting service 











All links preceded by a shield require administrator permissions to run, and they are 
often tied to UAC prompts before they will continue. Most of the problems found will 
be “automatically fixed” without any prompts. For example, clicking the Improve Power 
Usage link on the machine shown in Figure 19.29 started the Power troubleshooter, which 
then fixed problems. Clicking to see the detailed report of what was done brings up the 
screen shown in Figure 19.30. 


FIGURE 19.30 Report of the Power troubleshooter’s changes 





———_ a 
Q 8 TT 





Troubleshooting has completed 


Issues found 
) Time before display goes to sleep is too long Fixed 


Time before computer goes to sleep is too long Fixed 


ee 


Close the troubleshooter 


> Explore additional options 


View detailed information Ii 








Close 
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Note in Figure 19.29 the Get Help From a Friend selection on the left. Selecting this 
brings up Remote Assistance, allowing someone to connect to this computer. You can also 
offer to be the one helping another, as shown in Figure 19.31. 


FIGURE 19.31 Windows Remote Assistance in Windows 7 








0O- > Control Panel » All Control Panel Items + Troubleshooting » Remote Assistance + | #2] [Search Tro 








Use Remote Assistance to contact someone you trust for help 
Remote Assistance connects two computers so that one person can troubleshoot or fix problems on the other person's computer. 


Invite someone to help you. 
| Use this option to connect to someone you have not contacted 


Offer Remote Assistance to help someone 


Record a problem that you're having with this computer 


Problem Steps Recorder 
This will automatically take snapshots of the screen as you reproduce the problem. You can then send these to your friend to help fix the problem. 














Windows 7 User Account Control 


Windows Vista introduced the User Account Control (UAC) feature, which has been a part 
of the Windows operating systems since its introduction. The UAC feature controls when 
the administrative rights are given to a privileged user, by prompting them with a dialog 
box asking a simple yes or no question, as shown in Figure 19.32. Windows 7 allows you to 
choose between the following four UAC settings: 
= Always Notify. 
= Notify me only when programs try to make changes to my computer (the default). 
= Notify me only when programs try to make changes to my computer (do not dim 

my desktop). 


=» Never Notify. 
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FIGURE 19.32 Windows User Account Control dialog box 


To access the Change User Account Control settings, click Start > Control Panel > 


you want to allow the f 
o this com 







Program name: Windows Command Processor 
Verified publisher: Microsoft Windows 


(©) Show details 


Change when these notifications appear 
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User Accounts > Change User Account Control Settings. This opens the slider shown in 


Figure 19.33. 


FIGURE 19.33 Changing VAC settings in Windows 7 


P — 
(® User Account Control Settings S| x 











Choose when to be notified about changes to your computer 


User Account Control helps prevent potentially harmful programs from making changes to your computer, 


Tell me more about User Account Control settings 


Always notify 
SS Default - Notify me only when programs try to make 
changes to my computer 
© Don't notify me when I make changes to Windows 
-G- settings 
@ Recommended if you use familiar programs and visit 
-. - familiar websites. 
Never notify 
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Given the appropriate scenario, there are many instances in which an administrator 
would want to access the User Accounts applet in the Control Panel (shown in Figure 19.34). 
Not to be confused with the similarly named User Account Control (UAC) settings that you 
can change from here, this umbrella-like applet enables you to also change passwords, man- 
age file encryption certificates, and link online IDs. 


FIGURE 19.34 The User Accounts applet in Windows 7 
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Given another scenario, it can be necessary to access the Programs and Features applet 
in the Control Panel (see Figure 19.35) to add or remove programs. From here, you can see 
update information, check out the version numbers of programs, the amount of space they 
are occupying, and run repairs. 


Networking and Windows 7 1081 


FIGURE 19.35 The Programs and Features applet in Windows 7 





O-A > Control Panel » All Control Panel Items » Programs and Features 





Control Panel Home ` 
Uninstall or change a program 
View installed updates To uninstall a program, select it from the list and then click Uninstall, Change, or Repair. 
@ Turn Windows features on or 
off Organize ~ j= ~ @ 
Name i Publisher Installed On = Size Version 
[E] Microsoft Visual C++ 2008 Redistributable - x64 9.0.3... Microsoft Corporation 7/31/2018 788KB 9.0.30729.6161 
[E] Microsoft Visual C++ 2008 Redistributable - 86 9.0.3.. Microsoft Corporation 7/31/2018 600KB 9.0.30729.6161 
(vmware Tools VMware, Inc. 7/31/2018 109MB 10.2.0.7259539 
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E— f Currently installed programs Total size: 110 MB 
Ë i 3 programs installed 














Networking and Windows 7 


There are a number of things CompTIA expects you to know when it comes to the topic of 
networking and Windows. Most of the networking topics are covered in the chapters dedicated 
to that, so the discussion here is limited only to those topics specifically tied to Windows 7. 
However, many of these options are identical in Windows 8/8.1 and Windows 10, with the 
exception of dial-up connections, which have been removed from later operating systems. 

Connection options that you will commonly see in the Network and Sharing Center 
are detailed in Table 19.4; they can also be seen in Figure 19.36. You can access these 
options by navigating to the Network and Sharing Center, then clicking on Set Up A New 
Connection Or Network. 
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TABLE 19.4 Network connection options 


Option 


Purpose 





Connect to the Internet. 


Set up a new network. 


Manually connect to a wireless 
network. (This option is only visible 
if a wireless adapter is installed.) 


Set up a wireless ad hoc (computer- 
to-computer) network. (This option 
is only visible if a wireless adapter 
is installed.) 


Connect to a workplace. 


Set up a dial-up connection. 


This is used for connections to a proxy server or 
other device intended to provide Internet access. 
This includes wireless, broadband, and dial-up. 


This option can be used to connect to wireless 
devices, such as wireless routers or access points. 


If you have a wireless network already in place 
and the device (router and so forth) is not directly 
connected to this machine, then use this option. 


This is used for peer-to-peer resource sharing. It is 
typically a temporary connection. 


If you need to connect to a virtual private network 
(VPN) from a remote location, this is the option to 
use. 


If you live in a remote location and the only way to 
access a network is by using a dial-up modem, then 
this is the option to select. 


FIGURE 19.36 Windows 7 Set Up a Connection or Network dialog box 
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Choose a connection option 





igi Set up a new network 





Connect to the Internet 





Set up a wireless, broadband, or dial-up connection to the Internet. 


eag, Configure a new router or access point 


Connect to a workplace 
Set up a dial-up or VPN connection to your workplace. 


r Set up a dial-up connection 


Connect to the Internet using a dial-up connection 
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A wireless wide area network (WWAN) connection uses cellular to con- 

JTE nect the host to the network. A wireless service provider (such as Verizon, 
AT&T, Sprint, or T-Mobile) provides a card that plugs into the host to make 
the cellular connection possible. 


Regardless of which option you choose, you will need to fill out the appropriate fields for 
the device to be able to communicate on the network. With TCP/IP, required values are an 
IP address for the host, a subnet mask, an address for the gateway, and DNS information. 

You also need to specify one of the types of locations for this network: Home, Work, or 
Public. If you choose one of the first two, the feature called Network Discovery is on by 
default, allowing you to see other computers and other computers to see you. If you choose 
Public, the Network Discovery feature is turned off. 


Proxy Settings 


Internet Explorer is the web browser that is included with the Windows 7 operating system. 
In many organizations, the web browser is not allowed to directly request web pages from 
the destination web server. An intermediary called a proxy server is used to request the 
web page on behalf of the user. The use of a proxy server allows for caching of frequently 
accessed web pages, as well as the ability to content filter. To configure the proxy settings 
for Internet Explorer, click Tools > Internet Options > Connections tab > LAN Settings, 
select Use a Proxy Server for your LAN and then enter the proxy server name or address 
and port number, as shown in Figure 19.37. You can also select Bypass Proxy Server for 
Local Addresses, to avoid using the proxy when the web page request is local to your 
organization. 


FIGURE 19.37 Internet Explorer proxy settings 





Local Area Network (LAN) Settings. 





Automatic configuration 


Automatic configuration may override manual settings. To ensure the 
use of manual settings, disable automatic configuration. 


[7] Automatically detect settings 
[E] Use automatic configuration script 


Address 


Proxy server 


p] Use a proxy server for your LAN (These settings will not apply to 
dial-up or VPN connections). 


Address:  proxy.sybex.cor Port: 80 
[E] Bypass proxy server for local addresses 
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Although the protocol HyperText Transfer Protocol (HTTP) is the main protocol used 
with the web, there are other protocols. Protocols such as HTTPS, FTP, and SOCKS can 
be configured to use different ports. To configure these protocols, click Advanced. This will 
open the Proxy Settings dialog box, as shown in Figure 19.38. 


FIGURE 19.38 Advanced proxy settings 











a Type Proxy address to use Port 
S 
HTTP: proxy.sybex.com : 80 
Secure: proxy.sybex.com 1 | 80 
FIP: proxy.sybex.com : | 80 
Socks: 














V|Use the same proxy server for all protocols 


Exceptions 
| a Do not use proxy server for addresses beginning with: 


| G2) 


* wiley.com;www.efficeientiearning.com| 


Use semicolons ( ; ) to separate entries. 


Cx) cnet) 











Specific websites often require direct access and will not work with a proxy server. You 
can enter exceptions into the lower section and separate servers with a semicolon. You can 
also use wildcards, if you want to exclude an entire namespace. 


Configuring an Alternative IP Address in Windows 


Windows 7, Windows 8/8.1, Windows 10 all allow the use of an alternate IP address—that 
is, an address configured for the system to use in the event the first choice is not available. 
In order for an alternate configuration to be set, the first choice has to be dynamic; the 

tab becomes visible only when the General configuration is set to Obtain an IP Address 
Automatically (as shown in Figure 19.39), and the alternate is used only if the primary 
address cannot be found/used, such as when the DHCP server is down. 
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FIGURE 19.39 Windows |Pv4 address properties 








Internet Protocol Version 4 (TCP/IPv4) Properties 











General | Alternate Configuration 





You can get IP settings assigned automatically if your network supports 
this capability. Otherwise, you need to ask your network administrator 
for the appropriate IP settings. 


@ Obtain an IP address automatically 
© Use the following IP address: 





© Obtain DNS server address automatically 
@ Use the following DNS server addresses: 
Preferred DNS server: 


Alternate DNS server: 


[E validate settings upon exit 
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The Properties dialog box for each instance of IPv4, on any of the Windows operating 
systems on which this exam is focused, contains an Alternate Configuration tab. To make 
changes, you must click it. 


IP Addressing 


Two radio buttons exist on the Alternate Configuration tab: Automatic Private IP Address 


and User Configured (see Figure 19.40). The first option is the default, meaning that the 


alternate address used is one in the APIPA range (169.254. x.x). Selecting User Configured 
requires you to enter a static IP address to be used in the IP Address field. The entry entered 
must be valid for your network in order for it to be usable. 
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FIGURE 19.40 Alternate Configuration dialog box 


Internet Protocol Version 4 (TCP/IPv4) Properties 











General | Alternate Configuration 


If this computer is used on more than one network, enter the alternate IP 
settings below. 











©) Automatic private IP address 
5 User configured 


Validate settings, if changed, upon exit 











Cox) (cancel) 











Subnet Mask 


When the User Configured radio button is selected on the Alternate Configuration tab, you 
must enter a value in the Subnet Mask field. This value must correspond with the subnet 
values in use on your network and work with the IP address you enter in the IP Address 


field. 


DNS 


When the User Configured radio button is selected on the Alternate Configuration tab, you 
should enter values in the Preferred DNS Server and Alternate DNS Server fields. These 
entries are needed in order to translate domain names into IP addresses. 


Gateway 


When the User Configured radio button is selected on the Alternate Configuration tab, you 
must enter a value in the Default Gateway field. This value must correspond with the sub- 
net values and the IP address that you enter. This address identifies the router to be used to 
communicate outside the local network. 


Network Card Properties 


Like other devices, network cards can be configured to optimize performance. Configuration 
is done through the Properties dialog box for each card, as shown in Figure 19.41. 
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FIGURE 19.41 Advanced properties for a network card 





Intel(R) PRO/1000 MT Network Connection Properties 














General | Advanced | Driver 








Details | Power Management | 








on the right. 
Property: 


The following properties are available for this network adapter. Click 
the property you want to change on the left. and then select its value 


Value: 





Adaptive Inter-Frame Spacing 
Flow Control 

Interrupt Moderation 

Interrupt Moderation Rate 
IPv4 Checksum Offload 


Number of Coalesce Buffers 
Priorty & VLAN 

Receive Buffers 

TCP Checksum Offload (|Pv4) 
Transmit Buffers 














(Ato Negotiation ~] 

















Most laptops and desktop computers have a built-in network card called 

TE an on-board NIC. This NIC can be controlled in the BIOS of the computer. 
On-board NICs usually have features that add-on network cards might not 
have, such as the ability to use PXE to boot the computer. 


Half-Duplex/Full-Duplex/Auto-Duplex 


Duplexing is the means by which communication takes place: 


= With full-duplexing, everyone can send and receive at the same time. The main advan- 
tage of full-duplex over half-duplex communication is performance. NICs can operate 
twice as fast in full-duplex mode as they do normally in half-duplex mode. 


= With half-duplexing, communications travel in both directions but in only one direc- 
tion at any given time. Think of a road where construction is being done on one lane— 
traffic can go in both directions but in only one direction at a time at that location. 


=a With auto-duplexing, the mode is set to the lowest common denominator. If a card 
senses that another card is manually configured to half-duplex, then it also sets itself 


to that. 


The network card’s duplex property can be configured in the Advanced tab of the 
network card’s device properties, as shown in Figure 19.42. You can get to the network 
card’s properties by clicking Start, then selecting Control Panel, then selecting Network 
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and Internet, then selecting Network and Sharing Center, then selecting Change Adapter 
Settings, then right-click on the network card and select Properties, then select Configure, 
finally click on the Advanced tab. 


FIGURE 19.42 Advanced tab of the network card properties 


Intel(R) PRO/1000 MT Network Connection Properties 





























The following properties are available for this network adapter. Click 
the property you want to change on the left, and then select its value 





TCP Checksum Offload (IPv4) 
Transmit Buffers 





























Speed 


You can configure whether or not the card should run at its highest possible setting. The 
speed often needs to be compatible with the network on which the host resides. For exam- 
ple, if you are connecting a workstation with a 1000BaseT card to a legacy network, you 
will need to operate at 10 MBps to match the rest of the network. 


Wake-on-LAN 


Wake-on-LAN (WoL) is an Ethernet standard, implemented via a WoL Magic Packet, 
that allows a sleeping machine to awaken when it receives this wakeup signal. In Windows 7, 
the Wake-on-LAN feature is enabled by default for desktops but not for laptops and 
works only with wired connections. Depending on the type of network card installed in 
the computer, the Wake-on-LAN feature might be controlled by the Advanced tab of the 
network card. The operating system’s WoL feature can be configured through the Power 
Management tab of the network card’s properties. Both tabs can be accessed by clicking 
Start, then selecting Control Panel, then selecting Network and Internet, then selecting 
Network and Sharing Center, then selecting Change Adapter Settings, then right-click the 
network card, then selecting Properties and finally select Configure. 
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PoE 


If the device that you are networking is in a remote location (such as a wireless access point 
in a ceiling or other place with no easy access to an electrical outlet), Power over Ethernet 
(PoE) is a handy technology to supply both power and an Ethernet connection. The pur- 
pose of Power over Ethernet is pretty much described in its name: Electrical power is trans- 
mitted over twisted-pair Ethernet cable (along with data). A key advantage of PoE is that a 
UPS is required only in the main facility, instead of at each device. 


QoS 


Quality of Service (QoS) encompasses a number of protocols that allow for the prioritiza- 
tion of network traffic on network switches and routers. QoS is used for the prioritization 
of real-time protocols, such as Voice over IP (VoIP), and for protocols that support video 
conferencing. Inside the Windows operating system, Quality of Service implements packet 
scheduling to control the flow of traffic and help with network transmission speeds. No 
properties can be configured for the service itself inside of the Windows operating system. 


Configuring Windows Networking 


Given a scenario of configuring Windows networking on a client/desktop, many of the net- 
working features and settings we’ve been discussing will apply. There are, however, a few 
more to be cognizant of: 


HomeGroup vs. WorkGroup As mentioned in Chapter 15, “Operating System Basics,” 
there are three types of networks to choose from: workgroups, HomeGroups, and 
domains. We covered HomeGroups earlier in this chapter. Workgroups are networks 
that use a peer-based model: There is no central controller, and every computer has a set 
of user accounts. All computers are on the same subnet, and there are typically very few 
computers (20 or fewer). 


Domain Setup As opposed to a HomeGroup or workgroup, with a domain, one (or more) 
computer(s) acts as a server and controls the security for the network. There can be many 
(thousands) of computers on a domain, and a user can access it from any machine as long 
as they have the credentials to do so, whether or not they have an account on that indi- 
vidual workstation. 


P at one end and a domain at the other (with a HomeGroup as a hybrid 
between them). The type of security associated with a workgroup is share- 
level because it is based on the items on each computer that are shared. 
The type of security associated with a domain is user-level, requiring users 
to authenticate at the beginning of each session; it is much more powerful 
than share-level. 


A If you were to draw a line for network security, you would put a workgroup 
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Summary 


This chapter focused on Windows 7. This is one of the three Windows operating systems 
covered on the exam, and CompTIA expects you to be familiar with it and be able to 
answer questions on everything from installing it to managing it. 

We covered the various features of Windows 7—some that exist in other versions of 
Windows and some that are unique to Windows 7. The latter category includes HomeGroup, 
which was discontinued in Windows 10 version 1803, and the Action Center, which was 
renamed in Windows 10 to Security and Maintenance. 


Exam Essentials 


Know which types of installations are possible with Windows 7. You should know which 
operating systems can be upgraded to Windows 7 and which require a clean installation. 


Understand upgrading. You should know that a custom installation either wipes the old 
system or replaces the existing system, putting the old files into WINDOWS.OLD. Applications 
have to be reinstalled and user data has to be migrated from the old system, using tools 
such as WET or USMT. An upgrade preserves the existing applications and the user data, 
moving them into the new system. 


Know the editions of Windows 7. Windows 7 Starter was created for netbooks. The retail 
channel options are Windows 7 Home Premium, Windows 7 Professional, and Windows 7 
Ultimate. Windows 7 Enterprise is available only through volume licensing. 


Know which Control Panel utilities were introduced with Windows 7. Windows 7 intro- 
duced the following Control Panel applets: HomeGroup, Action Center, RemoteApp and 
Desktop Applications, and Troubleshooting. You should be familiar with the purpose and 
options of each. 


Understand the basic networking concepts for Windows 7. Windows 7 offers several 
options for connecting to wired and wireless networks. For example, you can specify an 
alternate IP address configuration, in the event Windows cannot obtain an IP address. 
There are also several different network card properties that allow performance to be set, 
such as speed and duplex, as well as features such as Wake-on-LAN (WoL). 


Review Questions 


Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. Which editions of Windows 7 cannot create a HomeGroup? 


Windows 7 Starter 


A 

B. Windows 7 Home Premium 
C. Windows 7 Professional 

D 


. Windows 7 Enterprise 
E. Windows 7 Ultimate 
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2. What is the name of the feature that allows for a weather application to be placed on the 


Windows 7 Desktop? 


A. Aero 

B. XP Mode 

C. Desktop Gadgets 
D. Sidebar 


3. Which of the following is used by BitLocker to be able to encrypt a drive? 
A. EFS 


B. TPM 
Cc. UAC 
D. Aero 


4. Which feature of Windows 7 allows files and folders to be grouped logically and appear as 


if they are in the same location even when they are not? 


A. HomeGroup 


B. Touch 
C. Libraries 
D. Snap 


5. Asan administrator, you need to get an inventory of computers on your network and plan a 


rollout of Windows 7. Which tool can be used for this purpose? 
A. Sysprep 

B. Microsoft Assessment and Planning (MAP) Toolkit 
C. USMT 

D. WET 


1092 Chapter 19 = Working with Windows 7 


6. Which of the following editions of Windows Vista can be upgraded to Windows 7 
Professional? 


Windows Vista Starter 
Windows Vista Home Basic 


A 
B 
C. Windows Vista Home Premium 
D. Windows Vista Business 

E 


Windows Vista Ultimate 


7. Which utility can assess whether the current operating system is upgradable to Windows 7? 
A. Upgrade Assistant 
B. Upgrade Advisor 
C. Sysprep 
D. Windows Anytime Upgrade 


8. You need install Windows 7 in a PXE environment. Which of the following can you use? 
A. wintload.exe 
B. BOOTMGR 
C. WinPE 
D. winresume.exe 
9. Which feature allows you to recover the operating system to a prior point in time after you 
installed a faulty application or driver? 
A. System Restore 
B. Snap 
C. WinPE 
D. BOOTMGR 


10. Which editions of Windows 7 include BitLocker? (Choose two.) 
A. Windows 7 Starter 
B. Windows 7 Home Premium 
C. Windows 7 Professional 
D. Windows 7 Enterprise 
E. Windows 7 Ultimate 


11. Where in Windows 7 can you manually create a restore point? 
A. The System Restore option, beneath System Tools 
B. The System Protection tab of System Properties 
C. In Backup, beneath Administrative Tools 
D 


Windows 7 does not allow for the manual creation of restore points. 


12. 


13. 


14. 


15. 


16. 


17. 
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Which Windows 7 utility allows you to view the health of virus protection and potential 
system problems? 


A. 
B. 
C. 
D. 


Action Center 
Security Center 
HomeGroup 
Troubleshooting 


In order to curb software piracy, what must you do after installing Windows 7? 


A. 
B. 
C. 
D. 


Certify it 

Confirm it 
Activate it 
Register it 


What is the maximum number of physical CPUs supported by Windows 7 Enterprise? 


A. 
B. 
C. 
D. 


One 
Two 
Three 


Four 


In Windows 7, what is the default setting for the UAC? 


A. Always notify. 

B. Notify me only when programs try to make changes to my computer. 

C. Notify me only when programs try to make changes to my computer (do not dim my 
desktop). 

D. Never notify. 

Which feature allows you to use free space on an SD card to speed up a system? 

A. ReadyDrive 

B. Shadow Copy 

C. ReadyBoost 

D. BitLocker to Go 

Which utility allows you to choose the default operating system to boot to in a multiboot 

installation? 

A. BOOTMGR 

B. winload.exe 

C. msconfig.exe 

D. winlogon.exe 


1094 Chapter 19 = Working with Windows 7 


18. Remote computers and virtual machines are made available with Windows 7 using which 


port? 

A. 80 
B. 139 
C. 3389 
D. 443 


19. Which folder on a standard Windows 7 installation holds the boot configuration data 
(BCD) on the hidden system partition? 


A. \BOOT 
B. \START 
C.  \SYSTEM32 
D. \WINDOWS 
20. What is the maximum amount of RAM supported in the 64-bit edition of Windows 7 
Enterprise? 
A. 8 GB 
B. 16GB 
C. 128 GB 
D. 192 GB 


Performance-Based Question 


You will encounter performance-based questions on the A+ exam. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exam. To see how your answers compare to the authors’, refer 
to Appendix B. 

You have been sent to a client’s Windows 7 workstation with specific directions to fol- 
low. They are using only IPv4, and they use DHCP for their normal configuration informa- 
tion. In the event that the DHCP server is not accessible, however, APIPA should not be 
used. An alternate configuration needs to be assigned with the following values: 


IP address—192.16.68.4 
Subnet mask—255.255.255.0 
Default gateway—192.16.68.1 


How would you configure this? 


CompTIA® A+® Complete Study Guide, Fourth Edition 
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Working with macOS 
and Linux 





THE FOLLOWING COMPTIA A+ 220-1002 
EXAM OBJECTIVES ARE COVERED 
IN THIS CHAPTER: 


vy 1.9 Given a scenario, use features and tools of 
the macOS and Linux client/desktop operating systems. 


= Best practices: Scheduled backups, Scheduled disk 
maintenance, System updates/App store, Patch 
management, Driver/firmware updates, Antivirus/ 
Anti-malware updates 


= Tools: Backup/Time Machine, Restore/Snapshot, Image 
recovery, Disk maintenance utilities, Shell/Terminal, Screen 
sharing, Force Quit 


= Features: Multiple desktops/Mission Control, Key Chain, 
Spotlight, iCloud, Gestures, Finder, Remote Disc, Dock, 
Boot Camp 


= Basic Linux commands: Is, grep, cd, shutdown, pwd vs. 
passwd, mv, cp, rm, chmod, chown, iwconfig/ifconfig, ps, 
su/sudo, apt-get, vi, dd, kill 





CompTIA has identified that system administrators are 
increasingly dealing with more than just Windows on a daily 
basis. Therefore, they have added objectives based on macOS 
and Linux. 

This chapter looks at the non-Windows operating systems from the standpoint of what 
you need to know to pass the exam. All the topics relevant to objective 1.9 of the 220-1002 
exam are covered. 





Best Practices 


Regardless of the operating system in question, there are a number of best practices than an 
administrator should always follow. Depending on the operating system (and distribution, 
version, edition, and so on), it may be possible to perform operations with the utilities pro- 
vided, or third-party utilities may be needed. 


Scheduled Backups 


Backups are duplicate copies of key information, ideally stored in a location other than the 
one where the information is currently stored. Backups include both paper and computer 
records. Computer records are usually backed up using a backup program, backup systems, 
and backup procedures. 

The primary starting point for disaster recovery involves keeping current backup copies 
of key data files, databases, applications, and paper records available for use. Your organi- 
zation must develop a solid set of procedures to manage this process and to ensure that all 
key information is protected. 

Computer files and applications should be backed up on a regular basis. Here are some 
examples of critical files that should be backed up: 


= Applications 

= Appointment files 

a Audit files 

= Customer lists 

= Database files 

= Email correspondence 


a Financial data 
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= Operating systems 
= Prospect lists 
=a Transaction files 
= User files 
= User information 
= Utilities 
This list isn’t all-inclusive, but it provides a place to start. 


In most environments, the volume of information that needs to be stored is growing at a 
tremendous pace. Simply tracking this massive growth can create significant problems. 


An unscrupulous attacker can glean as much critical information from 

TE copies as they can from the original files. Make sure that your storage 
facilities are secure, and it is a good idea to add physical security to the 
backup media as well. 


You might need to restore information from backup copies for any number of reasons. 
Some of the more common reasons are as follows: 


a Accidental deletion 
= Application errors 
= Natural disasters 

= Physical attacks 

=a Server failure 

a Virus infection 


a Workstation failure 


Types of Storage Mechanisms 


The information that you back up must be immediately available for use when needed. If a 
user loses a critical file, they won’t want to wait several days while data files are sent from a 
remote storage facility. Several types of storage mechanisms are available for data storage: 


Working Copies Working copy backups, sometimes referred to as shadow copies, 
are partial or full backups that are kept at the computer center for immediate recovery 
purposes. Working copies are frequently the most recent backups that have been made. 


Typically, working copies are intended for immediate use. They are usually updated on a 
frequent basis. 


Working copies aren’t usually intended to serve as long-term copies. Ina 
TE busy environment, they may be created every few hours. 
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Many filesystems used on servers include journaling. A journaled file system (JFS) includes 
a log file of all changes and transactions that have occurred within a set period of time 
(such as the last few hours). If a crash occurs, the operating system can check the log files to 
see which transactions have been committed and which transactions have not. 


This technology works well, allowing unsaved data to be written after the recovery, and the 
system is usually successfully restored to its pre-crash condition. 


On-Site Storage On-site storage usually refers to a location on the site of the computer 
center that is used to store information locally. On-site storage containers are available 
that allow computer cartridges, tapes, and other backup media to be stored in a reasonably 
protected environment in the building. 


PP As time goes on, tape as a medium for backups is losing its popularity to 
A: other technologies, such as cloud storage. 


On-site storage containers are designed and rated for fire, moisture, and pressure resistance. 
These containers aren’t fireproof in most situations, but they are fire rated. A fireproof 
container should be guaranteed to withstand damage regardless of the type of fire or 
temperature, whereas fire ratings specify that a container can protect the contents for a 
specific amount of time in a given situation. 


If you choose to depend entirely on on-site storage, make sure that the containers you 
acquire can withstand the worst-case environmental catastrophes that could happen at 
your location. Make sure, as well, that they are in locations where you can easily find them 
after the disaster and access them (near exterior walls, on the ground floor, and so forth). 


General-purpose storage safes aren't usually suitable for storing electronic 
OTE media. The fire ratings used for safes generally refer to paper contents. 

Because paper does not catch fire until 451° Fahrenheit, electronic media 

are typically ruined well before paper documents are destroyed in a fire. 


Off-Site Storage Off-site storage refers to a location away from the computer center where 
paper copies and backup media are kept, in the event the primary site suffers a catastro- 
phe. Off-site storage can involve something as simple as keeping a copy of backup media 

at a remote office, or it can be as complicated as a nuclear-hardened high-security storage 
facility. The storage facility should be bonded, insured, and inspected on a regular basis to 
ensure that all storage procedures are being followed. 


The determination of which storage mechanism to use should be based on the needs of 
the organization, the availability of storage facilities, and the budget available. Most off-site 
storage facilities charge based on the amount of space required and the frequency of access 
needed to the stored information. 
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M While it is easy to see the need for security at any location where your files 
P are stored, don’t overlook the need for security during transportation as well. 


Scheduled Disk Maintenance 


When files are written to a hard drive, they’re not always written contiguously, or with 
all the data located in a single location. When discussing Windows, we talked about Disk 
Defragmenter, which has existed in almost all versions of Windows, and its ability to 
take file data that has become spread out over the disk and put it all in the same location, 
known as defragmenting. This decreases the time it takes to retrieve files. 

As opposed to FAT- and NTFS-based filesystems, the filesystems used on macOS and 
Linux rarely, if ever, need to be defragmented. The ext3 and ext4 filesystems are common 
to Linux, and Apple File System (APFS) is common to macOS. They all have on-the-fly 
defragmentation methods and implement file allocation strategies differently from their tra- 
ditional Windows counterparts. 


System Updates/App Store 


It is important to keep the operating system current and updated. Like Windows, many 
other operating systems include the ability to update automatically, and almost all can 
look for updates and tell you when they are available. In the Apple world, the App Store 
represents a location where you can also find updates. 

For example, Figure 20.1 shows that a new version of iOS is available on an iPad. 
Figure 20.2 shows the reasons why the new version has been released, allowing you to read 
about the changes and decide whether you want to upgrade. The update notification usually 
includes a Learn More option and a hyperlink to Apple’s release page for the iOS update. 


FIGURE 20.1 Apple iOS Software Update 





iPad = 10:00 AM 340% a 


Settings < General Software Update 
O vonuorvencer 


Do Not Disturb iOS 12.1.2 
Apple Inc. 
100.8 MB 


iOS 12.1.2 includes bug fixes for your iPhone. This update: 
Fixes bugs with eSIM activation for iPhone XR, iPhone XS, and 


Display & Brightness iPhone XS Max 
B Wallpaper Addresses an issue that could affect cellular connectivity in Turkey 
pap for iPhone XR, iPhone XS, and iPhone XS Max 
© sounas https://support.apple.com/kb/HT201222 
@ Siri & Search 
Learn More 
O Touch ID & Passcode 
6 Battery Download and Install 


o Privacy 


iTunes & App Store 
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FIGURE 20.2 More information on an update 


Learn More 


This release includes improved performance, bug fixes, and a redesigned Emoji keyboard. 
Changes include: 









Improved performance for: 
e App launch 
e App responsiveness 
e Messages 
e Wi-Fi 
Control Center 
e Safari tabs 
e 3rd-party keyboards 
Keyboard shortcuts 
œ Simplified Chinese keyboard 


Wi-Fi and Bluetooth fixes 
e Fixes an issue where you could be continuously prompted for login credentials 
e Addresses an issue where some devices disconnect intermittently from Wi-Fi networks 
e Fixes an issue where hands-free phone calls could become disconnected 
e Fixes an issue where audio playback could stop working with some bluetooth speakers 


Orientation and rotation fixes 
e Addresses an issue that sometimes prevented rotating back to portrait after having rotated to 
landscape 
e Improves performance and stability issues that occurred when rotating the device between 
portrait and landscape 
Fixes an issue where device orientation appeared upside down after pulling the iPhone 6 
Plus from your pocket 
e Resolves an issue that sometimes prevented apps from rotating to correct orientation after 
switching apps in multitasking 


Messages fixes 
e Addresses issues that caused group messages to sometimes split ] 








To access the Software Update area on an iPhone or iPad, touch Settings > General > 
Software Update. However, when an update is available, you will generally see a prompt 
on your home screen. To access the Software Update section on macOS, click System 
Preferences from the Apple menu, and then Software Update. In most cases, unless a pro- 
duction device would be negatively impacted, you should keep systems updated with the 
latest releases. 


Patch Management 


As a general rule, updates fix a lot of things, and patches fix a few; multiple patches are 
rolled into updates. You can’t always afford to wait for updates to be released and need 

to install patches—particularly security-related patches—when they are released. Bear in 
mind that if all the security patches are not installed during the installation of the operating 
system, attackers can exploit the weaknesses and gain access to information. 

A number of tools are available to help with patch management, although the inten- 
tions of some are better than others. For example, rather than probe a service remotely and 
attempt to find a vulnerability, the Nessus vulnerability scanner (https: //www. tenable 
.com/downloads/nessus) will query the local host to see if a patch for a given vulnerabil- 
ity has been applied. This type of query is far more accurate (and safer) than running a 
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remote check. Since remote checks actually send the exploit in order to check to see if it is 
applicable, this can sometimes crash a service or process. 

Depending on the variant of Linux you are running, APT (Advanced Package Tool) can 
be useful in getting the patches from a repository site and downloading them for installa- 
tion on Debian and Ubuntu (just to name a few). The most common command used with 
this tool is apt-get, which, as the name implies, gets the package for installation, as shown 
in Figure 20.3. The YUM (Yellowdog Updater, Modified) tool is used with RPM (Red Hat 
Package Manager)-based Linux distributions, such as CentOS, Fedora, and Red Hat, and 
works similar to APT. 


FIGURE 20.3 Ubuntu apt-get tool 





Driver/Firmware Updates 


With any operating system, it is essential to keep the drivers and firmware updated. Always 
remember to back up your configurations (such as with routers) before making any signifi- 
cant changes—in particular, a firmware upgrade—in order to provide a fallback in case 
something goes awry. 

Many network devices contain firmware with which you interact during configura- 
tion. For security purposes, you must authenticate in order to make configuration changes 
and do so initially by using the default account(s). Make sure that the default password is 
changed after the installation on any network device; otherwise, you are leaving that device 
open for anyone recognizing the hardware to access it using the known factory password. 
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Updating firmware for macOS is performed via software updates. During the software 
update process, the firmware and software that corresponds to it are updated. Updating 
firmware for the hardware installed on Linux computers will vary significantly, depend- 
ing on the type of hardware. Many enterprise Linux vendors, such as Red Hat, include 
firmware updates in their software updates. As a rule, however, firmware is not part of the 
Linux software update process. 


Antivirus/Anti-Malware Updates 


At one point in time, there were so few viruses outside the Windows world that users not 
running Windows felt safe without protection on their systems. A significant reason for the 
low amount of non-Windows malware was that the authors of such devious programs were 
focusing on Windows simply because it had the lion’s share of the market; they wanted to 
inflict as much harm as possible with their code. 

As other operating systems have increased in popularity, so too have the number of mal- 
ware items written for them or that can affect them. Because of this, today it is imperative 
to have protection on every machine. Additionally, this protection—in the form of defini- 
tion files—must be kept current and up-to-date. Antivirus and anti-malware definitions are 
released by the hour, as new viruses and malware are identified. Most operating systems 
check daily for updates to definitions. Chapter 22, “Security Concepts,” discusses security 
and antivirus/anti-malware in more detail. 


Tools 


There are a number of tools to be aware of in macOS and Linux. Most of these have coun- 
terparts in the Windows world, and we’ll make comparisons where they apply. Tools are 
released on a daily basis, but the ones CompTIA wants you to know are as follows: 


Backup/Time Machine As discussed in the previous section, backups are important. In 
the macOS world, Time Machine is a feature from Apple that can be used to make backups 
of various types (incremental, full, and so forth). In order to use Time Machine to back 

up your data, you will need an external storage device. These devices can be connected 

via external USB, Thunderbolt, or FireWire, or wirelessly with 802.11. To access Time 
Machine, click the Apple menu > System preferences > Time Machine. When an exter- 

nal storage device is connected for the first time and Time Machine is not configured, the 
macOS will prompt you to set up Time Machine. 


Restore/Snapshot Snapshots are archives of key files and settings as they exist at a 
moment in time. It is possible to take snapshots and restore them as needed. The Time 
Machine feature performs a backup of your data to the external drive connected to the 
system. However, the external drive may not always be connected to the system, so local 
snapshots are also created. These local snapshots allow you to restore files using the local 
filesystem. To use local snapshots, simply start Time Machine, and if the external storage 
device is not connected, you'll be presented with the local snapshots. 


Tools 1103 


Image Recovery Asa general rule, images are typically larger than snapshots. You can 
take a snapshot of a project, and that will include all the files associated with the project, 
whereas an image would include the project files and all files on the system at the time. 
Again, this is only a general rule, as images can be granular as well. Typically, however, 
snapshots are thought of as subsets of images. 


The macOS Disk Utility can be used to create an image of the macOS operating system, 
and the image can be directed to an external storage device. Linux can use a multitude of 
open-source tools to create an image of the operating system. The most common utility is 
the dd command, which is covered later in this chapter. 


Disk Maintenance Utilities A number of disk maintenance utilities are available with, 

or for, macOS and Linux. The most important utilities to know are du, which shows how 
much disk space is in use; df, which shows how much space is free; and fsck, which checks 
and repairs disks. Although these command-line tools are available on both macOS and 
Linux, Disk Utility is available only on macOS. The Linux operating system can use a 
variety of open-source disk utilities. 


You can use the man (manual) command to learn more about any 
ITE command-line utility. 


Shell/Terminal The command-line interface in Linux is usually reached through a 
terminal session (though that need not always be the case). It is in this terminal ses- 
sion that you interact with the shell—the interpreter between the user and operating 
system. The most popular shell for Linux today is Bash (an acronym for Bourne Again 
Shell), but csh (C-shell), ksh (Korn shell), and a number of others are also in use. In 
the macOS/iOS world, OpenSSH (open shell) is often downloaded and installed. The 
macOS Terminal utility is accessible by going to Finder > Devices > Applications > 
Utilities > Terminal. 


Screen Sharing This feature, built into macOS, enables you to share your screen with oth- 
ers. While your screen is shared, the user of the other computer sees what you see, and they 
can open, move, and close files as well as restart your system. It requires a Virtual Network 
Computing (VNC) connection client. 


a The Internet offers numerous versions of VNC connection clients—many 
"GQ" are free, and some have unique features that you must pay for. An example 
of a free VNC connection client is TightVNC (https: //www. tightvnc.com/ 
download. php). 


Force Quit Sometimes an application can become unresponsive. When that happens 

in macOS, you can use Force Quit to force the application to close. The Force Quit dia- 
log box can be accessed by pressing OptiontCommand+Esc. This is similar to pressing 
Ctrl+Alt+Delete on Windows. Alternately, you can choose Force Quit from the Apple menu 
in the upper-left corner of the screen. Most devices, whether running macOS or iOS, offer 
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similar options. With an iPad, for example, if you press the Home button twice quickly, a 
list of apps will appear at the bottom of the screen. Swipe to get to the app in question, and 
then swipe up on its preview to close it. 


Features 


There are a number of macOS features about which CompTIA wants you to be aware for 
the exam. You need not know the intricacies of each but rather of their existence and pur- 
pose. Be aware of the following features: 


Multiple Desktops/Mission Control It is possible to run a large number of things at one 
time, whether those things in question are apps or desktops. Apple’s Mission Control is an 
easy way to see what is open and switch between applications. To access Mission Control, 
you can press the Mission Control key on an Apple keyboard, click the Mission Control 
icon on the Dock (or Launchpad), or swipe up with three or four fingers on a trackpad. 
Once Mission Control is accessed, all open windows and spaces are shown—grouped 

by app—and you can choose between them. The Apple macOS Mission Control feature 

is identical in functionality to Microsoft’s Task View feature. It allows you to see all the 
applications running on one screen, so that you can choose the foreground application, as 
shown in Figure 20.4. 


FIGURE 20.4 Apple Mission Control screen 
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Keychain Access Keychain Access is a password management system from Apple. It 
allows you to store passwords for websites, mail servers, Wi-Fi, and so forth, as shown in 
Figure 20.5. There is an iCloud variant (iCloud Keychain) that keeps such information as 
Safari usernames/passwords and credit card information. Values stored in Keychain Access 
are kept current (changes are synced) to simplify resource access. 


FIGURE 20.5 Apple Keychain Access utility 
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Spotlight The search feature within macOS is Spotlight, and a magnifying glass icon in 
the upper-right corner of the menu bar represents it (or you can press Command+spacebar 
from any app). As you type in the Spotlight utility, the results will display. As shown in 
Figure 20.6, we have searched for apple, and one of the results is the contact info for Apple 
Inc. Spotlight can search for documents, images, apps, and so on. Recent versions include 
auto-complete features as well as suggestions for additional results (usually on Wikipedia, 
iTunes, and such). 
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FIGURE 20.6 Apple Spotlight utility 
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iCloud One of the best ways always to have the latest version of files, regardless of the 

device that you are using to access them, is to have them stored/accessed remotely. iCloud is 
Apple’s answer to remote storage. You can configure your Apple devices to place files there 
automatically, or use it for backup. Figure 20.7 shows iCloud configuration settings on an iPad. 


FIGURE 20.7 iCloud configuration settings on an iPad 
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DPO It should be noted that there can be cost associated with using iCloud. For 
‘gr example, the iPad shown in Figure 20.7 can access 5 GB for free, but any- 
thing beyond that requires payment ($0.99/month for 50 GB, $2.99/month 
for 200 GB, or $9.99/month for 2 TB, at the time of this writing). 


Gestures With Apple products, it is possible to scroll, tap, pinch, and swipe to interact 
with the Mac or other product in a way that is intended to be natural and intuitive. You 
can accept the default actions for these gestures, or you can configure them differently, as 
shown in Figure 20.8. 


FIGURE 20.8 Settings for default gestures on an iPad 
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To see the basics of gestures on a Mac, visit https: //support.apple.com/en-us/HT204895. 


Finder To use an analogy, Finder is to macOS as File Explorer is to Windows 10. It lets 
you browse through folders and find files, disks, apps, and so on, as shown in Figure 20.9. 
You can change the view to see the entries with images, in a list view, in a column view, 
and so on. 
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FIGURE 20.9 Apple Finder utility 
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Remote Disc Officially called Remote Disc (disc with a c), this macOS feature lets you 
access files on a CD or DVD installed in one machine on a remote machine, as shown in 
Figure 20.10. This is handy if you need to retrieve files from a disc and the workstation at 
which you are sitting does not have a built-in drive. 


FIGURE 20.10 Apple Remote Disc 
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The computer from which you are accessing a disc need not be running 

OTE macOS. It is also possible to access discs on a Windows computer if DVD 
or CD Sharing has been set up. To learn more, visit https: //support 
.apple.com/en-us/HT203973. 


Dock In macOS, a bar of icons runs along the bottom (or side, if so configured) of your 
screen, as shown in Figure 20.11. That set of icons, known as the Dock, provides easy 
access to key apps that come with the Mac (such as Safari, Mail, App Store, and Music) or 
others that you choose to add there. To see the basics of the Dock on a Mac, visit https: // 
support. apple.com/en-us/HT201730. 


FIGURE 20.11 Apple macOS Dock 





Boot Camp As great as macOS is, there are times when you need Windows—for 
compatibility purposes with apps, legacy data, and many others. You can use Boot Camp 
to install Windows on a Mac computer on a multiboot system and then choose between 
operating systems as you boot. The Mac computer must be Intel-based; you have to have a 
64-bit version of Windows; and you need a minimum of 30 GB of free disk space to pull it 
off. For more details, visit https: //support.apple.com/en-us/HT201468. 


There are many other features of macOS that make it a powerful operating system to 
use. The aforementioned features, however, are the ones about which CompTIA wants you 
to be aware for the exam. Make sure that you know the purpose of each as you prepare for 
the exam. 


Basic Linux Commands 


The best way to approach the following commands is to think about Microsoft Windows. 
That operating system offers a plethora of utilities for configuring the workstation, and just 
in case they don’t work, or you want to go about it the hard way, there are command-line 
utilities that can be used to accomplish similar tasks. The odds are good that you spend 
most of your time walking through graphical dialog boxes but you’re familiar enough with 
the command-line utilities that you can use them when you need to. 

Linux is the same way. There is an overabundance of graphical utilities that can be 
used to configure the system, and they differ based on the distribution and the graphical 
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interface being used. In addition to these, command-line utilities are available in every 
distribution that can be used to get the job done. Those command-line utilities are what 
we'll focus on here. 

There is only one vendor for Windows (Microsoft), but there are many vendors for 
Linux (Red Hat, SuSE, Ubuntu—to name just three). Also, a new version of Windows is 
released only every few years (Windows 7, Windows 8/8.1, Windows 10), but with Linux— 
especially because there are so many vendors—there are a lot of versions. With Ubuntu, for 
example, the goal is to release a new version every six months. 

With all the different distributions and versions, getting to the place where you can 
run command-line utilities can differ a bit. In almost every implementation of Linux, you 
can boot into a command-line mode, and the commands entered there can then be run. 
Better than that, though, the easiest way to get to the command line is to open a terminal 
(also called console) window. This allows you to interact with the shell, where you can 
type commands to your heart’s content. The default shell in many Linux distributions 
is Bash. When you open a terminal window or log in at a text console, the Bash shell is 
what prompts you for commands. When you type a command, the shell executes your 
command. 


Understanding the Syntax of Shell Commands 


Because a shell interprets what you type, knowing how the shell processes the text you 
enter is important. All shell commands have the following general format (some commands 
have no options): 


command [option1] [option2] ... [optionN] 


On a command line, you enter a command followed by zero or more options (also called 
arguments). The shell uses a blank space or a tab to distinguish between the command and 
options. This means that you must use a space or a tab to separate the command from the 
options and the options from one another. If an option contains spaces, you put that option 
inside quotation marks. For example, to search for a name in the password file, enter the 
following grep command (grep is used for searching for text in files): 


grep "Jon B" /etc/passwd 


When grep prints the line with the name, it looks like this: 


filea:x:1000:100:Jon B:/home/testuser:/bin/bash 


If you create a user account with your username, type the grep command with your 
username as an argument to look for that username in the /etc/passwd file. In the output 
from the grep command, you can see the name of the shell (/bin/bash) following the last 
colon (:). Because the Bash shell is an executable file, it resides in the /bin directory; you 
must provide the full path to it. 

The number of command-line options and their formats depend on the actual command. 
Typically, these options look like -X, where X is a single character. For example, you can 
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use the -l option with the ls command. The command lists the contents of a directory, 
and the option provides additional details. Here is a result of typing ls -lin a user’s home 
directory: 


total 0 

drwxr-xr-x 2 testuser users 48 2018-09-08 21:11 bin 

drwx-2 testuser users 320 2018-09-08 21:16 Desktop 

drwx-2 testuser users 80 2018-09-08 21:11 Documents 
drwxr-xr-x 2 testuser users 80 2018-09-08 21:11 public_html 
drwxr-xr-x 2 testuser users 464 2018-09-17 18:21 sdump 


The /etc/passwd file contains a list of the usernames and their respective 

JTE attributes, such as User ID (UID), Group ID (GID), User ID info, home 
directory, and shell. Interesting enough, it doesn’t normally store the user’s 
password; another file, called the shadow file (/etc/shadow), now contains 
a hashed version of the user's password. 


If a command is too long to fit on a single line, you can press the backslash key (\) 
followed by Enter. Then continue typing the command on the next line. For example, type 
the following command (press Enter after each line): 


cat \ 
/etc/passwd 


The cat command then displays the contents of the /etc/passwd file. 

You can concatenate (that is, string together) several shorter commands on a single line 
by separating the commands with semicolons (;). For example, the following command 
changes the current directory to your home directory, lists the contents of that directory, 
and then shows the name of that directory: 


cd; ls -l; pwd 


You can combine simple shell commands to create a more sophisticated command. 
For example, suppose you want to find out whether a device file named sbpcd resides in 
your system’s /dev directory because some documentation says that you need that device 
file for your CD-ROM drive. You can use the ls /dev command to get a directory 
listing of the /dev directory, and then browse through it to see whether that listing 
contains sbpcd. 

Unfortunately, the /dev directory has a great many entries, so you may find it hard to 
find any item that has sbpcd in its name. You can, however, combine the ls command 
with grep and come up with a command line that does exactly what you want. Here’s that 
command line: 


ls /dev | grep sbpcd 
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The shell sends the output of the ls command (the directory listing) to the grep com- 
mand, which searches for the string sbpcd. The vertical bar (|) is known as a pipe because 
it acts as a conduit (think of a water pipe) between the two programs—the output of the 
first command is fed into the input of the second command. 


Discovering and Using Linux Commands 


Literally hundreds, if not thousands, of Linux commands exist within the shell and the 
system directories. Fortunately, CompTIA asks that you know a much smaller number than 
that. Table 20.1 lists common Linux commands by category. 


TABLE 20.1 Essential Linux commands 


Command Name Action 





Managing Files and Directories 


cd Changes the current directory. 

chmod Changes file permissions. 

chown Changes the file owner and group. 

cp Copies files. 

ls Displays the contents of a directory. 

mkdir Creates a directory. 

mv Renames a file and moves the file from one directory 
to another. 

rm Deletes files. 

pwd Displays the current directory. 


Processing Files 


dd Copies blocks of data from one file to another (used to 
copy data from devices). 


grep Searches for regular expressions in a text file. 
Managing Files 


apt-get Downloads files from a repository site. 


Command Name 
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Action 





shutdown 


vi 


Managing Users 
passwd 


su 


sudo 
Networking 


ifconfig 


iwconfig 


Quitting 


Managing Processes 


ps 


kill 


Shuts down Linux. 


Starts the visual file editor, which can be used to edit 
files. 


Changes the password. 


Starts a new shell as another user. (The other user is 
assumed to be root when the command is invoked 
without any argument.) 


Runs a command as another user (usually the root user). 


Allows you to display and configure information 
related to a network interface card (NIC). 


Similar to ifconfig, but used for wireless 
configurations. 


While not a utility, the q command is often used to quit 
most interactive utilities. It is used, for example, to quit 
working in the vi editor. 


Displays a list of currently running processes. 


Terminates a process. 


Becoming root (Superuser) 


When you want to do anything that requires a high privilege level (for example, 
administering your system), you have to become root. Normally, you log in as a regular 
user with your everyday username. When you need the privileges of the super user, though, 
use the following command to become root: 


SU: = 
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The su command followed by a space and the minus sign (or hyphen) provides an 
environment similar to what the user would expect by applying the user’s environment 
variables and initial login scripts. Once executed, the shell then prompts you for the root 
password. Type the password and press Enter. 


When the su command is entered without a username as an option, you 

JTE will be prompted for the password of the root account, and a Bash shell 
will open on behalf of the root account. However, you can use the su 
command followed by any user account name, and as long as you supply 
the correct password, you will be logged in as that user. 


After you’ve finished with whatever you want to do as root (and you have the privilege 
to do anything as root), type exit to return to your normal username. 

Instead of becoming root by using the su - command, you can type sudo followed by 
the command that you want to run as root. In some distributions, such as Ubuntu, you 
must use the sudo command because you don’t get to set up a root user when you install 
the operating system. If you’re listed as an authorized user in the /etc/sudoers file, sudo 
executes the command as if you were logged in as root. Type man sudoers to read more 
about the /etc/sudoers file. 


Managing Processes 


Every time the shell executes a command that you type, it starts a process. The shell itself 
is a process, as are any scripts or programs that the shell runs. The ps command will show 
a snapshot of the current processes running as the currently logged in user. Use the ps ax 
command to see a list of processes for the entire operating system. When you type ps ax, 
Bash shows you the current set of processes. Here are a few lines of output from the 
command ps ax -cols 132 (the -cols 132 option is used to ensure that you see each 
command in its entirety): 


PID TTY STAT TIME COMMAND 
1? S 0:01 init [5] 

2 ? SN 0:00 [ksoftirqd/0] 
3 ? S< 0:00 [events/0] 

4 ? S< 0:00 [khelper] 

9 ? S< 0:00 [kthread] 

19 ? S< 0:00 [kacpid] 

75 ? S< 0:00 [kblockd/0] 
115 ? S 0:00 [pdflush] 
116 ? S 0:01 [pdflush] 
118 ? S< 0:00 [aio/0] 
117 ? S 0:00 [kswapd0] 
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711 ? S 0:00 [kseriod] 
1075 ? S< 0:00 [reiserfs/0] 
2086 ? S 0:00 [kjournald] 
2239 ? S<s 0:00 /sbin/udevd -d 

. lines deleted . 
6374 ? S 1:51 /usr/X11R6/bin/X:0 -audit © -auth /var/lib/gdm/:0.Xauth -nolisten 
tcp vt7 
6460 ? Ss 0:02 /opt/gnome/bin/gdmgreeter 
6671 ? Ss 0:00 sshd: testuser [priv] 
6675 ? S 0:00 sshd: testuser@pts/0 
6676 pts/0 Ss 0:00 -bash 
6712 pts/0 S 0:00 vsftpd 
14702 ? S 0:00 pickup -l -t fifo -u 
14752 pts/© R+ 0:00 ps ax-cols 132 


In this listing, the first column has the heading PID, and it shows a number for each pro- 
cess. PID stands for process ID (identification), which is a sequential number assigned by 
the Linux kernel. If you look through the output of the ps ax command, you'll see that the 
init command is the first process and has a PID of 1. That’s why init is referred to as the 
mother of all processes. 

The COMMAND column shows the command that created each process, and the TIME 
column shows the cumulative CPU time used by the process. The STAT column shows 
the state of a process: S means that the process is sleeping, and R means that it’s running. 
The symbols following the status letter have further meanings; for example, < indicates a 
high- priority process, and + means that the process is running in the foreground. The TTY 
column shows the terminal, if any, associated with the process. 

The process ID, or process number, is useful when you have to stop an errant process 
forcibly. Look at the output of the ps ax command and note the PID of the offending pro- 
cess. Then use the kill command with that process number to stop the process. For exam- 
ple, to stop process number 8550, type the following command: 


kill 8550 


Directory Navigation 


In Linux, when you log in as root, your home directory is /root. For other users, the home 
directory is usually in the /home directory. For example, the home directory for a user log- 
ging in as testuser is /home/testuser. This information is stored in the /etc/passwd file. 
By default, only you have permission to save files in your home directory, and only you can 
create subdirectories in your home directory to organize your files further. 

Linux supports the concept of a current directory, which is the directory on which all 
file and directory commands operate. After you log in, for example, your current directory 
is the home directory. To see the current directory, type the pwd command. 
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To change the current directory, use the cd command. To change the current directory 
to /usr/lib, type the following: 


cd /usr/lib 


Then to change the directory to the cups subdirectory in /usr/lib, type the following 
command: 


cd cups 


Now if you use the pwd command, that command shows /usr/1lib/cups as the current 
directory. 

These two examples show that you can refer to a directory’s name in two ways: 
with an absolute pathname or a relative pathname. An example of an absolute pathname 
is /usr/lib, which is an exact directory in the directory tree. (Think of the absolute 
pathname as the complete mailing address for a package that the postal service will deliver 
to your next-door neighbor.) An example of a relative pathname is cups, which represents 
the cups subdirectory of the current directory, whatever that may be. (Think of the relative 
directory name as giving the postal carrier directions from your house to the one next door 
so that the carrier can deliver the package.) 

If you type cd cups in /usr/lib, the current directory changes to /usr/lib/cups. 
However, if you type the same command in /home/testuser, the shell tries to change the 
current directory to /home/testuser/cups. 

Use the cd command without any arguments to change the current directory back to 
your home directory. No matter where you are, typing cd at the shell prompt brings you 
back home. The tilde character (~) is an alias that refers to your home directory. Thus, 
you can also change the current directory to your home directory by using the command 
cd ~. You can refer to another user’s home directory by appending that user’s name to 
the tilde. Thus, cd ~superman changes the current directory to the home directory of 
superman. 

A single dot (.) and two dots (..), often referred to as dot-dot, also have special 
meanings. A single dot (.) indicates the current directory, whereas two dots (..) indicate 
the parent directory. For example, if the current directory is /usr/share, you go one level 
up to /usr by typing the following: 


Cds 


Directory Listings 


You can get a directory listing by using the ls command. By default, the ls command, 
without any options, displays the contents of the current directory in a compact, 
multicolumn format. To tell the directories and files apart, use the -F option (ls -F). The 
output will show the directory names with a slash (/) appended to them. Plain filenames 
appear as is. The at sign (@) appended to a listing indicates that this file is a link to another 
file. (In other words, this filename simply refers to another file; it’s a shortcut.) An asterisk 
(*) is appended to executable files. (The shell can run any executable file.) 
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You can see even more detailed information about the files and directories with the -1 
(long format) option. The rightmost column shows the name of the directory entry. The 
date and time before the name show when the last modifications to that file were made. 

To the left of the date and time is the size of the file in bytes. The file’s group and owner 
appear to the left of the column that shows the file size. The next number to the left indi- 
cates the number of links to the file. (A link is like a shortcut in Windows.) 

Finally, the leftmost column shows the file’s permission settings, which determine who 
can read, write, or execute the file. This column shows a sequence of nine characters, which 
appear as rwxrwxrwx when each letter is present. Each letter indicates a specific permission. 
A hyphen (-) in place of a letter indicates no permission for a specific operation on the file. 
Think of these nine letters as three groups of three letters (rwx), interpreted as follows: 


Leftmost Group Controls the read, write, and execute permissions of the file’s owner. 

In other words, if you see rwx in this position, the file’s owner can read (r), write (w), and 
execute (x) the file. A hyphen in the place of a letter indicates no permission. Thus, the 
string rw- means that the owner has read and write permissions but not execute permis- 
sion. Although executable programs (including shell programs) typically have execute per- 
mission, directories treat execute permission as equivalent to use permission: A user must 
have execute permission on a directory before they can open and read the contents of the 
directory. 


Middle Group Controls the read, write, and execute permissions of any user belonging to 
that file’s group 


Rightmost Group Controls the read, write, and execute permissions of all other users 
(collectively thought of as the world) 


Thus, a file with the permission setting rwx------ is accessible only to the file’s owner, 
whereas the permission setting rwxr--r-- makes the file readable by the world. 


An interesting feature of the ls command is that it doesn’t list any file the 
á TE name of which begins with a period. To see these files, you must use the 
ls command with the -a option, as follows: 


ls -a 


Most Linux commands take single-character options, each with a hyphen as a prefix. When 
you want to use several options, type a hyphen and concatenate (string together) the option 
letters, one after another. Thus, ls -al is equivalent to ls -a -las well asto ls -l -a. 


Changing Permissions and Ownership 


You may need to change a file’s permission settings to protect it from others. Use the chmod 
command to change the permission settings of a file or a directory. To use chmod effectively, 
you have to specify the permission settings. A good way is to concatenate letters from the 
columns of Table 20.2 in the order shown (who/action/permission). You use only the single 
character from each column—the text in parentheses is for explanation only. 
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TABLE 20.2 Letter codes for file permissions 





Who Action Permission 
u (user) + (add) r (read) 

g (group) - (remove) w (write) 

o (others) = (assign) x (execute) 
a (all) s (set user ID) 


For example, to give everyone read access to all the files in a directory, pick a (for all) 
from the first column, + (for add) from the second column, and r (for read) from the third 
column, to come up with the permission setting a+r. Then use the set of options with 
chmod, as follows: 


chmod atr * 


On the other hand, to permit everyone to execute one specific file, type the following: 


chmod a+x filename 


Use ls -1 to verify that the change took place. 

Sometimes you have to change a file’s user or group ownership in order for everything 
to work correctly. For example, suppose you’re instructed to create a directory named cups 
and give it the ownership of user ID Ip and group ID sys. You can log in as root and create 
the cups directory with the command mkdir as follows: 


mkdir cups 


If you check the file’s details with the ls -1 command, you see that the user and group 
ownership are both assigned to root. To change the owner, use the chown command. For 
example, to change the ownership of the cups directory to user ID lp and group ID sys, 
type the following: 


chown lp.sys cups 


Working with Files 


To copy files from one directory to another, use the cp command. If you want to copy a file 
to the current directory but retain the original name, use a period (.) as the second argu- 
ment of the cp command. Thus, the following command copies the Xresources file from 
the /etc/X11 directory to the current directory (denoted by a single period): 


cp /etc/X11/Xresources . 
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The cp command makes a new copy of a file and leaves the original intact. 

If you want to copy the entire contents of a directory—including all subdirectories and 
their contents—to another directory, use the command cp -ar sourcedir destdir. (This 
command copies everything in the sourcedir directory to the destdir directory.) For 
example, to copy all the files from the /etc/X11 directory to the current directory, type the 
following command: 


cp -ar /etc/X11 . 
To move a file to a new location, use the mv command. The original copy is gone, and a 


new copy appears at the destination. You can use mv to rename a file. If you want to change 
the name of today. list to old. list, use the mv command as follows: 


mv today.list old.list 

On the other hand, if you want to move the today. list file to a subdirectory named 
saved, use the following command: 
mv today.list saved 

An interesting feature of mv is that you can use it to move entire directories (with all 
their subdirectories and files) to a new location. If you have a directory named data that 


contains many files and subdirectories, you can move that entire directory structure to 
old_data by using the following command: 


mv data old_data 


To delete files, use the rm command. For example, to delete a file named old. list, type 
the following command: 


rm old.list 


Be careful with the rm command, especially when you log in as root. You can 
inadvertently delete important files with rm. 


Working with Directories 


To organize files in your home directory, you have to create new directories. Use the mkdir 
command to create a directory. For example, to create a directory named images in the 
current directory, type the following: 


mkdir images 


After you create the directory, you can use the cd images command to change to that 
directory. 

You can create an entire directory tree by using the -p option with the mkdir command. 
For example, suppose your system has a /usr/src directory and you want to create the 
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directory tree /usr/src/book/java/examples/applets. To create this directory hierarchy, 
type the following command: 


mkdir -p /usr/src/book/java/examples/applets 


When you no longer need a directory, use the rmdir command to delete it. You can 
delete a directory only when the directory is empty. To remove an empty directory tree, you 
can use the -p option, as follows: 


rmdir -p /usr/src/book/java/examples/applets 


This command removes the empty parent directories of applets. The command stops 
when it encounters a directory that’s not empty. 


Networking Utilities 


Just as you can use the ipconfig command to see the status of IP configuration with 
Windows, the ifconfig command can be used in Linux. You can get information about the 
usage of the ifconfig command by using ifconfig -help. The following output provides 
an example of the basic ifconfig command run on a Linux system: 


ethO Link encap:Ethernet HWaddr 00:60:08:17:63:A0 

inet addr:192.168.1.101 Bcast:192.168.1.255 Mask:255.255.255.0 
UP BROADCAST RUNNING MTU:1500 Metric:1 

RX packets:911 errors:0 dropped:0 overruns: frame:0 
TX packets:804 errors:0 dropped:0 overruns:0 carrier:0 
collisions:0 txqueuelen:100 

Interrupt:5 Base address: 0xe400 

lo Link encap:Local Loopback 

inet addr:127.0.0.1 Mask:255.0.0.0 

UP LOOPBACK RUNNING MTU:3924 Metric:1 

RX packets:18 errors:0 dropped:0 overruns:0 frame:0 

TX packets:18 errors:0 dropped:0 overruns:@ carrier:0 
collisions:0 txqueuelen:0 


In addition to using ifconfig, Linux users can use the iwconfig command to view the 
state of their wireless network. By using iwconfig, you can view such important informa- 
tion as the link quality, access point (AP) MAC address, data rate, and encryption keys, 
which can be helpful in ensuring that the parameters in the network are consistent. 


Summary 


This chapter provided an overview of operating systems other than Microsoft Windows. 
In particular, we looked at macOS and Linux, including the features and various tools 
included with each that appear on the CompTIA A+ 220-1002 exam. 
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There are best practices that administrators should follow regardless of which operating 
system(s) they are running, and we looked at those, as well. The chapter concluded with an 
examination of some basic Linux commands and examples of most of them in use. 


Exam Essentials 


Be able to identify best practices. Best practices help keep systems and data usable. 
Among the best practices to follow, it is important to schedule backups, schedule disk 
maintenance, keep systems up to date, and make sure that antivirus/anti-malware definition 
files are current. 


Know key macOS tools and features. There are a number of tools and features included 
with macOS that make it an attractive operating system to use. Among them are Mission 
Control, Keychain, Spotlight, iCloud, Gestures, Finder, Remote Disc, Dock, and Boot 
Camp. 


Know the basic Linux commands. Every version and distribution of Linux allows 
you to get to the command line in one way or another and interact with the shell. From 
there, you can give commands to navigate around (cd, pwd), to create and change file 
values (vi, chmod, chown), to run commands (su, sudo), and to do many other tasks. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. Within a Linux terminal, you want to see all the files on your system in long format (using 
the -1 option), including any hidden files (which requires the -a option). Which command 
should you use? 


ls -a | ls -l 
ls -s3 ls -l 
ls -la 

ls -a\ls -l 


2. Which of the following allows you to install Windows on a Mac machine and choose 
between operating systems upon boot up? 


A. 
B. 
C. 
D. 


Keychain 
Mission Control 
Finder 

Boot Camp 


3. As part of your training program, you’re trying to convince users to make backups on a 
regular basis. Which Apple app can be used to make backups of various types on a regular 


basis? 

A. Time Machine 
B. Finder 

C. VSS 

D. Keychain 


4. Which of the following Linux commands/utilities can be used to edit a file? 


A. 
B. 
C. 
D. 


ps 
vi 
rm 
ls 


5. Which of the following Linux commands/utilities can be used to edit a wireless 
connection’s configuration settings? 


A. 


B. 
C. 
D 


dd 
apt-get 
iwconfig 


pwd 
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Which of the following is a macOS feature for password management? 
A. Spotlight 

B. Keychain 

C. Dock 

D. Gestures 


The interpreter in Linux between the operating system and the user is known as the 


A. Shell 

B. Translator 
C. Login 

D. GUI 

What type of backups is kept on-site at the computer center for immediate recovery 
purposes? 

A. Man-in-the-middle 

B. Cloud copies 

C. Journal copies 

D. Working copies 


Which of the following utilities can be used in Linux to download patches for installation 
on a workstation? 


A. update 

B.  Shell/terminal 
C. apt-get 

D. patch 


. Which of the following commands can be used to change the owner of a file to a new 


owner in Linux? 


A. cd 

B. chmod 

C. chown 

D. pwd 

Which Linux utility can be used to check and repair disks? 
A. fsck 

B. chkdsk 

C. du 

D. dumgr 
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12. Your iPad has an application that will not stop running. What feature/tool can you use to 
stop it? 
A. kill 
B. Force Quit 
C. Task Manager 
D. Close Quit 


13. Which of the following is the most common shell used with Linux? 
A. Tcl/Tk 
B. Terminal 
C. Bash 
D. SSH 
14. What is the name of the area at the bottom of a macOS screen where, by default, a bar of 
crucial icons appears? 
A. Footer 
B. Mission Control 
C. Taskbar 
D. Dock 


15. Which key combination can you use to bring up Spotlight from within an app? 
A. Control+Shift 
B. Option+Tab 
C. Command+spacebar 
D. Alt+Home 


16. Which Linux command can be used to let you run a single command as another user? 
A. sudo 
B. su 
C. passwd 
D 


ifconfig 


17. 


18. 


19. 


20. 
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Which of the following Linux commands will show you a list of running processes? 


A. 
B. 
C. 
D. 


ls 
cat 
ps 
su 


You are currently in a Linux terminal session and in the /home/testuser/documents/ 
mail directory. Which command will take you to /home/testuser/documents? 


A. 
B. 
C. 
D. 


(o 
CA ssa 
cd . 
cd ~ 


If the permissions for a file are rwxrw-r--, what permissions apply for a user who is a 
member of the group to which the owner belongs? 


A. 
B. 
C. 
D. 


Read, write, and execute 
Read and write 
Read only 


No access 


What does the -p option with mkdir do? 


A. 


B. 
C. 
D 


Prompts the user before creating files 
Prompts the user before creating subfolders 
Creates subfolders as well as folders 


None of the above 
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Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answers compare to the authors’, refer 
to Appendix B. 

By default, not all files and folders in a Linux directory are shown when you do an ls 
listing. Entries that start with a period (.) are considered “hidden” and not shown. Try this 
command in your home directory, and then compare the result with what you see when you 
don’t use the -a option: 


1. Type cd / to change to the root directory. 

Type ls -F to see the files and directories in the root directory. 
Type ls -aF to see everything, including hidden files. 

Type cd ~ to change to your home directory. 


Type ls -1 to see the files and directories in your home directory. 


on PF ON 


Type ls -al to see everything, including hidden files. 
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Scripting and Remote 
Access 





THE FOLLOWING COMPTIA A+ 220-1002 
EXAM OBJECTIVES ARE COVERED 
IN THIS CHAPTER: 





Identify the basics of scripting. 





Script file types: .bat, .ps1, .vbs, .sh, .py, .js 
Environment variables 
Comment syntax 
Basic script constructs: Basic loops, Variables 
Basic data types: Integers, Strings 
Given a scenario, use remote access technologies. 
RDP 
Telnet 
SSH 
Third-party tools: Screen share feature, File share 


Security considerations of each access method 





CompTIA has identified that with the rapid adoption of cloud- 
based services, system administrators have a need for scripting 
and remote access now more than ever. Scripting allows you to 
manage a system as if you have logged in and performed the task yourself, such as purging 
old log files from a web server to make space. Remote access technologies allow you to con- 
nect to these remote systems so that you can manually administer them. 

This chapter looks at a variety of scripting languages. After completing this chapter, you will 
not be an expert at writing scripts. The goal of this chapter is to familiarize you with the vari- 
ous scripting languages so that you can learn the basics of scripting and their purposes. We will 
also look at various remote access methods and their security considerations. 





Scripting 


Before diving into scripting, we’ll begin by discussing the differences between a program- 
ming language and a scripting language. When you write a script, you are basically using 
a high-level programming language. An example of a low-level programming language is 
assembler, also known as assembly language. Figure 21.1 shows what we call the 
“programming pyramid.” 


FIGURE 21.1 Programming pyramid 


Assembly Language 


Executable Machine Code 


Hardware 





The lowest layer is the actual hardware, which is the central processing unit (CPU). 
Directly above the hardware layer is the executable machine code that interacts with the 
hardware to make it perform some useful function or process. The operating system is 
usually programmed in a low- to mid-level programming language, such as C/C++ or even 
assembly language. It is then compiled into executable machine code. Applications are 
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often programmed in high-level languages, such a Java, C#, or Visual Basic .NET, and are 
compiled to executable machine code or an intermediate code. Scripts, however, are not 
compiled; they are interpreted, as we discuss in this section. 

Depending on which layer you program on, you gain some advantages, but at the same 
time you are also capped by some of the limitations of each layer. For example, a program 
created in assembly language will be quite complex because you will need to perform 
low-level functions just to add two numbers together. However, because you are at such 
a low-level, you have direct access to the hardware, so you are limitless in your control of 
the hardware. If you were to use a higher-level language, such as C/C++, the application 
would be relatively easy to write; adding two numbers is as simple asc = a + b;. Because 
it is a higher-level language, however, you do not have the same lower-level control over the 
hardware as with assembly language. You have access only to what the compiler will under- 
stand and compile to executable machine code, as shown in Figure 21.2. 


FIGURE 21.2 Compiling a programming language 





v 






Executable Machine Code 


Hardware 


Scripting languages do not need to be compiled. They are interpreted by the shell, com- 
mand line, or external interpreter, as shown in Figure 21.3. The interpreter reads the script 
and executes the instructions in the operating system. The big difference is that you do not 
need to compile scripts to executable machine code, as in the previous example of a C/C++ 
program. Unfortunately, the higher the level, the less control you have over the process. The 
benefit is you can create a script rather quickly, and you don’t need to compile it. 


FIGURE 21.3 Interpreting a scripting language 
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Another big difference between applications and scripts is that scripts require applica- 
tions to complete their purpose. If an application doesn’t exist for a function in your script, 
then you should evaluate whether a script is the right course of action. For example, if you 
need to resize pictures, an application must exist that can be called via the command line 
that will take the appropriate input and resize the pictures. If an application doesn’t 
exist that can resize the picture, then you might need to write an application that resizes a 
picture in lieu of a script. A script cannot normally create functions of this nature; it can 
only call on them. 


PP Java is a compiled language that requires the Java Development Kit 

‘gr (JDK) in order to be compiled to an intermediate code called bytecode. 
The bytecode is then run on top of the Java runtime, known as the Java 
Runtime Environment (JRE). This is why you need to install Java to 
run Java programs on your operating system. JavaScript, on the other 
hand, is a scripting language that many different web browsers support. 
JavaScript does not need a JRE since it is interpreted inside of the web 
browser. 


Scripting Basics 


There are several different types of scripting languages. Each scripting language has its own 
nuances and syntax. This section discusses some scripting basics that you can apply to any 
scripting language. You’ll only have to adjust the syntax to the scripting language you’ve 
selected to get the desired outcome. 


Variables 


A variable is a symbolic word or combination of letters that can be used to hold a value. 
The value can be defined as a number, text, Boolean, or array. Numbers can be either inte- 
gers or floating-point, but the scripting languages you choose must support floating-point 
math. Floating-point math is a value that contains a decimal number, whereas integers 

are whole numbers. Text is also called a string and has no numeric equivalent. A string 
containing 30 will not be a value of 30; it will be only be a string of characters containing 
a 3 and a 0. Mathematical computations cannot be performed on a string. Boolean values 
are true or false values, and true values and arrays are collections of strings, numbers and 
Boolean values. 

You might see a programming language described as a strongly typed language. That 
means that the variable must be defined as to what type of value it will hold and how long 
the value will be. This is yet another difference between scripting languages and program- 
ming languages: Scripting languages do not need variables to be defined and are normally 
not typed. Most of the time, you can just load a variable with a value and it is dynami- 
cally typed. This is not the most economical use of memory, but that shouldn’t be an issue, 
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because scripts are often simple ways to complete a simple task, therefore it doesn’t matter 
that loading a variable with a value and having it dynamically typed isn’t the most eco- 
nomical use of memory. 

The name of a variable should have some meaning and cannot be a reserved word. So if 
you had a variable that needed to hold a counter, you could simply create a variable called 
count. However, you would need to ensure that count was not used elsewhere in the pro- 
gram for a function; otherwise, it’s a reserved word in the scripting language and cannot be 
used as a variable. 

Following is a simple example of a variable named count being created in the 
PowerShell scripting language and loaded with the value of 1. Generally, you load 
a value by specifying the variable, followed by an equal sign, and then the value. In 
PowerShell, the syntax dictates that you place a $ in front of the variable in order to 
notify the interpreter that you are addressing a variable. Each scripting language will be 
slightly different, but the concept remains the same. You can also view the contents of 
the variable either by typing the variable name and pressing Enter or by using the echo 
command before the variable. 


PS C:\Users> $count = 1 
PS C:\Users> $count 

1 

PS C:\Users> echo $count 
1 

PS C:\Users> 


Environment Variables 


As previously mentioned, variables hold values in scripts, so we can do things such as 
counting. Environment variables also hold values, but they are used for the environment of 
either the system or the current user. Environment variables often hold values such as the 
path to an executable or the location of the temporary folder. 

Environment variables are inherited in a structured fashion: system, user, and then pro- 
gram. They can be overwritten at any underlying level, but only for that entity. For exam- 
ple, if a script changes the user environment variable for the temporary folder, the change is 
applicable only for that script, unless the user environment is changed—then it will affect 
all scripts run by a user. Following are the types of variables you will encounter in the oper- 
ating system: 


System Variable Defined for use by the system, or any user or program 


User Variable Defined for use by a specific user, or any program executing under that spe- 
cific user 


Program Variable Defined for use inside of a script or application and can only be 
accessed from inside of the script or application 
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Comment Syntax 


Your scripts should have a level of end-user readability. The code should describe what 
is going to happen without external documentation. Although we strive to create elo- 
quent scripts that read like computer poetry, sometimes we need to make comments 
inside of the code. 

Each language will have a different way to make comments. The following example uses 
the PowerShell syntax. As you progress through the next section, “Scripting Languages,” 
you will see the way to comment in the various languages. You’ll notice in the following 
code that we’ve added some commenting that is generally used for script creation. The 
three basic components of the comments are author name, authored date, and the purpose 
of the script. Although the following comment block is best practice, it is not required; one- 
line comments inside the code are allowed also. In this scripting language of PowerShell, 
the comment is preceded by the # symbol. Other scripting languages will have their own 
syntax and you'll see the various examples throughout this chapter. 


# Jon Buhagiar 

# 10/16/18 

# This script will output a directory listing of the C drive 
Get-ChildItem C:\ 


Loops 


When writing a script, you may need to create a controlled loop inside of the script. An 
example of a controlled loop is to read a file and then do some things for each line con- 
tained in the file. You can use two basic loops in your scripts: for loops and while loops. 

A for loop is a stepped loop with a defined beginning and a defined end; each step is 
defined as well. The following example shows a for loop for PowerShell that starts at 1 and 
counts to 10. The output is the word Number and an incrementing number. You can see 
that the variable is initially set to 1 with ($count=1), and a test is done to check if the vari- 
able is less than or equal to 10 with ($count -le 10). The for loop is stepped by adding 
a one to the existing number with ($count++). This is just one example of a for loop, and 
every scripting language is a bit different in syntax, but the concept is the same. 


For(Scount=1; $count -le 10; $count++) { 
Write-Host "Number $count" 


} 
[ Output of Script ] 
Number 1 


Number 2 
Number 3 
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umber 
umber 
umber 
umber 
umber 


Oo ON DH A 


umber 
umber 10 





A while loop continues to loop until either it is exited or a condition is met. The while 
loop has no defined beginning, only a defined end, and it can be exited without conse- 
quence to the function. In the following code, the variable count is set to 0, and then the 
while loop begins. Inside the while loop, the count variable is incremented by 1 each 
time it loops with ($count++). The loop will continue as long as count is less than 11 with 
($count -lt 11). The output will be identical to the prior example. 


Scount = 1 

While ($count -lt 11) { 
Write-Host "Number $count" 
Scount++ 


} 
[ Output of Script ] 


umber 
umber 
umber 
umber 
umber 
umber 
umber 
umber 


O o N DH BR WN 


umber 





je 
© 


umber 


A while loop and a do while loop are identical in functionality; they both 
s OTE loop until a condition is no longer true. The difference between the two 

is that a while loop will have the condition before the code in the loop, 

whereas a do while will have the condition after the code in the loop. Each 

language will support either one loop or the other, and sometimes both 

types of loops. However, the concept remains the same: The loop will con- 

tinue until the condition is no longer true. 
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Branch Logic 


Branch logic enables code to deviate, or branch, depending on a condition. The if state- 
ment is the most common conditional branch logic found in scripts. The if statement is 
usually followed by a condition and a then clause. It can even use an else clause. The then 
clause is executed only if the condition is true; if the condition is not true, the else clause is 
executed. 

In the following example, the string str is set to 1. The if statement then checks the 
condition of str being equal to 1 with ($str -eq 1). It is true, so the next statement of 
Write-Host "Yes" is executed. It’s important to note that PowerShell implies the then 
clause; only the else clause needs to be spelled out. If str were anything other than 1, 
the condition would be false, executing the else clause of Write-Host "No". This is an 
example for PowerShell, but through the next section, “Scripting Languages,” you will find 
many different examples for each scripting language. 


Sstr=1 
If ($str -eq 1) { Write-Host "Yes" } Else { Write-Host "No" } 


[ Output of Script ] 


Yes 


Scripting Languages 


Now that you understand the basic differences between a programming language and 
a scripting language and some scripting basics, let’s look at several different scripting 
languages you are likely to encounter as a technician. As we cover the various scripting 
languages, we will highlight which operating systems they are common to or natively 
supported on. This is often the biggest deciding factor when you choose a particular 
scripting language. 


Windows Batch Scripts 


Windows batch scripts have been around since the release of Microsoft’s Disk Operating 
System (DOS) back in 1981. The original script interpreter was command.com, and since 
then Windows NT was released, which included an updated command-line interpreter 
called Command Prompt, or cmd.exe. The original file extension used with batch scripts 
was .bat, but today both .bat and .cmd can be used to initiate a batch script since they are 
both associated with the command-line interpreter of cmd.exe. 

A Windows batch script is probably the fastest way to get something done, when 
all you need is a list of commands run one after the other. For example if you need to 
create new user accounts for a school. You can get the usernames in an Excel sheet, and 
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you can create a script from the entries, by using an Excel formula adding 

in the column of the username. As an example, the formula 

="NET USER " & Al & " PassWOrd /ADD /DOMAIN" copied into cell B1 will produce the 
line you need to execute. Then you just need to drag the formula down, and the script 
will be built. A quick copy and paste, and the script will look similar to the following 
output. It’s a quick and dirty way to create user accounts. Using the combination of 

an Excel sheet and a copy-and-paste into a batch script is the fastest way to build and 
execute a laundry list of commands. 


NET USER UserOne PassWOrd /ADD /DOMAIN 
NET USER UserOne PassWOrd /ADD /DOMAIN 
NET USER UserOne PassWOrd /ADD /DOMAIN 
NET USER UserOne PassWOrd /ADD /DOMAIN 
[ Output Cut ] 


Batch scripts can also contain logic. Following is a simple batch script that tests whether 
a variable of FLIPFLOP is equal to © using an if statement. If FLIPFLOP is equal to 0, the 
script will proceed to write to the screen the word Zero, set FLIPFLOP to a value of 1, and 
then jump to :LOOP. Because FLIPFLOP is set to 1, it is not equal to 0; so, the else clause 
in the if statement will be processed, and the word One will be printed to the screen, and 
FLIPFLOP will then be set to 0, and the script will jump to :LOOP again. This will proceed 
until Ctrl+C is pressed to stop the processing of the script. 


@ECHO OFF 

REM FlipFlop Script 
SET /A FLIPFLOP=0 

: LOOP 


IF %FLIPFLOP% EQU © (ECHO Zero && SET /A FLIPFLOP=1) ELSE (ECHO One && SET /A 
FLIPFLOP=0) 


GOTO :LOOP 


Creating and Running a Windows Batch Script 


1. Click the Start menu and type Notepad. Select Notepad when it populates in the 
search results. 


Type the preceding batch script example into Notepad. 
Choose File > Save As, and then choose to save the batch script to your Desktop. 


Name the file flipflop .cmd, and then click Save. 


a e w N 


Press the Windows key and the R key at the same time, type cmd. exe, and then 
press Enter. 
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EXERCISE 21.1 (continued) 


6. Typecd %userprofile%\desktop, and press Enter. 
7. Type flipflop.cmd, and then press Enter. 
Notice that your screen will display One and Zero alternating. 
8. Press Ctrl+C. 
This will display the question Terminate batch job (Y/N)? 
9. Answer Y, and then press Enter. 
10. Switch to Notepad and put REM in front of the @echo off command. 
11. Save the file by choosing File > Save. 
12. Switch to the command prompt and rerun flipflop. cmd. 


You will now see the commands as well as the variable contents while the script is 
running. 


13. Press Ctrl+C. 
This will display the question Terminate batch job (Y/N)? 


14. Answer Y, and then press Enter. 


Another way to open a command prompt to a specific folder is to first 

P TE browse to the folder, and then hold the Shift key and right-click an empty 
space in the folder. Select Open PowerShell Window Here on Windows 
10 or Open Command Windows Here on Windows 7 and Windows 8/8.1. 


If you are on Windows 10 and opened a PowerShell Window, simply type 
cmd, and then press Enter. This will change your interpreter to cmd.exe. 


PowerShell Scripts 


PowerShell allows for the automation and management of the Windows operating sys- 
tems, as well as cloud-related services such as Microsoft Azure and Office 365. One of 
the limiting features of any scripting language is its ability to perform a needed task. 
PowerShell was created to be totally extensible. It was built upon the .NET Framework 
Common Language Runtime (CLR). Any programmable library a .NET application 
has access to, PowerShell can use, which is what makes it so extensible. It has been used 
since Windows Server 2008 as a configuration tool for the operating system. In fact, 
most of the time when you configure a service in the Server Manager tool, you actually 
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run a PowerShell command in the background. Many of the GUI wizards allow you to 
see the PowerShell script that will be executed, so you can reuse the line in a script of 
your own. 

PowerShell introduced the concept of cmdlets. PowerShell has over a hundred cmdlets 
installed, called the core cmdlets. You can always add your own cmdlet by creating a .ps1 
script and installing it into the PowerShell cmdlet store in the operating system, as you will 
do in Exercise 21.2. A cmdlet is simply a verb and noun separated by a dash. Here are a few 
examples: 


get-item Gets an item such as a directory listing, environment variable, or Registry key, 
just to name a few items. 


set-item Changes the value of an item, such as creating an alias or setting an environment 
variable. 


copy-item Copies an item, such as a file or folder. 
remove-item Deletes an item, such as a file, folder, or Registry key. 


move-item Moves an item, such as a file, folder, or Registry key. 


These are just a few of the built-in core cmdlets for PowerShell. Others exist for - item, 
such as rename-item, new-item, invoke-item, and clear-item. Each one performs a corre- 
sponding action on the noun following the dash. You can even extend the functionality of a 
command with your own .ps1 cmdlet. There is even a get-verb command so that you can 
see all the appropriate verbs that you can use for your own command. 


P To learn more about creating your own cmdlets, visit: 


STE 
https: //docs.microsoft.com/en-us/powershell/developer/cmdlet/ 


writing-a-windows-powershell-cmdlet 


If you used the get-item cmdlet and specified a folder, information about that folder 
would be returned. If you wanted to see all the other folders contained within the folder, you 
could use a * wildcard. Or you could use the get-childitem cmdlet and specify the 
directory, as follows: 


PS C:\Users\UserOne> Get-item c:\* 
Directory: C:\ 
Mode LastWriteTime Length Name 


d----- 11/28/2017 9:52 PM Dell 
d----- 5/16/2018 9:32 PM NVIDIA 
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d----- 4/11/2018 7:38 PM PerfLogs 

d-r--- 5/28/2018 10:04 PM Program Files 
d-r--- 8/12/2018 5:31 PM Program Files (x86) 
d-r--- 5/28/2018 6:11 PM Users 

d---s< 10/18/2018 10:17 PM Windows 


PS C:\Users\UserOne> Get-ChildItem c:\ 


Directory: C:\ 


Mode LastWriteTime Length Name 

d----- 11/28/2017 9:52 PM dell 

d----- 5/16/2018 9:32 PM NVIDIA 

d----- 4/11/2018 7:38 PM PerfLogs 

d-r--- 5/28/2018 10:04 PM Program Files 
d-r--- 8/12/2018 5:31 PM Program Files (x86) 
d-r--- 5/28/2018 6:11 PM Users 

d----- 10/18/2018 10:17 PM Windows 


When you use the dir command in PowerShell to view a directory listing of files, you 
are actually using something called an alias. The alias then calls the get-childitem cmdlet. 
To see all the aliases on the operating system, you can use the get-alias cmdlet. You can 
see all the commands mapped over to PowerShell cmdlets, as follows: 


PS C:\Users\UserOne> get-alias 


CommandType Name 

lias % -> ForEach-Object 
lias ? -> Where-Object 
lias ac -> Add-Content 
lias asnp -> Add-PSSnapin 


lias cd -> Set-Location 
lias CFS -> ConvertFrom-String 
lias chdir -> Set-Location 


A 

A 

A 

A 

Alias cat -> Get-Content 
A 

A 

A 

Alias clc -> Clear-Content 
A 





lias clear -> Clear-Host 
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Alias clhy -> Clear-History 
Alias cli -> Clear-Item 

Alias clp -> Clear-ItemProperty 
Alias cls -> Clear-Host 


[ Output Cut ] 


PowerShell also has a great way to develop scripts in what is called an Integrated 
Scripting Environment (ISE). The ISE allows you to write a script and test it without 
having to switch back and forth between a text editor and the execution environment. 
In addition to the writing and execution environment in the same window, there is a 
typeahead feature, which allows you to pick a command if you remember only the first 
few letters, as shown in Figure 21.4. You can also use the tab key to complete a com- 
mand, which makes writing scripts really fast when you know the first couple of letters. 
Formatting is also automated and makes for easier to read scripts. The formatting high- 
lights variables and commands in different colors so that you can differentiate between 
the two. 


FIGURE 21.4 PowerShell ISE 
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Before any script can be executed on the Windows operating system, you must first 
allow scripts to run. By default, any PowerShell scripts will be blocked. Exercise 21.2 
shows you how to un-restrict PowerShell scripts using the set-executationpolicy 
command. 
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Creating Your First PowerShell Script 


1. Click the Start menu and type PowerShell, right-click Windows PowerShell ISE when 
it populates in the search results, and then select Run as Administrator. 


2. Click Yes on the User Account Control dialog box, when prompted. 

3. Inthe lower portion of the ISE, type get-executionpolicy, and then press Enter. 
You'll notice that it returns Restricted. 

4. Type set-executionpolicy unrestricted, and then press Enter. 

5. Answer Yes to the prompt. 

6. Type the following into the top portion of the ISE: 


#FLlipFlop Script 
While ($true) { 
If (SFLIPFLOP -eq 0) { 
Write-Host "Zero" 
$ FLIPFLOP=1 
} Else { 
Write-Host "One" 
$ FLIPFLOP=0 


} 


7. Click File, then Save. 
The save dialog box will default to your Documents folder. 
8. Rename the file to flipflop.ps1, and then click Save. 
9. Inthe lower portion of the ISE, type cd ~\Documents, and then press Enter. 


Note that you used the ~ character, which represents your home directory, as previ- 
ously covered in Chapter 20, “Working with Mac OS and Linux.” 


10. Type .\flipflop.psi, and then press Enter. 
This will run the script and display the alternating words Zero and One. 
11. To stop it, press Ctrl+C. 


Alternatively, you can press the red stop button on the ribbon at the top of the win- 
dow. You can start the files by pressing the green play button. 


12. Type set-executionpolicy default, and then press Enter, to change the execu- 
tion policy back to the default setting. 
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Microsoft has created a cross-platform version of PowerShell that runs 

‘QB on Linux and macOS, called PowerShell Core. This version of PowerShell 
will run almost all the commands that the Windows version of PowerShell 
offers, with a few platform-specific nuances. More information on this 
topic can be found at: 


https: //docs.microsoft.com/en-us/powershell/ 


Visual Basic Scripts 


Visual Basic scripts—also known as VBScripts—are scripts based on Microsoft’s Visual 
Basic language. VBScript technology has been around since Windows 98 and Windows 
NT, so it is very mature and slowly being replaced by PowerShell, as we’ll explain. 
VBScripts also run only on Windows operating systems, unlike PowerShell scripts. 

VBScript technology is based on the Component Object Model (COM) to allow interac- 
tion with the operating system. Any COM object that can be instantiated can be accessed 
through a VBScript. As you learned in the preceding section, PowerShell is based on the 
.NET Framework. The Component Object Model predates the .NET Framework, as a way 
to register programming libraries with the operating system. By default, VBScripts cannot 
access programming libraries that have been written for .NET Framework, which is why 
VBScripts are slowly losing popularity and support by Microsoft. 

VBScripts are still extremely useful when it comes to a structured language for creat- 
ing login scripts. As previously mentioned, scripts are an interpreted language and are not 
compiled. VBScripts are no different; they require an interpreter to process. There are three 
main interpreters that can process VBScripts: Windows Scripting Host (WSH), Internet 
Information Services (IIS) Active Server Pages (ASP), and Internet Explorer. ASP and 
Internet Explorer are deprecated, so we will focus on Windows Scripting Host. 

The Windows Scripting Host is an environment that allows you to run VBScripts from 
the command line. By default, when a .vbs script is run, a program called wscript.exe 
processes the script. Any output will be sent to a Windows message box that you must close 
by clicking OK. This can be quite annoying if you have multiple lines of output, as each 
line will pop up a message box you have to close. A VBScript can also be executed with 
the cscript.exe program. This version of the VBScript processor outputs to a console 
window—hence, the name stands for console script. 

VBScripts are normally edited in Notepad and saved with a .vbs extension. A number of 
third-party editors allow typeahead. As previously mentioned, typeahead is a feature that 
allows for the completion of code after a few letters have been entered. Microsoft supports 
an editor called Visual Studio Code, which can be downloaded from https: //code 
.visualstudio.com. 

The following VBScript will perform the same output as the two preceding examples. As 
you can tell, the syntax is a little different. 


"FlipFlop Script 
Do Until FLIPFLOP > 2 
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If FLIPFLOP = © Then 
Wscript.Echo "Zero" 


FLIPFLOP = 1 
Else 
Wscript.Echo "One" 
FLIPFLOP = 0 
End If 
Loop 
~<a Because of the popularity of Windows PowerShell and its access to the .NET 
A TE Framework, there will be no future releases of VBScript processor. Microsoft 


will maintain the VBScript processor until it is retired. However, Windows 
batch scripts would probably be deprecated before the VBScript processor. 


Shell Scripts 


As you learned in Chapter 20, Bash stands for the Bourne Again Shell. Bash is backward 
compatible with its predecessor, called the Bourne shell (or sh). Whether you’re using the 
Bash shell or the sh shell, either will perform similar functions for scripting purposes. 
The shell itself interprets commands for scripting, similar to the Windows DOS shell. 
However, the bash and sh shells are much more advanced in their structure and functional- 
ity than DOS. Linux/UNIX shell scripts are basically how the operating system boots itself 
up and starts all the necessary services. 

Linux and UNIX scripts often end with the .sh extension to signify to the end user that 
the file contains a script (text) and not an executable code. Shell scripts do not require the 
.sh extension in order to be executed. They do, however, require execute permissions to 
be applied. This can be done with the chmod command, as you learned in the Chapter 20. 
Another nuance is that you must specify the relative path using a ./ and then the script— 
for example, ./script.sh. 

Shell scripts can be edited in any text-based editor. The vi editor was probably the first 
editor—and on older systems, your only choice. Today, there is a multitude of editors from 
which to choose, such as pico/nano, jed, Gedit, and Kate/Kwrite, just to name a few. Any of 
these editors will do a fine job for the basic editing of scripts. Some people find that open- 
ing two consoles is the fastest way to write a script on Linux/UNIX. One console serves 
as the editing console, with the text editor loaded and saving changes are made, while the 
other console serves as the execution environment. 

Following is a simple shell script that performs identical functionality to the scripts you 
have seen throughout this chapter. There are two major things to note with this example. 
The first is the syntax of the script, which differs slightly from the other examples but basi- 
cally looks similar. The second thing to note is the directive on the first line. The directive 
tells the operating system which shell to process the script in. The #! is called a hashbang. 
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The hashbang lets the operating system know the path of script interpreter that will be used 
to process the script, in this case it is /bin/bash. 


#!/bin/bash 
#FlipFlop Script 
while [ !$FLIPFLOP ]; do 
if [ $FLIPFLOP -eq 0 ] 
then 
echo Zero 
FLIPFLOP =1 
else 
echo One 
FLIPFLOP =0 
fi 
done 


The best way to start scripting with Linux/UNIX shell scripts is to load up 
TE Linux and try it out. You can find a great guide to Linux scripting: 


https://help.ubuntu.com/community/Beginners/BashScripting 


Python Scripts 


The Python scripting language was first released in 1991, and it started to gain popularity 
over the past 10 years or so. It is not normally installed by default in any operating system. 
If you want to use Python on a Windows or macOS operating system, you need to visit 
http://www. python.org to download the latest version, and then install it. If you are run- 
ning a Linux operating system, you will install Python through the package management 
system of the operating system. 


If you install Python from the website of http: //www.python.org, you will 
TE only be prompted to download Python 3.x. However, when installing on 
Linux, if you do not specify Python 3, you will install the older version of 


Python 2.x. Python 2 is no longer being supported and has less features 
than the current version of Python 3.x. 


The Python installation does not include an integrated development environment (IDE), 
also known as an Integrated Scripting Environment (ISE). The installation contains only 
the interpreter and some documentation to get you started. You can use any text editor to 
create and edit scripts. An extremely popular Python IDE is the Free Community version 
of PyCharm, by Jetbrains. The IDE allows for script development similar to the PowerShell 
ISE but with many more features, as shown in Figure 21.5. 


1144 Chapter 21 = Scripting and Remote Access 


FIGURE 21.5 The PyCharm IDE 





Python was created to be a very easy scripting language to learn, and it is very forgiving 
with syntax. It is probably one of the best languages that we can recommend to start script- 
ing in because it is so forgiving on syntax, unlike Bash or Windows batch scripting. Python 
also doesn’t lack in features. Like VBScript and PowerShell, Python is extensible and can use 
external libraries. One disadvantage to using Python is that it’s not been widely adopted in 
enterprise environments. So you will not be able to build login scripts with it, because the 
interpreter does not have direct ties into the operating system. You'll often find that your flex- 
ibility is limited when you try to integrate a Python script into an enterprise process. 

Python scripts normally end with the .py extension so that the end user can identify the 
scripting language used within the file. The .py extension also allows for the script to be 
launched on Windows operating systems. With Linux/UNIX and macOS systems, however, 
the hashbang defines the interpreter to use and generally looks something like #! /usr/ 
bin/python3. 

The following script was written in Python and follows the same functionality as the 
prior examples in this chapter. As you can see, the program’s readability is similar to 
the prior examples and the syntax differs slightly. 


#FlipFlop Script 
FLIPFLOP = 0 
while FLIPFLOP < 2: 
if FLIPFLOP == 
print("Zero") 
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FLIPFLOP = 1 
else: 

print("One") 

FLIPFLOP = 0 


JavaScripts 


JavaScript and the Java programming language have several similarities—for example, they 
are both object-oriented languages, and their syntax is similar. However, the similarities 
end there, because Java is a programming language and JavaScript is a scripting language. 
With the difference being that Java is compiled, whereas JavaScript is a scripting language. 

JavaScript is mainly interpreted in web browsers to allow for interactive web pages. 
JavaScript is one of the three core web technologies; the other two are Hypertext Markup 
Language (HTML) and Cascading Style Sheets (CSS). JavaScript can also be adapted to 
run outside of the web browser with a runtime called Node.js. Both web browser JavaScript 
and Node.js scripts end in the .js extension, which identifies the contents of the file as 
JavaScript code. 

JavaScript can be edited with any text-based editor. Microsoft Visual Studio Code does 
an excellent job of formatting for Windows-based editing of JavaScript. Brackets is another 
popular editor for JavaScript and runs on a variety of platforms. 

Following is an example of JavaScript code. The example is similar to the previous 
examples in relation to functionality. This particular script was coded to run in Node.js, 
since JavaScript normally outputs to HTML. The structure is similar to the prior examples. 
As always, every language differs slightly in syntax. 


//FlipFlop Script 
FLIPFLOP = 0; 
while (FLIPFLOP < 2) { 
if (FLIPFLOP == 0) { 
console.log ('Zero'); 
FLIPFLOP = 1; 
} else { 
console.log ('One'); 
FLIPFLOP = 0; 


Scripting is a new objective for the CompTIA A+ exam, and it may look 

OTE overwhelming to you. You are not expected to have mastered the skills 
of writing scripts, such as those included in this chapter. They have been 
included so that you can visualize the various languages and understand 
the syntax. You will be required to read and understand what a script is 
doing, as well as identify the various elements of a script, such as vari- 
ables, branch logic, basic loops, and the type of variables. 
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Remote Access 


Remote access technologies have been around for as long as networks have been in exis- 
tence. As a technician, you can’t always be in all the places you are needed. Remote access 
technologies allow you to do just that. You can create a remote connection to a distant 
computer on the network and change its configuration. In this section, we will discuss 
several different types of remote access technologies that are covered on the CompTIA 
220-1002 exam, as well as their security implications to a network. 


Remote Desktop Protocol 


Remote Desktop Protocol (RDP) is used exclusively with Microsoft operating systems. 

An RDP client—the Remote Desktop Connection client, also known as the mstsc.exe 
utility—is built into the Microsoft operating system, as shown in Figure 21.6. The Remote 
Desktop Connection client can provide remote access as though you were sitting in front of 
the keyboard, monitor, and mouse. The Remote Desktop Connection client and RDP can 
transport several other resources, such as remote audio, printers, the clipboard, local disks, 
and video capture devices, as well as any other Plug and Play (PnP) devices. 


FIGURE 21.6 The Remote Desktop Connection client 
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RDP communicates over TCP port 3389 to deliver the remote screen and connect the 
local mouse and keyboard for the RDP session. RDP uses Transport Layer Security (TLS) 
encryption by default, and it provides 128-bit encryption. Microsoft allows one remote user 
connection or a local connection on desktop operating systems via RDP, but not both at the 
same time. On server operating systems, Microsoft allows two administrative connections, 
which can be a combination of local or remote access but not to exceed two connections. 

Microsoft also uses RDP to deliver user desktops and applications via terminal services. 
When RDP is used in this fashion, a centralized gateway brokers the connections to each 
RDP client desktop session. Terminal services require terminal services licensing for either 
each user connecting or each desktop served. RDP can also be used to deliver applications 
to end users via Microsoft RemoteApp on terminal services. When RemoteApp is used, the 
server still requires a terminal services license. However, just the application is delivered to 
the user, rather than the entire desktop. 


PP The Remote Desktop feature was covered in Chapter 19, “Working 
A: with Windows 7.” The functionality of the feature has not changed in 
Windows 8/8.1 and Windows 10 from that described in this chapter. 


Virtual Network Computing 


Virtual Network Computing (VNC) is a remote control tool for the sharing of desktops. 
The VNC client normally operates on TCP port 5900. VNC is similar to Microsoft RDP, 
with the exception that VNC is an open-source protocol and typically allows only one con- 
sole session per operating system. It supports encryption via plug-ins, but it is not encrypted 
by default. 

VNC operates in a client/server model. The server allows for the remote control of the 
host on which it is installed. It is normally configured with a simple shared password, but it 
can also be configured with Windows groups. Several different clients can be used, such as 
RealVNC, TightVNC, and many others, but they all perform similarly. 


Many different VNC clients are available for download. To learn more, visit 

JTE https://www. realvnc.com and https: //www.tightvnc.com. A simple web 
search for “VNC clients” will produce a staggering number of results. Each 
client has its own unique feature set. 


Telnet 


Telnet is an older remote access protocol for Linux, UNIX, and network device operat- 
ing systems. Telnet provides an unencrypted remote text console session for remote access 
purposes, communicating over TCP port 23. It is not considered secure and should not be 
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used, because a malicious user can eavesdrop on the session. Many network devices still 
use Telnet for configuration purposes. However, SSH, if available, should be configured 
and used in lieu of Telnet. 

Because Telnet is unsecure and deprecated, many operating systems have removed the 
Telnet client and the server service. Since Windows 7, the Telnet client that comes with the 
operating system requires installation as a Windows feature. In Windows Server 2016, both 


the Telnet client and server were removed completely. Telnet has largely been replaced with 
SSH. 


P For more information about the telnet command, visit: 


4. TE : A Fak : 
Ang https: //docs.microsoft.com/en-us/windows-server/administration/ 
windows-commands/telnet 


Secure Shell 


Secure Shell (SSH) is commonly used for remote access via a text console for Linux and 
UNIX operating systems. The SSH protocol encrypts all communications between the SSH 
client and the SSH server using TCP port 22. The SSH server is also known as the SSH 
daemon. SSH uses public-private key pair cryptography to provide authentication between 
the SSH client and server. SSH can also use a key-pair to authenticate users connecting to 
the SSH server for the session, or a simple username and password can be provided. 

It is important to understand that both the user and their host computer are authen- 
ticated when the user attempts to connect to the server. During the initial connection 
between the user’s host computer and the SSH server, the encryption protocol is negotiated 
for the user’s login, and the cryptography keys are verified. PuTTY is a common SSH client 
that is free to download and use, as shown in Figure 21.7. PuTTY provides various meth- 
ods of connecting to a remote device, including Telnet and SSH. 


FIGURE 21.7 PuTTY SSH Client 
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P Windows 10 includes the OpenSSH client by default in Windows 10 
A: version 1803 and later. The OpenSSH client is located in the C: \WINDOWS\ 
SYSTEM32\0penSSH folder. 


Beyond logging into a Linux or UNIX server for remote access, SSH can provide remote 
access for applications. Through the use of SSH port forwarding, the application can 
be directed across the SSH connection to the far end. This allows applications to tunnel 
through the SSH session. It also encrypts application traffic from the client to the server, 
because it is carried over the SSH encrypted tunnel. SSH can behave similarly to a VPN 
connection, but it is more complex to set up. 


P A virtual private network (VPN) is a network connection that creates a 
P n secure tunnel between two locations over the Internet. VPNs are covered 
in Chapter 22, “Security Concepts.” 


Remote Access Tools 


Microsoft has included a remote access tool in Windows 8/8.1 and Windows 10 for 
soliciting help called Quick Assist, as shown in Figure 21.8. Quick Assist operates simi- 
larly to third-party services such as SplashTop, GoToMeeting, and Join.me. These tools 
allow for remote desktop sharing and assistance for an end user through screen sharing. 
Unfortunately, Quick Assist does not support file transfers. Quick Assist works behind 
routers and firewalls. The original Remote Assistance tool, introduced in Windows XP, did 
not work behind routers and firewalls. Quick Assist has replaced Remote Assistance in cur- 
rent versions of the Windows operating system. 

You can launch Quick Assist on Windows 10 by clicking the Start menu and typing 
Quick Assist. Once the Windows 10 Quick Assist tool is started on the technician’s computer, 
choose Give Assistance. You will then be prompted to log in with a Microsoft account. Once 
you are signed in, you will be prompted with a six-digit number, which will be valid for 
10 minutes. On the end user’s computer, they will launch Quick Assist and select Get 
Assistance. The end user will be prompted to supply your six-digit number. Once the number is 
entered, both computers will connect, and the technician will be prompted with what type of 
control they want to obtain: view only or full control. Of course, the end user will need to allow 
the control, but you can provide remote assistance without installing any third-party software. 

Third-party tools such as SplashTop, GoToMeeting, and Join.me, just to name a few, 
have their own unique features for remote assistance. In Figure 21.9 you will see the Join. 
me third-party remote assistance tool being accessed through a web browser. It looks simi- 
lar to the built-in Quick Assist tool, but it offers a different set of third-party tools, such as 
file transferring, clipboard sharing, and chat windows, just to name a few. Most of these 
tools also allow for remote agents to be installed. A remote agent allows a technician to 
connect without end-user intervention. This type of remote assistance is usually performed 
when the end-user device is owned by an organization. 
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FIGURE 21.8 Windows 10 Quick Assist tool 
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FIGURE 21.9 Join.me remote assistance connection 
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Security Considerations 


Each of the remote access technologies discussed in this chapter have security consider- 
ations. Before implementing a remote access technology, you should determine what type 
of data is going to be exchanged and whether the level of encryption is sufficient. Telnet, 
which is not encrypted, might be fine if simple data is being transmitted, such as tempera- 
ture or humidity readings. However, if passwords, configuration, or any type of sensitive 
information will be transmitted, then a more secure protocol, such as Secure Shell, should 
be used. Information about security will be covered in Chapter 22, “Security Concepts.” 


Summary 


This chapter focused on the basics of scripting and introduced programming concepts such 
as commenting, branch logic, and loops. Scripting is a new objective that appeared on the 
CompTIA objectives for the 220-1002 exam. It is a worthy skill for an A+ technician. 

This chapter also introduced you to the various remote access technologies, highlighting 
their advantages and weaknesses. This chapter also covered remote assistance tools, which 
allow you to screen share with a remote end user for support purposes. 


Exam Essentials 


Understand the basics of scripting. You should understand that a programming language 
is compiled, and a scripting language is interpreted. You should also understand the vari- 
ous elements of a script, such as the comment, interaction of environment variables, branch 
logic, and loops. 


Know the various scripting languages. You should know the advantages and disadvan- 
tages of each scripting language. In addition, you should know which operating systems 
each of the various scripting languages operates on. You also should know the various 
script file types that correspond to each scripting language. 


Know the various remote access technologies. You should know that RDP is a Microsoft 
protocol used for remote access; Telnet is a cleartext, unsecure console protocol; and SSH 
is an encrypted, secure console protocol. In addition, Quick Assist is a remote assistance 
application in the Windows operating system, and there are third-party screen-sharing 
tools that function similarly and include file-sharing capabilities. 


1152 Chapter 21 = Scripting and Remote Access 


Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. Which statement about scripting languages is true? 
A. Scripting languages require a compiler. 
B. Scripting languages are strongly typed. 
C. Scripting languages are interpreted. 


D. Scripting languages have good memory management. 


2. What level are scripting languages considered? 


A. High 

B. Mid 

C. Intermediate 
D. Low 


3. Which type of variable will allow decimal math? 
A. Boolean 
B. Integer 
C. Floating-point 
D. String 


4. Which environment variable is not inherited? 
A. System variable 
B. User variable 
C. Program variable 


D. String variable 


5. Which statement will load a PowerShell variable xvar with a value of 2? 
A. xvar= 2 
B. $xvar = 2 
C. xvar = 2; 


D. set /a xvar=2 


6. Which type of loop has a defined beginning and end, and steps from beginning to end? 
A. do while loop 
B. while loop 
C. if statement 
D. for loop 


10. 


11. 


12. 


13. 
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Which extension is used with the Windows batch scripting language? 
A. .vbs 


B. .js 
C. „bat 
D. .py 


Which scripting language allows for the use of the Component Object Model (COM)? 
A. PowerShell 

B. VBScript 

C. Windows batch script 

D. JavaScript 


Which extension is used with the Python scripting language? 


A. .vbs 
B. .js 
C. „bat 
D. .py 


Which scripting language is used with Microsoft Azure and Office 365? 
A. PowerShell 

B. VBScript 

C. Windows batch script 

D. JavaScript 


Which scripting language is used within web pages to allow for interactive content? 
A. PowerShell 

B. Bash 

C. Windows batch script 

D. JavaScript 


Which extension is used with the Bash scripting language? 


A. .vbs 
B. .sh 
C. „bat 
D. .py 


What must be done before a Bash script can be executed? 
A. chown permissions must be set. 

B. The execute attribute must be set. 

C. chmod permissions must be set. 

D. An .sh must be added to the end of the script. 
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14. Which statement will load a JavaScript variable mvar with a value of 8? 
A. $mvar = 8 
B. mvar = 8 
C. mvar = 8; 


D. set /a mvar=8 


15. Which scripting language has its own preinstalled Integrated Scripting Environment (ISE)? 


A. VBScript 
B. Bash 
C. Python 


D. PowerShell 


16. Which line would be used to comment JavaScript code? 
A. //comment 
B. ‘comment 
C. REM comment 
D. # comment 


17. Which extension is used with the JavaScript scripting language? 


A. .js 
B. .sh 
C. „bat 
D. .py 
18. Which Microsoft remote protocol allows for local drives to be presented to the remote 
system? 
A. VCN 
B. RDP 
C. SSH 
D. Telnet 


19. On which network protocol and port does SSH operate? 
A. TCP port 3389 
B. TCP port 22 
C. TCP port 23 
D. TCP port 443 


20. Which protocol has poor security? 


A. RDP 

B. Quick Assist 
C. SSH 

D. Telnet 
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Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answers compare to the authors’, refer 
to Appendix B. 

You have been assigned to write a PowerShell script that will find other scripts in a user 
profile directory and all its subdirectories. Which PowerShell variable should you use, since 
%UserProfile% is an environment variable and will not run in PowerShell? 
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y 21 Summarize the importance of physical security 
measures. 


a Mantrap 

= Badge reader 
a Smart card 

= Security guard 
a Door lock 

a Biometric locks 
a Hardware tokens 
a Cable locks 

a Server locks 

a USB locks 

= Privacy screen 
= Key fobs 


a Entry control roster 


vy 2.2 Explain logical security concepts. 


= Active Directory: Login script, Domain, Group, 
Policy/Updates, Organizational Units, Home Folder, 
Folder redirection 


= Software tokens 

a MDM policies 

= Port security 

a MAC address filtering 
a Certificates 


a Antivirus/Anti-malware 





= Firewalls 

= User authentication/strong passwords 
= Multifactor authentication 

= Directory permissions 

a VPN 

=» DLP 

= Access control lists 

a Smartcard 

a Email filtering 

= Trusted/untrusted software sources 


= Principle of least privilege 


vy 2.3 Compare and contrast wireless security protocols 
and authentication methods. 


a Protocols and encryption: WEP, WPA, WPA2, TKIP, AES 
a Authentication: Single-factor, Multifactor, RADIUS, TACACS 


vy 2.4 Given a scenario, detect, remove, and prevent 
malware using appropriate tools and methods. 


s Malware: Ransomware, Trojan, Keylogger, Rootkit, Virus, 
Botnet, Worm, Spyware 


= Tools and methods: Antivirus, Anti-malware, Recovery 
console, Backup/restore, End user education, Software 
firewalls, DNS configuration 


y 2.5 Compare and contrast social engineering, threats, 
and vulnerabilities. 


a Social engineering: Phishing, Spear phishing, Impersonation, 
Shoulder surfing, Tailgating, Dumpster diving 


a DDoS 

a DoS 

=» Zero-day 

a Man-in-the-middle 
= Brute force 


a Dictionary 





= Rainbow table 
= Spoofing 
= Non-compliant systems 


Zombie 


vy 2.9 Given a scenario, implement appropriate data 
destruction and disposal methods. 


= Physical destruction: Shredder, Drill/hammer, 
Electromagnetic (Degaussing), Incineration, Certificate 
of destruction 


a Recycling or repurposing best practices: Low-level format vs. 
standard format, Overwrite, Drive wipe 


y 2.10 Given a scenario, configure security on SOHO 
wireless and wired networks. 


a Wireless-specific: Changing default SSID, Setting encryption, 
Disabling SSID broadcast, Antenna and access point 
placement, Radio power levels, WPS 


= Change default usernames and passwords 
= Enable MAC filtering 

= Assign static IP addresses 

a Firewall settings 

= Port forwarding/mapping 

= Disabling ports 

= Content filtering/parental controls 

= Update firmware 


= Physical security 





Think of how much simpler an administrator’s life was in the 
days before every user had to be able to access the Internet, 
how much simpler it must have been when you only had to 
maintain a number of dumb terminals connected to a mini-tower. Much of what has cre- 
ated headaches for an administrator since then is the inherent security risk that comes 
about as the network expands. As our world—and our networks—have become more 
connected, the need to secure data and keep it away from the eyes of those who can do 
harm has increased exponentially. 

Realizing this, CompTIA added the security domain to the A+ exams a few years back. 
Security is now a topic that every administrator and technician must not only be aware 
of and concerned about, but also actively involved in implementing methods to enforce 
and monitor. In the world of production, quality may be job one, but in the IT world, it is 
security. 

This chapter, one of two chapters that focus primarily on security, will cover myriad 
security concepts. First, we will first explore the physical aspects of security, and then we 
will dive deeper into the logical aspects of security. We will then look at how external 
forces, such as malware, social engineering, and vulnerabilities, can impact security. We 
will finish this chapter by looking at some common ways that you can safeguard yourself 
from security breaches. We will cover the proper destruction and disposal methods as well 
as security measures you can employ in network installations. 





A+ is not the only IT certification that CompTIA offers. Security+ is one of 
TE the more popular choices. The topics found in this chapter are a subset of 


what you need to know for that certification. 


Many of the security issues that plague networks today can be solved through the imple- 
mentation of basic security elements. Some of those elements are physical (locked doors), 
and others are digital (antivirus software), but all share in common the goal of keeping 
problems out. The following six topic areas are key: 


= Physical security 
= Digital security 


= User education 
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= The principle of least privilege 
= Email security 
a Virtual private networks (VPNs) 


As you study for the exam, know the types of physical security elements that you can 
add to an environment to secure it. Know, as well, what types of digital security you should 
implement to keep malware at bay. Understand that the first line of defense is the user. You 
need to educate users to understand why security is important, and you need to impose the 
principle of least privilege to prevent them from inadvertently causing harm. 


Physical Security Concepts 


Physical security is the most overlooked element of security in a network. A simple lock 
can keep out the most curious prying eyes from a network closet or server room. A more 
layered approach can be implemented for higher security installations. However, the 
simple fact is that not a lot of time is spent on physically securing the network. In the 
following sections, we will cover the CompTIA objectives related to physical security of 
networks. 


Authentication Factors 


This section discusses various components of physical security that control access. When 
components are used to control access, they control access based on the authentication of 
people. Authentication can happen in several different ways, as follows: 


Something You Know This is commonly a username and password or personal 
identification number (PIN). You can make passwords more complex by requiring upper- 
case, lowercase, numeric, and symbol combinations. 


Something You Have This is based on something you physically have. This chapter cov- 
ers several different types of devices, including key fobs, keys, and smart cards, just to 
name a few. 


Something You Are This authentication factor is based on something that makes you 
physically unique. Biometrics such as finger prints, your voice, and retina scans should be 
the first thing that comes to mind. 


Somewhere You Are A relatively new factor of authentication is based on somewhere you 
are. With the proliferation of Global Positioning System (GPS) chips, your current location 
can authenticate you for a system. This is performed by authentication rules based on the 
user’s location. 
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Something You Do Another relatively new factor of authentication for network systems is 
based on something you do. Although it has been used for hundreds of years for documents 
and contracts, a signature is something that you do and don’t even think about how you 

do it. It is unique to you and only you, because there is a specific way you sign your name. 
Typing your name into the computer is something you do and don’t think about, but there 
is a slight hesitation that you make without knowing it. 


Multifactor Authentication 


All authentication is based on something that you know, have, are, or do, or a location you 
are in. Acommon factor of authentication is a password, but passwords can be guessed, 
stolen, or cracked. A fingerprint can be lifted with tape, a key can be stolen, or a location 
spoofed. No one factor is secure by itself because it can be compromised easily. 

When more than one item (factor) is used to authenticate a user, this is known as 
multifactor authentication. It may take two, three, or four factors to authenticate, but as 
long as it is more than one, as the name implies, it is known as multifactor. One of the most 
common examples where this is used in everyday life is atan ATM machine. In order to 
withdraw money, a user must provide a card (one factor) and a PIN number (a second fac- 
tor). If you know the PIN number but do not have the card, you cannot get money from the 
machine. If you have the card but do not have the PIN number, you cannot get money from 
the machine. 


Layered Approach to Physical Security 


One of the easiest ways to prevent people intent on creating problems from physically enter- 
ing your environment is to lock your doors. A key aspect of access control involves physical 
barriers. The objective of a physical barrier is to prevent access to computers and network 
systems. The most effective physical barrier implementations require that more than one 
physical barrier be crossed to gain access. This type of approach is called a multiple-barrier 
system. 

Ideally, your systems should have a minimum of three physical barriers, as shown 
in Figure 22.1. The first barrier is the external entrance to the building, referred to as a 
perimeter, which is protected by burglar alarms, external walls, fencing, surveillance, and 
so on. An access list , also known as an entry control roster, should exist to identify specifi- 
cally who can enter and can be verified by a guard or someone with authority. The second 
barrier is the entrance into the building, which could rely on items such as ID badges to 
gain access. It should also include video surveillance to identify who has entered and exited 
the building. The third barrier is the entrance to the computer room itself, which and could 
require key fobs, or just keys to locks. Each of these entrances can be individually secured, 
monitored, and protected with alarm systems. 
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FIGURE 22.1 A layered security approach 
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M Think of the three barriers as follows: (1) outer, such as a fence; (2) middle, 
P such as guards, locks, and mantraps; and (3) inner, such as key fobs. 


Although these three barriers won’t always stop intruders, they will potentially slow 
them down enough so that law enforcement can respond before an intrusion is fully devel- 
oped. Inside, a truly secure site should be dependent on a physical security token for access 
to the actual network resources. 


Security Guards 


Physical security for your installation should begin with personnel—specifically, security- 
focused personnel, such as security guards. Security guards should be responsible for limit- 
ing access from the outer perimeter of your installation. Security guards typically use photo 
IDs, also known as ID badges, to allow access to the installation. Exceptions to this are 
people on the entry control roster; in some installations, only people on the entry control 
roster are allowed to enter. In this type of installation, the ID badge is used only to provide 
ID. This is common in government and sensitive installations. 
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Door Locks 


The most common physical prevention tactic is the use of locks on doors and equipment. 
This might mean the installation of a tumbler-style lock or an elaborate electronic combi- 
nation lock for the switching closet. If a tumbler-style lock is installed, then the appropriate 
authorized individuals who require access will need a physical key. Using physical keys can 
become a problem, because you may not have the key with you when you need it the most, 
or you can lose the key. The key can also be copied and used by unauthorized individu- 

als. Combination locks, also called cipher locks, can be reprogrammed and do not require 
physical keys, as shown in Figure 22.2. Combination locks for doors can be purchased as 
mechanical or electronic. 


FIGURE 22.2 Atypical combination door lock 





P When physical locks use keys, the factor of authentication is considered 
I: something that you have—because you must have the key. When physical 
locks use ciphers, the authentication is considered something you know— 
because you must know the cipher. 


Tailgating 


Tailgating refers to being so close to someone when they enter a building that you are able 
to come in right behind them without needing to use a key, a card, or any other security 
device. Many social engineering intruders needing physical access to a site use this method 
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of gaining entry. Educate users to beware of this and other social engineering ploys and 
prevent them from happening. 


Mantraps 


The use of mantraps helps to prevent non-authorized users from tailgating. A mantrap is a 
small room that has two controlled doors, as shown in Figure 22.3. When a person enters 
into the first door they are trapped in the room until they have been authorized to enter the 
second controlled door. This close proximity between people in this confined space makes 
it uncomfortable for both the authorized user and the non-authorized user attempting to 
tailgate. In this example, the doors are controlled by radio frequency identification (RFID) 
readers, which we will cover later in this section. 


FIGURE 22.3 Acommonmantrap setup 
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Biometrics 


Biometric devices use physical characteristics to identify the user. This type of authentica- 
tion is considered something that you are. Such devices are becoming more common in the 
business environment. Biometric systems include fingerprint/palm/hand scanners, retinal 
scanners, and soon, possibly, DNA scanners. Figure 22.4 shows a typical biometric device. 
In recent years, several mobile phones have implemented biometrics in the access control of 
the mobile device. Several manufacturers have adopted fingerprint access control, and some 
have even adopted facial recognition via the forward-pointing camera. 
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FIGURE 22.4 Atypical biometric lock 





To gain access to resources, you must pass a physical screening process. In the case of a 
hand scanner, this may include identifying fingerprints, scars, and markings on your hand. 
Retinal scanners compare your eye’s retinal pattern to a stored retinal pattern to verify 
your identity. DNA scanners will examine a unique portion of your DNA structure to 
verify that you are who you say you are. 

With the passing of time, the definition of biometrics is expanding from simply identify- 
ing physical attributes about a person to being able to describe patterns in their behavior. 
Recent advances have been made in the ability to authenticate someone based on the key 
pattern that they use when entering their password (how long they pause between each key, 
the amount of time each key is held down, and so forth). A company adopting biometric 
technologies needs to consider the controversy they may face. Some authentication methods 
are considered more intrusive than others. The error rate also needs to be considered, along 
with an acceptance of the fact that errors can include both false positives and false nega- 
tives. Therefore, biometrics is often used with another factor of authentication, such as a 
PIN number. This provides multifactor authentication. 


Badges 


Identification (ID) badges are used to provide proof of access. Badges can be any form of 
identification intended to differentiate the holder from everyone else. This can be as simple 
as a name badge or photo ID. When the badge contains a photo ID, it is considered the 
authentication factor of something that you are. 

Proper processes and procedures must be in place for a successful implementation of this 
prevention method. Badges are only as good as the enforcement of the badges themselves. 
In many organizations that implement ID badges, all employees are required to display 
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their ID badge at all times. If an employee is in an area where they are not recognized, 
other employees are trained to look for the ID badge and take appropriate action if it is not 
displayed. Many companies have implemented this policy as a personnel safety policy, but 
it ultimately serves as a physical security protocol. 


Key Fobs 


Key fobs are named after the chains that used to hold pocket watches to clothes. Key fobs 
are embedded radio frequency identification (RFID) circuits that fit on a set of keys and are 
used with physical access control systems, as shown in Figure 22.5. They are often used for 
access to external and internal doors for buildings. Key fobs are close-proximity devices that 
authorize the user for entry; an electronic lock is actuated when the device is presented, and 
the door can be opened. This is an authentication factor of something that you have. 


FIGURE 22.5 A key fob 





Hardware Tokens 


Physical hardware tokens are anything that a user must have on them to access network 
resources. They are often associated with devices that enable the user to generate a one- 
time password (OTP) to authenticate their identity. SecurID, from RSA, is one of the best- 
known examples of a physical hardware token, as shown in Figure 22.6. 


FIGURE 22.6 An RSA security key fob 
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Hardware tokens operate by rotating a code every 60 seconds. This rotating code is 
combined with a user’s PIN or password for authentication. A hardware token is considered 
multifactor authentication because it is something you have (hardware token) and some- 
thing you know (PIN or password). 


PS A new type of hardware token is becoming the new standard, and it 
A: can really be considered a software token. It operates the same as a 
hardware token, but it is an application on your cell phone that provides 
the code. Google Authenticator is one example of these types of 
applications. 


Smart Cards and RFID Badges 


A smart card is the size of a credit card with an integrated circuit embedded into the card 
(also called an integrated circuit chip [ICC]). The chip is exposed on the face of the card 
with surface contacts, as shown in Figure 22.7. Smart cards are used for physical authen- 
tication to electronic systems and access control systems and require a PIN or password. 
A smart card is considered a multifactor authentication method because it is something 
you have (card) and something you know (PIN or password). The US military uses smart 
cards called Common Access Cards (CACs) for access to computer systems and physical 
access controls. 


FIGURE 22.7 Atypical smart card 
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A radio frequency identification (RFID) badge is a wireless, no-contact technology used 
with RFID transponders. RFID badges typically work on the 125 KHz radio frequency 
and are passively powered by the RFID transponder. When an RFID badge is placed in 
close proximity to the RFID transponder, the radio frequency (RF) energy emitted by the 
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transponder powers a chip in the RFID badge. The RFID chip then varies the frequency 
back to the transponder in the effort to transmit its electronic signature (number). This type 
of authentication is considered something you have. 


Information Security 


There are many direct ways to secure information. Simply thwarting the theft of equipment 
containing data and restricting the use of USB thumb drives can secure information. In 

the following sections, we will cover several topics that are directly related to the physical 
aspects of information security. 


Privacy Filters 


Privacy filters are either film or glass add-ons that are placed over a monitor or laptop 
screen to prevent the data on the screen from being readable when viewed from the sides. 
Only the user sitting directly in front of the screen is able to read the data. They can also be 
used in public places that display personal information, such as kiosks and automated teller 
machines (ATMs). 


Cable Locks 


Cable locks are used to secure laptops and any device with a Universal Security Slot (USS), 
as shown in Figure 22.8. A cable lock is just that—a cable with a lock at one end. The lock 
can be a tumbler or a combination, as shown in Figure 22.9. The basic principle is that 

the end of the lock fits into the USS. When the cable is locked, the protruding slot of metal 
turns into a cross that cannot be removed. This provides security to expensive equipment 
that can be stolen due to its portability or size. 


FIGURE 22.8 A Universal Security Slot 
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FIGURE 22.9 A standard cable lock 





Server Locks 


Most servers come with a latch-style lock that prevents someone from opening the server, 
but the tumbler-style lock is trivial to open. Anyone with a paperclip can open these locks, 
if they have forgotten the keys. Other types of server locks are holes for padlocks that latch 
through the top cover and the body of the server. However, over the past 10 years, a declin- 
ing number of servers come with this feature. This is mainly due to the fact that servers can 
be better secured behind a locked rack-mounted enclosure. Rack-mounted enclosures gener- 
ally come with a tumbler-style lock that can protect all the servers and network equipment 
installed in the cabinet, while still providing airflow. 


USB Locks 


Universal Serial Bus (USB) locks can be put into place to physically lock out USB ports on 

a workstation or server from use. These devices are extremely rare to find, because most 
equipment and operating systems allow for the USB ports to be deactivated. USB locks 
work by inserting a small plastic spacer into the USB port. Once inserted, the spacer latches 
to the USB detent with plastic teeth. A tool is required to remove the USB spacer. 


Securing Physical Documents/Passwords/Shredding 


The type and amount of information that can be gleaned from physical documents is amaz- 
ing, even in the age when there is such a push to go paperless. Dumpster diving is a com- 
mon problem that puts systems at risk. Companies normally generate a huge amount of 
paper, most of which eventually winds up in dumpsters or recycle bins. Dumpsters can con- 
tain highly sensitive information (such as a password a user has written on a piece of paper 
because they haven’t memorized it yet). 
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In high-security and government environments, sensitive papers should either be shred- 
ded or burned. Most businesses don’t do this. In addition, the advent of “green” companies 
has created an increase in the amount of recycled paper, which can often contain all kinds 
of juicy information about a company and its individual employees. 








E Real World Scenario 


Document Shredding Services 


Many small companies purchase document-shredding equipment and perform this 
themselves. Larger companies with a higher volume can contract a shredding service. 
These services place document receptacles in the offices for workers to dispose of 
sensitive documents. The service will then come in and dispose of the documents in a 
controlled fashion, sometimes shredding the documents on the premises with special 
equipment. These services can sometimes furnish certifications of disposal, depending 
on the type of destruction you require. 





Logical Security 


Whereas the topic of physical security concepts, from CompTIA’s standpoint, focuses on 
keeping individuals out, logical security focuses on keeping harmful data and malware out 
as well as on authorization and permissions. The areas of focus are antivirus software, fire- 
walls, anti-malware, user authentication/strong passwords, and directory permissions. Each 
of these topics is addressed in the sections that follow. 


Antivirus and Anti-Malware Software 


The primary method of preventing the propagation of malicious code involves the use 
of antivirus software. Antivirus software is an application that is installed on a system 
to protect it and to scan for viruses as well as worms and Trojan horses. Most viruses 
have characteristics that are common to families of viruses. Antivirus software looks 
for these characteristics, or fingerprints, to identify and neutralize viruses before they 
impact you. 

More than 1 million known viruses, worms, bombs, and other malware have been 
defined. New ones are added all the time. Your antivirus software manufacturer will 
work very hard to keep the definition database files current. The definition database file 
contains the currently known viruses and countermeasures for a particular antivirus soft- 
ware product. You probably won’t receive a virus that hasn’t been seen by one of these 
companies. If you keep the virus definition database files in your software up-to-date, 
you probably won’t be overly vulnerable to attacks. Since viruses are a subset of malware, 
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anti-malware software typically does everything that antivirus software does as well as 
identifying threats beyond just viruses. A lot of anti-malware software is marketed as 
antivirus software. 


< The best method of protection is to use a layered approach. Antivirus soft- 

P ware should be at the gateways, at the servers, and at the desktop. If you 
want to go one step further, you can use software from different vendors 
at each location to make sure that you're covered from all angles. You 
should avoid installing multiple antivirus scanners on any one machine, 
though, as they often don’t play well together. 


Firewalls 


Firewalls are among the first lines of defense in a network. There are different types of fire- 
walls, and they can be either stand-alone systems or included in devices such as routers or 
servers. You can find firewall solutions that are marketed as hardware-only and others that 
are software-only. Many firewalls, however, consist of add-in software that is available for 
servers or workstations. 


Although solutions are sold as “hardware-only,” the hardware still runs 
‘Qo some sort of software. It may be hardened and in flash memory to prevent 
tampering, and it may be customized, but software is present nonetheless. 


The basic purpose of a firewall is to isolate one network from another. Firewalls are 
becoming available as appliances, meaning that they’re installed as the primary device 
separating two networks. Appliances are freestanding devices that operate in a largely self- 
contained manner, requiring less maintenance and support than a server-based product. 

Firewalls function as one or more of the following: 


= Packet filter 
= Proxy firewall 


=  Stateful inspection firewall 


1 To understand the concept of a firewall, it helps to know the origin of the 
P term. In days of old, dwellings used to be built so close together that if a 

fire broke out in one, it could easily destroy a block or more before it could 
be contained. To decrease the risk of this happening, firewalls were built 
between buildings. The firewalls were huge brick walls that separated 
the buildings and kept a fire confined to one side. The same concept of 
restricting and confining is true of network firewalls. Traffic from the 
outside world hits the firewall and isn't allowed to enter the network 
unless it's invited. 
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The firewall shown in Figure 22.10 effectively limits access from outside networks (the 
Internet) while allowing inside network users to access outside resources. The magic to the 
firewall is the rules that define where traffic can go for each interface; these rules are called 
access control lists (ACLs). 


FIGURE 22.10 A firewall blocking network access from external networks 
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place a firewall anywhere. For example, if you want to isolate one 
portion of your internal network from others, you can place a firewall 
between them. 


A Although firewalls are often associated with outside traffic, you can 
P 


The following list describes three of the most common firewall functions: 


Packet Filter Firewalls A firewall operating as a packet filter passes or blocks traffic 

to specific addresses based on the type of application and the port used. Firewalls base 

all packet filtering on conditions and actions called access control lists (ACLs). For 
instance, a packet filter may allow web traffic on TCP port 80 and block Telnet traffic on 
TCP port 23. The condition in this example is the protocol and port number; the action is 
to allow or deny the traffic. If a packet that doesn’t meet a condition is received, the default 
action for most routers is to reject the request or simply ignore it. Firewall rules can also be 
based on the IP address of the sender and receiver. 


Packet filters are growing in sophistication and capability. A packet filter firewall can 
allow any traffic that you specify as acceptable. For example, if you want web users to 
access your site, then you configure the packet filter firewall to allow data on TCP port 80 
to enter. If every network were exactly the same, firewalls would come with default port 
settings hard-coded; however, networks vary, so the firewalls don’t include such settings 
(though Deny Any is the most common default). 
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Proxy Firewalls Think of a proxy firewall as an intermediary between your network and 
any other network. Proxy firewalls are most often used to process requests from an out- 
side network; the proxy firewall examines the data and makes rule-based decisions about 
whether the request should be forwarded or refused. The proxy intercepts all the packets 
and reprocesses them for use internally. This process may include hiding IP addresses. 


The proxy firewall provides better security than packet filtering because of the increased 
intelligence that a proxy firewall offers, but it comes at the cost of speed. A proxy firewall 
can also be used for outbound requests to the Internet. Requests from internal network 
users are routed through the proxy. The proxy, in turn, repackages the request and sends 
it along, thereby isolating the user from the external network. The proxy can also offer 
caching, should the same request be made again, and it can increase the efficiency of data 
delivery. 


A proxy firewall typically uses two network interface cards (NICs). This type of firewall is 
referred to as a dual-homed firewall. One of the cards is connected to the outside network, 
and the other card is connected to the internal network. The proxy software manages the 
connection between the two NICs. This setup segregates the two networks from each other 
and offers increased security. Figure 22.11 illustrates a dual-homed firewall segregating two 
networks from each other. 


FIGURE 22.11 A dual-homed firewall segregating two networks from each other 
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The proxy function can occur at either the application level or the circuit level. 
Application-level proxy functions read the individual commands of the protocols that are 
being served. This type of server is advanced and must know the rules and capabilities 

of the protocol used. An implementation of this type of proxy must know the difference 
between GET and PUT operations, for example, and have rules specifying how to execute 
them. A circuit-level proxy creates a circuit between the client and the server, and doesn’t 
deal with the contents of the packets that are being processed. 
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GET and PUT operations are related to how web browsers request web 
‘Qi pages. A GET requests a page, whereas a PUT is used to put a page or 
information on a web server. 


A unique application-level proxy server must exist for each protocol supported. Many 
proxy servers also provide full auditing, accounting, and other usage information that 
wouldn’t normally be kept by a circuit-level proxy server. 


Stateful Inspection Firewalls Stateful inspection is also referred to as stateful packet 
filtering. Most of the devices used in networks don’t keep track of how information is 
routed or used. After a packet is passed, the packet and path are forgotten. In stateful 
inspection (or stateful packet filtering), records are kept using a state table that tracks 
every communications’ channel and can deny packets that were not requested from the 
internal network. 


Stateful inspections occur at all levels of the network and provide additional security, espe- 
cially in connectionless protocols, such as User Datagram Protocol (UDP) and Internet 
Control Message Protocol (ICMP). This adds complexity to the process. Denial-of-service 
(DoS) attacks present a challenge because flooding techniques are used to overload the state 
table and effectively cause the firewall to shut down or reboot. When multiple computers 
are aimed at the target, it is known as a distributed denial-of-service (DDoS) attack. A 
smurf attack attempts to use a broadcast ping (ICMP) on a network. The return address of 
the ping may be a valid system in your network. This system will be flooded with responses 
in a large network. 


MAC Address Filtering 


MAC addresses are used internally on a wireless local area network (WLAN) or wired 
local area network (LAN) for communications between hosts. Therefore, you would not 
normally filter MAC addresses at the firewall with ACLs. MAC address filtering is nor- 
mally performed on switches and wireless equipment. You would normally find a system 
such as a captive portal or network access control (NAC) denying all MAC addresses, until 
they have either authenticated or met certain criteria. Once they have, they will be allowed 
access to the network via their allowed MAC address. 


A captive portal is a type of system you would encounter in a hotel or cof- 
jA fee shop when you start a web browser. You will be redirected to a portal 
and held captive till you satisfy the requirements, such as a fee or accep- 
tance of a policy. Network access control is another mechanism of restrict- 
ing access. However, network access control prevents you from entering 
a network until the health of your computer is satisfied. Checks for up-to- 
date antivirus definitions, current patches, and firewalls are performed 
transparently by the operating system and communicated to the network 
access control unit. 
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Port Security 


Port security is another method of restricting hosts based on either their specific MAC 
addresses or an allowable number of MAC addresses per the port. Port security is config- 
ured on the switch port(s) of a network switch. 

If you control the maximum number of allowable MAC addresses per a switch port, 
you can mitigate the risk of an end user plugging in a rogue wireless access point (WAP) 
or switch. If you statically configure the MAC address, you can restrict the switch port to 
communicate only with that one host. You can also configure the switch port to be sticky. 
This allows only the first host to communicate based on the first MAC address. 


A rogue wireless access point is an access point that you do not control. 
OTE This can happen maliciously or because an end user doesn’t realize the risk 
of adding their own wireless access point to the network. 


Email Filtering 


Email filtering, as the name implies, involves filtering email before passing it on. This can 
be done with messages intended both to enter and leave the network, and it can head off 

problems before they can propagate. One of the simplest filters is the spam filter included 
with most email systems. None of them are 100 percent efficient, and all suffer from false 
positives (identifying some email as spam that really isn’t). 


Data Loss Prevention 


When an organization suffers data loss, the information is not lost—it is just out of the 
control of the organization. Data loss prevention (DLP) is a system used to ensure that 
end users do not send sensitive and/or critical information outside the organization. An 
example of sensitive information is a Social Security number or the secret sauce recipe for 
a hamburger chain. The user may not even know they are doing anything wrong in many 
instances. 

DLP systems ensure that data loss will not occur, because the damaging effects can be 
long term. A common DLP system is an outbound email filter. The email transport filters 
can sanitize or restrict information such as credit card numbers, social security numbers, 
or any type of data they are programmed to detect. Microsoft Exchange Server allows 
administrators to create custom DLP policies or use prebuilt DLP policies that ship with 
Microsoft Exchange. Other systems can classify data based on their sensitivity and restrict 
users from emailing the information to users outside the company or uploading the infor- 
mation to public cloud services. 

DLP systems are efficient at identifying potential data loss and provide a hard control 
for administrators, but it is best practice to implement soft controls as well by working with 
the organization’s HR department to develop policies and effective training for end users. 
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Virtual Private Networks 


As networks grow beyond simple physical limitations (such as an office or a building) to 
include clients from all over the world, the need to secure data becomes paramount. One 
of the best methods of addressing this is to tunnel the data. Tunneling sends private data 
across a public network by placing (encapsulating) that data into other packets. Most tun- 
nels are virtual private networks (VPNs). 

A VPN is a private network connection that occurs through a public network. A private 
network provides security over an otherwise unsecure environment. VPNs can be used 
to connect LANs together across the Internet or other public networks. With a VPN, the 
remote end appears to be connected to the network as though it were connected locally. A 
VPN requires either special hardware or a VPN software package running on servers and 
workstations. 


Even though a VPN is created through the Internet or other public 

‘BQ networks, the connection logically appears to be part of the local network. 
This is why a VPN connection that is used to establish a connection 
between two private networks across the Internet is considered a private 
connection, or an extranet. 


User Authentication/Strong Passwords 


You can set up many different parameters and standards to force the people in your orga- 
nization to conform. In establishing these parameters, it’s important that you consider 
the capabilities of the people who will be working with them. If you’re working in an 
environment where people aren’t computer savvy, you may spend a lot of time helping 
them remember and recover passwords. Many organizations have had to reevaluate their 
security guidelines after they’ve invested great time and expense to implement high- 
security systems. 

Enforcing authentication security, especially when supporting users, can become a high- 
maintenance activity for network administrators. On the one hand, you want people to be able to 
authenticate easily; on the other hand, you want to establish security that protects your company’s 
resources. In a Windows domain, password policies can be configured at the domain level using 
Group Policy objects. Password policies can also be configured at the workgroup level using 
the local security policy, as covered in Chapter 19, “Working with Windows 7.” Both of 
these policies allow for variables that you can configure, including password complexity and 
length and the time between allowed changes to passwords. A good password includes both 
upper- and lowercase letters as well as numbers and symbols. Educate users not to use per- 
sonal information that one could easily guess about them, such as their anniversaries, birth- 
days, or pets’ names. 

Although strong passwords are a good start to logical security, they can be leaked or 
stolen. The preceding section covered many different components that could be used with 
physical authentication of users, such as smart cards and biometrics. Many of these com- 
ponents can be used for logical authentication for network login. When they are combined 
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with passwords (something that you know), you gain multifactor authentication, which is 
much harder to circumvent, as previously discussed. 

A common multifactor authentication system is the use of smart cards protected with 
a passphase (password). The passphase is something that you know, and the actual card 
is something that you have. As simple as it is, using a smart card provides multifactor 
authentication. 


Certificates 


Certificates can be used to authenticate users, computers, and applications in a variety of 
ways, the most common of which is document signing (see Figure 22.12). When a user 
enrolls in a certificate authority (CA), a public/private key-pair is created. The user gets the 
private key to install into their certificate store. The public portion of the key is placed on 
the CA for anyone to retrieve. Each portion of the key-pair—the private certificate and its 
accompanying public certificate— is considered a certificate. 


FIGURE 22.12 The certificate signing process 
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If something is encrypted with the private certificate, only the public certificate can 
decrypt it. This is true in the opposite direction, where the document is encrypted with the 
public key; however, only the user has the private certificate, so only they can decrypt it 
with their private key. 

When the sender prepares to send a document, the document is hashed against a hashing 
algorithm to produce a unique numeric sequence. This numeric sequence (hash) is the docu- 
ments digital signature. If one bit is changed, the hash changes. The hash is then encrypted 
with the user’s private portion of the public/private key-pair, and the encrypted hash is 
added to the document. 

When the receiver gets the document, the hash is unencrypted with the sender’s public 
portion of the public/private key-pair. The sender’s public certificate is downloadable from 
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the CA and is accessible by everyone. The document is then hashed on the receiver’s operat- 
ing system using the same algorithm from the sender’s operating system. If both the hashes 
match, then the document is determined to have been sent by the sender. 

This system of authentication can be used to verify the identity of the user, because the 
user is the only person who has access to their private key. This is no different for computer 
accounts: The computer will have the private key installed and perform the same authenti- 
cation. Applications are a bit different, because the private key is used to sign the applica- 
tion by the developer, but the principle is the same for the verification process. 


Directory Permissions 


Directories and files should be secured properly so that an attacker bent on compromising 
your organization’s security doesn’t succeed. Using directory permissions is a way we can 
logically secure files and directories for users and safeguard the organization’s data. Pay 
particular attention to Table 22.1 and Table 22.2. Directory permissions are a bit different 
from file permissions, since you cannot execute a directory. You can, however, execute a 
file. Because of this difference, there are different permissions that can be applied to both a 
directory and file. The New Technology File System (NTFS) handles permissions for both 
the directory and file level on the Windows operating system. You can access NTFS permis- 
sions by right-clicking a file or folder and selecting Properties, then the Security tab. 


TABLE 22.1 NTFS directory permissions 


NTFS Permission Meaning 





Full Control Gives the user all the other choices and the ability to change 
permissions. The user can also take ownership of the directory or 
any of its contents. 


Modify Combines the Read & Execute permission with the Write 
permission and further allows the user to delete everything, 
including the folder 


Read & Execute Combines the Read permission with the List Folder Contents 
permission and adds the ability to run executables 


List Folder Contents Allows the user to view the contents of a directory and to navigate 
to its subdirectories. It does not grant the user access to the files in 
these directories unless that is specified in file permissions. 


Read Allows the user to navigate the entire directory structure, view 
the contents of the directory, view the contents of any files in the 
directory, and see ownership and attributes 


Write Allows the user to create new entities within the folder 
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TABLE 22.2 NTFS file permissions 


NTFS Permission Meaning 





Full Control Gives the user all the other permissions as well as permission to take 
ownership and change permission 


Modify Combines the Read & Execute permission with the Write permission 
and further allows the user to delete the file 


Read Allows the user to view the contents of the file and to see ownership 
and attributes 


Read & Execute Combines the Read permission with the ability to execute 


Write Allows the user to overwrite the file as well as to change attributes 
and see ownership and permissions 


When you set a directory permission, the files inherit the directory permission automati- 
cally. There are, however, special permissions that apply only to a directory, such as List 
Folder Contents. When a user is part of two security groups that have different permis- 
sions, the higher-level permission is the effective permission. The only exception is that if 
any security group or the user were denied, this explicit deny would override all permis- 
sions. Chapter 23, “Securing Operating Systems,” covers the interaction of both NTFS per- 
missions and share permissions. 


Active Directory 


Microsoft originally released Active Directory (AD) with Windows 2000 Server to com- 
pete with Novell Directory Services (NDS). Active Directory is a highly scalable directory 
service that can contain many different objects, including users, computers, and printers, 
just to name a few. Active Directory uses a protocol called Lightweight Directory Access 
Protocol (LDAP) to quickly look up objects. It’s important to understand that Active 
Directory is not the authentication mechanism; it is only the directory for storing and the 
lookup of objects. Active Directory works in conjunction with Kerberos, which is the pro- 
tocol that performed the authentication of users. 

Active Directory uses a directory partition called the schema partition to describe 
classes of objects and the attributes that define each object. Each attribute is defined in the 
schema based on the value it will contain. For example, a user class can have a first name, 
last name, middle initial, description, and a number of other attributes. A specific user 
account is then created and configured in the GUI Microsoft Management Console (MMC) 
called Active Directory User and Computers. There are also several attributes that don’t 
show up in the management tool, such as when an object was last changed or replicated, as 
well as many other attributes used by Active Directory for management. 
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Domain 


A domain is a hierarchical collection of security objects, such as users, computers, and poli- 
cies, among other components. Active Directory domains are named with a Domain Name 
System (DNS) name. For example, sybex.com would be the root domain; if you wanted 

to add a new domain, you would append the namespace to the left, as follows: east. sybex 
.com. Using a DNS namespace is one of the ways that Active Directory is scalable and hier- 
archical. Many organizations never need anything more than one domain to contain all 
their security objects. 

When a user authenticates against an Active Directory domain, a domain access token 
is issued, as shown in Figure 22.13. You can consider these to be keys for the various locks 
(ACLs) on resources. If the user is a member of a particular security group, it will be in 
their security token. When the user encounters a file that is secured with an ACL, the secu- 
rity token is presented. If there is a matching credential, then the user is granted with the 
associated file permission on the ACL. 


FIGURE 22.13 Active Directory security tokens 
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Organizational Units 


A domain can hold security objects, but you need to have some organization to the many 
different objects that you will create in your domain. Organizational units (OUs) enable 
you to group objects together so that you can apply a set of policies to the objects. OUs 
should be designed to group objects by the following criteria: 


Object Class Objects can be organized based on their class or type. You can organize all 
the computers and users into their respective OUs. 


Geographic Location Objects can be organized based on their location. It is common 
practice to use airport codes when the organization is spread across a large distance. 
However, town names can also be used when the organization branches are in relatively 
close proximity. 


Function Objects can be organized based on their function in the organization, such as 
servers, workstations, users, etc. Object can also be grouped by their job function, such as 
Sales, Marketing, HR, etc. 
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Hybrid Nothing says that you have to stick to one organization of objects. Depending on 
how you are planning your domain, you could use a combination. It is not uncommon to 
see airport codes to represent the various offices, with functions under each airport code, 
as shown in Figure 22.14 


FIGURE 22.14 A hybrid OU structure 
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Group Policy 


Group Policy is a feature of Active Directory that enables you to apply policies to control 
users and computers. Typically, you do not apply policies to individual users or computers 
but instead to groups of users or computers. Group Policy Object (GPO) is a type of object 
in Active Directory that allows you to apply a set of policies against an organizational unit. 
Group Policy Objects are created, linked, and edited in the Group Policy Management 
Console (GPMC), as shown in Figure 22.15. 

You can control thousands of settings for both the user and computer objects, as shown 
in Figure 22.16. Policies are hard controls that you can force on an object. Policies are 
refreshed in the background every 90 minutes. So, if a setting that has a policy applied 
changes, it will be set back during the refresh cycle. Most of the time, however, settings are 
grayed out when they are being managed by GPO and cannot be changed at all. Preferences 
allow for files, Registry, environment variable, and control panel items to be modified. 
Preferences set an initial setting and are applied only during first login, so these settings are 
a preference, not a policy, and the user can change these settings thereafter. 
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FIGURE 22.15 The Group Policy Management Console 
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Display links in this location: [conteso com 





The following sites, domains, and OUs are linked to this GPO: 





Location Enforced Link Enabled Path 
icontoso.com No Yes conteso.com 








‘Security Filtering 
The settings in this GPO can only apply to the following groups, users, and computers: 





Name 
‘§8, Authenticated Users 























WMI Filtering 
This GPO is linked to the following WMI filter: 


<none> 


























5} Default Domain Policy [SERVER1.CONTOSO.COM] Policy 
a & Computer Configuration 
a [È Policies 
b (5) Software Settings 
p E] Windows Settings 


4 [Ñ Administrative Templates: Policy definitions (ADMX files) retri¢ 


b E] Control Panel 
p E Network 
E Printers 
@ Server 
E Start Menu and Taskbar 
b E System 
p ©) Windows Components 


4 [Ñ Preferences 
4 Ñ Windows Settings 
[ Environment 
§ Files 
OF Folders 
Ë) ini Files 
b gf Registry 
E Network Shares 
E Shortcuts 
b @ Control Panel Settings 
4 §% User Configuration 
4 [E Policies 
p E Software Settings 
p [Ñ Windows Settings 


Select an item to view its description. Setting 
Force a specific default lock screen image 
Prevent changing lock screen image 
Prevent changing start menu background 
Do not display the lock screen 
Prevent enabling lock screen camera 
[E) Prevent enabling lock screen slide show 
[E Force a specific background and accent color 
Force a specific Start background 
Tum off automatic learning 
Block clean-up of unused language packs 
Restricts the UI language Windows uses for all logged users 
Force selected system UI language to overwrite the user UII... 
Apply the default account picture to all users 
Do not allow the BITS client to use Windows Branch Cache 
Do not allow the computer to act as a BITS Peercaching client 
Do not allow the computer to act as a BITS Peercaching server 
Allow BITS Peercaching 
Timeout for inactive BITS jobs 
imit the maximum network bandwidth for BITS backgroun... 
Limit the maximum network bandwidth used for Peercaching 
Set up a maintenance schedule to limit the maximum netw... 
Set up a work schedule to limit the maximum network band... 
imit the BITS Peercache size 
imit the age of files in the BITS Peercache 





p ©) Administrative Templates: Policy definitions (ADMX files) retri | Limit the maximum BITS job download time 


4 (5) Preferences 
b ©) Windows Settings 














Limit the maximum number of files allowed in a BITS job 


(J [ens real) 








State 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Not configured 
Net configured 
Not configured 
Not configured 


e 
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Login Scripts 

Login scripts are one of the configurable attributes for a user account. As covered in 
Chapter 21, “Scripting and Remote Access,” you can use VBScript or Windows batch 
scripts as login scripting languages. Login scripts are useful on an Active Directory net- 
work for connecting network-mapped drives and printers, among other administrative 
tasks. Login scripts also provide uniformity across an enterprise by running the same com- 
mands for each user configured with the script. The location of the setting is found on the 
Profile tab of the user account, as shown in Figure 22.17 


FIGURE 22.17 Profile settings for a user account 




















Profile path: 
Logon script: 











Home folder 
© Local path: 


@ Connect: Z: | To: |\\server2\files\sally james 























Home Folders 


A home folder is a private network location in which the user can store their personal files. 
The home folder is an attribute that can be set for a user account in the Active Directory 
Users and Computers MMC under the Profile tab, as shown in Figure 22.17. The location 
can be a local path, if the user will use the same computer and the files should be stored 
locally for the user. However, it is most useful when you connect a network drive to a 
remote file server. This allows for centralized file storage, and you can now perform back- 
ups on the data. 
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Folder Redirection 


Normally, when a user logs into the network and a roaming profile exists for the user, the 
profile is completely downloaded to the computer the user is working on. During logout, all 
data is written back to the roaming profile location on the network file server. Profiles can 
become extremely large in size, sometimes even gigabytes, and slow down the login process 
and logout process. 

Folder redirection is a Group Policy setting that allows the redirection of portions of 
users’ profile folders to a network location. When folder redirection is used, the roaming 
profile is still downloaded. However, the redirected folders are not downloaded; they are 
simply redirected to the network location. This speeds login and logout times because the 
entire profile is no longer downloaded (login) and uploaded (logout). 


Network Policies 


Policies implemented through the network are considered hard policies, since they are not 
subjective to consideration. A hard policy might be: If you are in the staff group, then you 
cannot browse the Internet. However, the consideration to this policy could be that you are 
tasked to research your competitors and require browsing the Internet. 

Soft network policies are policies that a user must adhere to, or there will be conse- 
quences. Unlike hard policies, soft policies are not imposed; they are inherently accepted 
by a user’s employment in the organization. This section covers a few common policies and 
guidelines that will help you to secure your network. 


Acceptable Use Policies 


An acceptable use policy (AUP) describes how the employees in an organization can use 
company systems and resources, both software and hardware. This policy should also 
outline the consequences for misuse. In addition, the policy (also known as a use policy) 
should address the installation of personal software on company computers and the use of 
personal hardware, such as USB devices. Employees often must sign an AUP as a condition 
of employment. 

Every acceptable use policy today should include a section on smartphone usage (and 
even presence) within the workplace. Although a smartphone is a convenience for employ- 
ees (they can now more easily receive and make personal calls at work), it can be a head- 
ache for the security administrator. Most smartphones can store files in the same way as 
any USB device, and they can be used to copy files to and from a workstation. 

Additionally, the camera feature on most phones makes it possible for a user to take 
pictures of things such as company documents, servers, and physical security implemen- 
tation, among many other things that the company may not want to share. Therefore, 
most secure facilities have stringent restrictions on the presence of smartphones within 
the vicinity. 
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Even secure workstations that do not contain traditional media devices 
STE (CD, DVD, and so forth) usually contain USB ports. Unless these ports 

are disabled, a user can easily connect a flash drive and copy files to and 

from it. Not only should you make every effort to limit USB ports, but you 

should also have the use of such devices spelled out in the acceptable use 

policy, to circumvent the “I didn’t know” defense. 


Trusted/Untrusted Software Sources 


Part of your AUP should define whether end users are allowed to install software or 
whether the administrator must review and install all software. There are two reasons for 
an administrative review of software. The first reason is simply licensing. When software 
is installed on an organization’s computer, the organization is accepting the licensing terms 
and conditions. 

The second reason is the source of the installation must be trusted. Many end users are 
not educated to identify a trusted source for an installation. If this task is left up to the end 
user, they could perceive the web search they performed and the first result that popped up 
to be a trusted source. In reality, the first result could be to a malware download. 

As the administrator, you should always verify the source of an application, driver, or 
other installation. The software should be from a trusted source, such as the vendor or a 
mirror download site acting on behalf of the vendor. 


Mobile Device Management 


Many organizations use mobile device management (MDM) software that dictates the 
requirements of a bring your own device (BYOD) policy. MDM software helps organizations 
protect their data on devices that are personally owned by the employees. When employees 
are terminated or a device is lost, the MDM software allows a secure remote wipe of the 
company’s data on the device. The MDM software can also set policies requiring passwords 
on the device. 


Principle of Least Privilege 


The principle of least privilege is a simple one: When assigning permissions, give users only 
the permissions they need to do their work and no more. This is especially true with admin- 
istrators. Users who need administrative-level permissions should be assigned two accounts: 
one for performing non-administrative, day-to-day tasks, and the other to be used only 
when performing administrative tasks that specifically require an administrative-level user 
account. Those users should be educated on how each of the accounts should be used. 

The biggest benefit to following this policy is the reduction of risk. The biggest headache 
to following this policy is trying to deal with users who may not understand it. Managers, 
for example, may assert that they should have a higher permission level than those who 
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report to them, but giving managers those permissions also opens up the possibility that 
they will inadvertently delete files, misconfigure resources, and so on. 

A least privilege policy should exist, and be enforced, throughout the enterprise. Users 
should have only the permissions and privileges needed to do their jobs and no more. The 
International Organization for Standardization (ISO) standard 27002 (which updates 
17799) sums it up well: “Privileges should be allocated to individuals on a need-to-use basis 
and on an event-by-event basis, i.e., the minimum requirement for their functional role 
when needed.” Adopting this as the policy for your organization is highly recommended. 


P An ISO standard is a standard created by the International Organization for 
A: Standardization (ISO) that specifies a set of requirements, specifications, 
or guidelines for the standardization of processes. 


Common Security Threats 


In the following sections, we discuss a number of very important topics that fall into the 
realm of the broad categories: social engineering and malware. We’ll look at these topics as 
well as some of the reasons your network is vulnerable. The discussion is far from inclusive 
because troublemakers create new variants of malware and social engineering attacks on a 
regular basis. However, we will cover everything that CompTIA expects you to know for 
the exam. 


Social Engineering Attacks 


Social engineering is a process in which an attacker attempts to acquire information about 
your network and system by social means, such as talking to people in the organization. A 
social engineering attack may occur over the phone, by email, or in person. The intent is 
to acquire access information, such as user IDs and passwords. When the attempt is made 
through email or instant messaging, it is known as phishing (discussed later), and it’s often 
made to look as if a message is coming from sites where users are likely to have accounts. 
(Banks, bills, and credit cards are popular.) 

These are relatively low-tech attacks and are more akin to con jobs. Take the following 
example: Your help desk gets a call at 4:00 a.m. from someone purporting to be the vice 
president of your company. They tell the help desk personnel that they are out of town to 
attend a meeting, their computer just failed, and they are sitting in a FedEx office trying to 
get a file from their desktop computer back at the office. They can’t seem to remember their 
password and user ID. They tell the help desk representative that they need access to the 
information right away or the company could lose millions of dollars. Your help desk rep 
knows how important this meeting is and gives the user ID and password over the phone. 
At this point, the attacker has just successfully socially engineered an ID and password that 
can be used for an attack by impersonating a high-profile person. 
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Another common approach is initiated by a phone call or email from someone who 
pretends to be your software vendor, telling you that they have a critical fix that must be 
installed on your computer system. It may state that if this patch isn’t installed right away, 
your system will crash and you'll lose all your data. For some reason, you’ve changed your 
maintenance account password, and they can’t log in. Your system operator gives the pass- 
word to the person. You’ve been hit again. 

In Exercise 22.1, you’ll test your users to determine the likelihood of a social engineer- 
ing attack. The steps are suggestions for tests; you may need to modify them slightly to be 
appropriate at your workplace. Before proceeding, make certain that your manager knows 
that you’re conducting such a test and approves of it. 


Testing Social Engineering 


1. Call the receptionist from an outside line when the sales manager is at lunch. Tell her 
that you’re a new salesperson, that you didn’t write down the username and pass- 
word the sales manager gave you last week, and that you need to get a file from the 
email system for a presentation tomorrow. Does she direct you to the appropriate 
person or attempt to help you retrieve the file? 


2. Call the human resources department from an outside line. Don’t give your real name 
but instead say that you're a vendor who has been working with this company for 
years. You'd like a copy of the employee phone list to be emailed to you, if possible. 
Do they agree to send you the list, which would contain information that could be 
used to try to guess usernames and passwords? 


3. Picka user at random. Call them and identify yourself as someone who works with 
the company. Tell them that you're supposed to have some new software ready for 
them by next week and that you need to know their password to finish configuring it. 
Do they do the right thing? 


The best defense against any social engineering attack is education. Make certain that 
the employees of your company know how to react to the requests presented here. Social 
engineering works on the premise that people try to help when they are vested in your 
efforts, such as a co-worker or if you are trying to help them. 


Phishing 


Phishing is a form of social engineering in which you simply ask someone for a piece of 
information that you are missing by making it look as if it is a legitimate request. An 
email might look as if it is from a bank and contain some basic information, such as the 
user’s name. These types of messages often state that there is a problem with the person’s 
account or access privileges. The person will be told to click a link to correct the problem. 
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After they click the link, which goes to a site other than the bank’s, they are asked for their 
username, password, account information, and so on. The person instigating the phishing 
attack can then use this information to access the legitimate account. 


One of the best countermeasures to phishing is simply to mouse over the 
P Click Here link and read the URL. Almost every time, the URL is an adapta- 


tion of the legitimate URL, as opposed to a link to the real thing. 


The only preventive measure in dealing with social engineering attacks is to educate 
your users and staff never to give out passwords and user IDs over the phone or via email 
or to anyone who isn’t positively verified as being who they say they are. 

When phishing is combined with Voice over IP (VoIP), it becomes known as vishing, 
which is just an elevated form of social engineering. While crank calls have existed 
since the invention of the telephone, the rise in VoIP now makes it possible for someone 
to call you from almost anywhere in the world, without the worry of tracing/caller ID/ 
and other features of landlines, and pretend to be someone they are not in order to get 
data from you. 

Two other forms of phishing of which you should be aware are spear phishing and 
whaling, which are very similar in nature. With spear phishing, the attacker uses informa- 
tion that the target would be less likely to question because it appears to be coming from 
a trusted source. Suppose, for example, that you receive a message that appears to be from 
your spouse that says to click here to see that video of your children from last Christmas. 
Because it appears far more likely to be a legitimate message, it cuts through your standard 
defenses like a spear, and the likelihood that you would click this link is higher. Generating 
the attack requires much more work on the part of the attacker, and it often involves using 
information from contact lists, friend lists from social media sites, and so on. 


Trust is a key issue with security. There are trusted software sources that 
A TE you know and work with all the time (such as Microsoft), and there are 
untrusted sources—and you should differentiate between them. Likewise, 


there are trusted sites and untrusted sites, and you should similarly differ- 
entiate between them. Let common sense be your guide. 


Whaling is nothing more than phishing, or spear phishing, for so-called “big” users— 
thus, the reference to the ocean’s largest creatures. Instead of sending out a To Whom It 
May Concern message to thousands of users, the whaler identifies one person from whom 
they can gain all the data that they want—usually a manager or business owner—and tar- 
gets the phishing campaign at them. 


Shoulder Surfing 


Another form of social engineering is known as shoulder surfing. It involves nothing 
more than watching someone when they enter their sensitive data. They can see you 
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entering a password, typing in a credit card number, or entering any other pertinent 
information. A privacy filter, covered earlier in the chapter, can be used to block people 
from looking at your screen from an angle. However, privacy filters do not protect you 
as you are entering a password, since a shoulder surfer will watch your keystrokes. The 
best defense against this type of attack is simply to survey your environment before 
entering personal data. It is also proper etiquette to look away when someone is entering 
their password. 


Tailgating 

Tailgating is another form of social engineering, and it works because we want to be help- 
ful. Tailgating is the act of entering a building that requires a swipe card or other authenti- 
cation factor simply by using the person in front of you. 

You may be walking towards an entry that requires some authentication, when some- 
one walking the same way introduces themselves as new to the company and shares some 
stories about their first day. By the time you get to the door, you may hold it open for them 
and wish them luck. It can even happen without you knowing it, if the door barely closes 
and they grasp it. Several different tactics, such as mantraps and guards, can be used to 
mitigate this threat. The best prevention is education of your staff to make sure that it does 
not happen. 


Dumpster Diving 


Dumpster diving is the act of a person rifling through the trash with the expectation to find 
information. A strong policy to prevent dumpster diving is the physical destruction of any 
sensitive data. Destruction can be performed with the use of a mechanical shedder on-site or 
a service that destroys materials off-site on behalf of the organization. 


Denial-of-Service Attacks 


A denial-of-service (DoS) is an attack launched to disrupt the service or services a com- 
pany receives or provides via the Internet. A DoS attack is executed with an extremely 
large amount of false requests, because of the attack the servers will not be able to 
fulfill valid requests for clients and employees. There are several different types of DoS 
attacks: 


Reflective A reflective DoS is not a direct attack; it requires a third party that will inad- 
vertently execute the DoS. The attacker will send a request to a third-party server and 
forge the source address of the packet with the victim’s IP address. When the third party 
responds, it responds back to the victim. There are two victims in this type of DoS attack: 
The first is the victim the attack is aimed at, and the second is the third-party server used 
to carry out the attack. Figure 22.18 shows an ICMP-based smurf attack, which is a 
reflective attack. 
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FIGURE 22.18 AnICMP-based smurf attack 
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Victim 


Amplified An amplified DoS is a variant of a reflective DoS attack. It is carried out by 
making a small request to the third-party server that yields a larger response to the victim. 
The most common third-party servers used to carry out the attack are DNS and NTP. 

For example, an attacker will request a DNS query for a single hostname that contains 

20 aliases while forging the source IP address. The victim is then barraged with the 20 
answers from the query, as shown in Figure 22.19. 


FIGURE 22.19 An amplified attack 









Attacker Botnet 


- v pi . 
ger Victim 


NTP or DNS Servers 


1192 Chapter 22 = Security Concepts 


Distributed A distributed denial-of-service (DDoS) is becoming the most com- 

mon type of DoS, because the source of the DoS is varied. It is common for botnets 
to launch DDoS attacks on organizations. When a single host is used to create a DoS, 
it can simply be blocked. However, when traffic is coming from millions of different 
hosts, it is impossible to isolate the DoS and firewall the source. Figure 22.20 shows a 
DDoS attack. 


FIGURE 22.20 A DDoS attack 


Command and Control 









Server 
= ~ "Sng 
Attacker yee ee 
- ¢ x ` 
Pe gt 1 ` `‘ SS 
x IN > < ‘4 a 
B, O, B, 2, O, D, pos 
Sig Me S ' Rg Po 
Fane iicn b P ae 





Victim 


Exploits vs. Vulnerabilities 


Exploits and vulnerabilities both have the same effect of compromising systems. 
Vulnerabilities are weaknesses in security for an operating system or network product. 
Vulnerabilities are the reason we need to constantly patch network systems. Exploits are 
scripts, code, applications, or techniques used in exploiting the vulnerabilities by a threat 
agent, as shown in Figure 22.21. 


FIGURE 22.21 Threat agents, exploits, and vulnerabilities 
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Zero-Day Attacks 


When a hole (vulnerability) is found in a web browser or other software, and attackers 
begin exploiting it the very day it is discovered by the developer (bypassing the one-to-two- 
day response time that many software providers need to put out a patch once the hole has 
been found), it is known as a zero-day attack (or exploit). It is very difficult to respond to 
a zero-day exploit. If attackers learn of the weakness the same day as the developer, then 
they have the ability to exploit it until a patch is released. Often, the only thing that you as 
a security administrator can do, between the discovery of the exploit and the release of the 
patch, is to turn off the service. You can do this by isolating or disconnecting the system(s) 
from the network until a patch is released. Although this can be a costly undertaking in 
terms of productivity, it is the only way to keep the network safe. 


Several years ago, Stuxnet was found to be using a total of four zero-day 
‘QB vulnerabilities to spread from host to host. You can learn more about 
Stuxnet from: 


www. symantec.com/connect/blogs/ 
stuxnet-using-three-additional-zero-day-vulnerabilities 


Man-in-the-Middle Attacks 


Man-in-the-middle attacks clandestinely place something (such as a piece of software or a 
rogue router) between a server and the user, and neither the server’s administrator nor the 
user is aware of it. The man-in-the-middle intercepts data and then sends the information 
to the server as if nothing is wrong. The server responds to the software, thinking it’s com- 
municating with a legitimate client. The attacking software continues sending information 
on to the server, and so forth. 

If communication between the server and user continues, what’s the harm of the software? 
The answer lies in whatever else the software is doing. The man-in-the-middle software may 
be recording information for someone to view later, altering it, or in some other way compro- 
mising the security of your system and session. 


intercepting the data and may or may not be altering it. If it’s altering the 
data, the altered data masquerades as legitimate data traveling between 
the two hosts. 


w A man-in-the-middle attack is an active attack. Something is actively 
P 


In recent years, the threat of man-in-the-middle attacks on wireless networks has 
increased. Because it’s no longer necessary to connect to the wire, a malicious rogue can be 
outside of the building intercepting packets, altering them, and sending them on. A com- 
mon solution to this problem is to this problem is to enforce a secure wireless authentica- 
tion protocol such as WPA2. 
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An older term that is now generically used for all man-in-the-middle attacks is TCP/ 
IP hijacking, even though they are not technically the same. TCP/IP hijacking involves the 
attacker gaining access to a host in the network and logically disconnecting it from the 
network. The attacker then inserts another machine with the same IP address. This hap- 
pens quickly, and it gives the attacker access to the session and to all the information on 
the original system. The server won’t know this has occurred, and it will respond as if the 
client is trusted—the attacker forces the server to accept its IP address as valid. The hijacker 
will hope to acquire privileges and access to all the information on the server. There is little 
that you can do to counter this threat, but fortunately these attacks require fairly sophisti- 
cated software and are harder to engineer than a simple DoS attack. 


Password Attacks 


Password attacks occur when an account is attacked repeatedly. This is accomplished by 
using applications known as password crackers, which send possible passwords to the 
account in a systematic manner. The attacks are initially carried out to gain passwords for 
an access or modification attack. There are several types of password attacks: 


Brute-Force Attacks A brute-force attack is an attempt to guess passwords until a suc- 
cessful guess occurs. As an example of this type of attack, imagine starting to guess with A 
and then going through z; when no match is found, the next guess series goes from AA to 
zz, and then it adds a third value (AAA to zzz). Because of the nature of this routine, this 
type of attack usually occurs over a long period of time. To make passwords more difficult 
to guess, they should be much longer than a few characters. It is recommended that you 
make the password at least 12 digits and complex. You should also have password lockout 
policies. 


Dictionary Attacks A dictionary attack uses a dictionary of common words to 
attempt to find the user’s password. Dictionary attacks can be automated, and several 
tools exist in the public domain to execute them. As an example of this type of attack, 
imagine guessing words and word combinations found in a standard English-language 
dictionary. 


Rainbow Tables When passwords are stored in the operating system, they are stored 

in their hashed format. A hash is a one-way cryptographic algorithm. If you have access 

to the password hash, a rainbow table can be used to find the password. Rainbow tables 
are databases that have had every permutation run through a hashing algorithm, so the 
hash can be looked up and cross-referenced back to the password that created it. These 
databases can be really large. It is not uncommon for a rainbow table to ship on a portable 
hard drive. 


Hybrid Attacks A hybrid attack typically uses a combination of dictionary entries and 
brute force. For example, if you know that there is a good likelihood that the employees of 
a particular company are using derivatives of the company name in their passwords, then 
you can seed those values into the values attempted. 
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Spoofing Attacks 


A spoofing attack is an attempt by someone or something to masquerade as someone else. 
This type of attack is usually considered an access attack. A common spoofing attack that 
was popular for many years on early UNIX and other timesharing systems involved a pro- 
grammer writing a fake login program. It would prompt the user for a user ID and pass- 
word. No matter what the user typed, the program would indicate an invalid login attempt 
and then transfer control to the real login program. The spoofing program would write the 
login and password into a disk file, which was retrieved later. 

The most popular spoofing attacks today are IP spoofing, ARP spoofing, and DNS 
spoofing. With IP spoofing, the goal is to make the data look as though it came from a 
trusted host when it didn’t (thus spoofing the IP address of the sending host), as shown in 
Figure 22.22. 


FIGURE 22.22 |P address spoofing attack 
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Attacker 192.168.1.2 
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With ARP spoofing (also known as ARP poisoning), the media access control (MAC) 
address of the data is faked. By faking this value, it is possible to make it look as though 
the data came from a networked device that it did not come from. This can be used to 
gain access to the network, to fool the router into sending to the device data that was 
intended for another host, or to launch a DoS attack. In all cases, the address being faked 
is an address of a legitimate user, making it possible to get around such measures as allow/ 
deny lists. 

With DNS spoofing, the DNS server is given information about a name server that 
it thinks is legitimate when it isn’t. This can send users to a website other than the one 
to which they wanted to go, reroute mail, or do any other type of redirection for which 
data from a DNS server is used to determine a destination. Another name for this is 
DNS poisoning. 
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P system, and/or host into believing that they're something that they are not. 
Because the word spoof can describe any false information at any level, 
spoofing can occur at any level of network. 


A Always think of spoofing as fooling. Attackers are trying to fool the user, 


The important point to remember is that a spoofing attack tricks something or someone 
into thinking that something legitimate is occurring. 


Non-Complaint Systems 


One of the easiest ways to make your systems vulnerable and expose them to threats is to 
fail to keep them compliant. As an administrator, you should always follow security regula- 
tory standards as well as compliance standards. 

One product that can keep your operating systems compliant is Microsoft System Center 
Configuration Manager (SCCM). SCCM allows for the publishing of a baseline for the 
Windows operating system. It will then monitor the baseline against the operating systems 
in your organization and will remediate them if they fall out of compliance. 

SCCM is just one of many different tools that can be used for compliance, several of which 
are third-party tools. Third-party compliance solutions provide other unique benefits, such as 
the compliance of third-party applications in addition to the Microsoft operating system. 


Zombie 


Software running on infected computers (called zombies) is often known as a botnet. 
Bots, by themselves, are but a form of software that runs automatically and autonomously. 
(For example, Google uses the Googlebot to find web pages and bring back values for the 
index.) Botnet, however, has come to be the word used to describe malicious software run- 
ning on a zombie and under the control of a bot herder. 

Denial-of-service attacks—DoS and DDoS—can be launched by botnets, as can many 
forms of adware, spyware, and spam (via spambots). Most bots are written to run in the 
background with no visible evidence of their presence. Many malware kits can be used to 
create botnets and modify existing ones. 

There is no universal approach to dealing with botnets, but knowing how to deal with 
various botnet types (all of which are described in this chapter) is important for exam prep- 
aration. Some botnets can be easily detected by looking at a database of known threats, 
whereas others have to be identified by analyzing their behavior. 


Common Software Threats 


We’ve all been battling malicious, invasive software since we bought our first computers. 
This software can go by any number of names—virus, malware, and so on—but if you 
aren’t aware of its presence, these uninvited intruders may damage the data on your hard 
drive, destroy your operating system, and possibly spread to other systems. 
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Make certain that your systems, and the data within them, are kept as secure as possible 
by using antivirus and antispyware programs. Doing so prevents others from changing the 
data, destroying it, or inadvertently harming it. This section covers several different types 
of malware. 


Ransomware 


Ransomware is a type of malware that is becoming popular because of anonymous cur- 
rency, such as Bitcoin. Ransomware is software that is often delivered through an unsus- 
pecting random download. It takes control of a system and demands that a third party 

be paid. The “control” can be accomplished by encrypting the hard drive, by changing 

user password information, or via any of a number of other creative ways. Users are usu- 
ally assured that by paying the extortion amount (the ransom), they will be given the code 
needed to revert their systems back to normal operations. CryptoLocker was a popular ran- 
somware that made headlines across the world (see Figure 22.23). You can protect yourself 
from ransomware by having antivirus software with up-to-date definitions. 


FIGURE 22.23 CryptoLocker 
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Trojans 


Trojan horses are programs that enter a system or network under the guise of another pro- 
gram. A Trojan horse may be included as an attachment or as part of an installation program. 
The Trojan horse can create a back door or replace a valid program during installation. It then 
accomplishes its mission under the guise of another program. Trojan horses can be used to 
compromise the security of your system, and they can exist on a system for years before 
they’re detected. 
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The best preventive measure for Trojan horses is to not allow them entry into your sys- 
tem. Immediately before and after you install a new software program or operating system, 
back it up! If you suspect a Trojan horse, you can reinstall the original program(s), which 
should delete the Trojan horse. A port scan may also reveal a Trojan horse on your system. 
If an application opens a TCP or UDP port that isn’t supported in your network, you can 
track it down and determine which port is being used. 


Keyloggers 


A keylogger is normally a piece of software that records an unsuspecting victim’s key- 
strokes. Keyloggers can stay loaded in memory and wait until you log into a website or 
other authentication system. They will then capture and relay the information to an await- 
ing host on the Internet. 

Keyloggers don’t always have to be in the form of software. Some keyloggers are hard- 
ware dongles that sit between the keyboard and computer. These must be retrieved and the 
data must be downloaded manually, so they are not very common. 


Rootkits 


Rootkits are software programs that have the ability to hide certain things from the oper- 
ating system. They do so by obtaining (and retaining) administrative-level access. With 
a rootkit, there may be a number of processes running on a system that don’t show up in 
Task Manager, or connections that don’t appear in a Netstat display of active network con- 
nections that may be established or available. The rootkit masks the presence of these items 
by manipulating function calls to the operating system and filtering out information that 
would normally appear. 

Unfortunately, many rootkits are written to get around antivirus and antispyware programs 
that aren’t kept up-to-date. The best defense you have is to monitor what your system is doing 
and catch the rootkit in the process of installation. 


Viruses 


Viruses can be classified as polymorphic, stealth, retrovirus, multipartite, armored, com- 
panion, phage, and macro viruses. Each type of virus has a different attack strategy and 
different consequences. 


P Estimates for losses due to viruses are in the billions of dollars. These 
A: losses include financial loss as well as lost productivity. 


The following sections introduce the symptoms of a virus infection, explain how a virus 
works, and describe the types of viruses you can expect to encounter and how they gener- 
ally behave. We’ll also discuss how a virus is transmitted through a network and look at a 
few hoaxes. 
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Symptoms of a Virus/Malware Infection 


Many viruses will announce that you’re infected as soon as they gain access to your sys- 
tem. They may take control of your system and flash annoying messages on your screen or 
destroy your hard disk. When this occurs, you’ll know that you’re a victim. Other viruses 
will cause your system to slow down, cause files to disappear from your computer, or take 
over your disk space. 


Because viruses are the most common type of malware, the term virus is 
4 OTE used in this section. 


You should look for some of the following symptoms when determining if a virus infec- 
tion has occurred: 


= The programs on your system start to load more slowly. This happens because the 
virus is spreading to other files in your system or is taking over system resources. 


=a Unusual files appear on your hard drive, or files start to disappear from your system. 
Many viruses delete key files in your system to render it inoperable. 


= Program sizes change from the installed versions. This occurs because the virus is 
attaching itself to these programs on your disk. 


= Your browser, word-processing application, or other software begins to exhibit 
unusual operating characteristics. Screens or menus may change. 


= The system mysteriously shuts itself down or starts itself up and does a great deal of 
unanticipated disk activity. 


= You mysteriously lose access to a disk drive or other system resources. The virus has 
changed the settings on a device to make it unusable. 


= Your system suddenly doesn’t reboot or gives unexpected error messages during startup. 


This list is by no means comprehensive. What is an absolute, however, is the fact that 
you should immediately quarantine the infected system. It is imperative that you do all you 
can to contain the virus and keep it from spreading to other systems within your network, 
or beyond. 


How Viruses Work 


A virus, in most cases, tries to accomplish one of two things: render your system inoperable 
or spread to other systems. Many viruses will spread to other systems given the chance and 
then render your system unusable. This is common with many of the newer viruses. 

If your system is infected, the virus may try to attach itself to every file in your system 
and spread each time you send a file or document to other users. Some viruses spread by 
infecting files that are either transmitted through a network or by removable media, such 
as backup tapes, USB thumb drives, CDs, and DVDs, just to name a few. When you give 
removable media to another user or put it into another system, you then infect that system 
with the virus. 
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Many viruses today are spread using email. The infected system attaches a file to any email 
that you send to another user. The recipient opens this file, thinking it’s something that you 
legitimately sent them. When they open the file, the virus infects the target system. The virus 
might then attach itself to all the emails that the newly infected system sends, which in turn 
infects the computers of the recipients of the emails. Figure 22.24 shows how a virus can spread 
from a single user to literally thousands of users in a very short period of time using email. 


FIGURE 22.24 A virus spreading from an infected system using email 





Types of Viruses 


Viruses take many different forms. The following list briefly introduces these forms and 
explains how they work. 


The best defense against a virus attack is up-to-date antivirus software 
A TE installed and running. The software should be on all workstations as well 


as the server. 
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These are the most common types of viruses, but this isn’t a comprehensive list: 


Armored Virus An armored virus is designed to make itself difficult to detect or analyze. 
Armored viruses cover themselves with protective code that stops debuggers or disassem- 
blers from examining critical elements of the virus. The virus may be written in such a way 
that some aspects of the programming act as a decoy to distract analysis while the actual 
code hides in other areas in the program. 


From the perspective of the creator, the more time that it takes to deconstruct the virus, 
the longer it can live. The longer it can live, the more time it has to replicate and spread to 
as many machines as possible. The key to stopping most viruses is to identify them quickly 
and educate administrators about them—the very things that the armor makes difficult to 
accomplish. 


Companion Virus A companion virus attaches itself to legitimate programs and then 
creates a program with a different filename extension. This file may reside in your system’s 
temporary directory. When a user types the name of the legitimate program, the com- 
panion virus executes instead of the real program. This effectively hides the virus from 

the user. Many of the viruses that are used to attack Windows systems make changes 

to program pointers in the Registry so that they point to the infected program. The infected 
program may perform its dirty deed and then start the real program. 


Macro Virus A macro virus exploits the enhancements made to many application pro- 
grams. Programmers can expand the capability of applications such as Microsoft Word 
and Excel. Word, for example, supports a mini-BASIC programming language that allows 
files to be manipulated automatically. These programs in the document are called macros. 
For example, a macro can tell your word processor to spell-check your document automati- 
cally when it opens. Macro viruses can infect all the documents on your system and spread 
to other systems via email or other methods. Macro viruses are one of the fastest-growing 
forms of exploitation today. 


Multipartite Virus A multipartite virus attacks your system in multiple ways. It may 
attempt to infect your boot sector, infect all your executable files, and destroy your appli- 
cation files. The hope here is that you won’t be able to correct all the problems and will 
allow the infestation to continue. The multipartite virus depicted in Figure 22.25 attacks a 
system’s boot sector, infects application files, and attacks Word documents. 


FIGURE 22.25 A multipartite virus commencing an attack on a system 
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Phage Virus A phage virus alters programs and databases, and the only way to remove this 
virus is to reinstall the programs that are infected. If you miss even a single instance of this 
virus on the victim system, the process will start again and infect the system once more. 


Polymorphic Virus Polymorphic viruses change form to avoid detection. These types of viruses 
attack your system, display a message on your computer, and delete files on your system. The 
virus will attempt to hide from your antivirus software. Frequently, the virus will encrypt parts 
of itself to avoid detection. When the virus does this, it’s referred to as mutation. The mutation 
process makes it hard for antivirus software to detect common characteristics of the virus. 


-_ A signature is an algorithm or other element of a virus that uniquely identi- 
‘Qi fies it. Because some viruses have the ability to alter their signature, it is cru- 
cial that you keep signature files current, whether you choose to download 
them manually or configure the antivirus engine to do so automatically. 


Retrovirus A retrovirus attacks or bypasses the antivirus software installed on a com- 
puter. You can consider a retrovirus to be an anti-antivirus. Retroviruses can directly attack 
your antivirus software and potentially destroy the virus definition database file. When this 
information is destroyed without your knowledge, you are left with a false sense of security. 
The virus may also directly attack an antivirus program to create bypasses for itself. 


Stealth Virus A stealth virus attempts to avoid detection by masking itself from applica- 
tions. It may attach itself to the boot sector of the hard drive. When a system utility or 
program runs, the stealth virus redirects commands around itself to avoid detection. An 
infected file may report a file size different from what is actually present. Stealth viruses 
may also move themselves from file A to file B during a virus scan for the same reason. 


Virus Transmission in a Network 


Upon infection, some viruses destroy the target system immediately. The saving grace is that 
the infection can be detected and corrected. Some viruses won’t destroy or otherwise tamper 
with a system; instead, they use the victim system as a carrier. The victim system then infects 
servers, file shares, and other resources with the virus. The carrier then infects the target sys- 
tem again. Until the carrier is identified and cleaned, the virus continues to harass systems in 
this network and spread. 








Present Virus Activity 


New viruses and threats are released on a regular basis to join the cadre of those already 
in existence. From an exam perspective, you need only be familiar with the world as it 
existed at the time the questions were written. From an administrative standpoint, how- 
ever, you need to know what is happening today. 


To find this information, visit the US-CERT Current Activity web page, at https: //www 
.us-cert.gov/ncas/current-activity. You'll find a detailed description of the most 
current viruses as well as links to pages on older threats. 
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Botnets 


A botnet is a group of zombies, which sounds like a ridiculous beginning to a horror movie. 
When malware infects a computer, its purpose is often to lay dormant and await a com- 
mand from a command and control server. When this happens, the computer is considered 
a zombie. When enough infected computers (zombies) check in, the threat agent will send a 
command to the command and control server, and the botnet of zombies will work on the 
task. Often the task is to launch a malicious DDoS attack or to send spam. 


Worms 


A worm is different from a virus in that it can reproduce itself, it’s self-contained, and it 
doesn’t need a host application to be transported. Many of the so-called viruses that make 
the news are actually worms. However, it’s possible for a worm to contain or deliver a virus 
to a target system. 

By their nature and origin, worms are supposed to propagate, and they use whatever 
services they’re capable of using to do that. Early worms filled up memory and bred inside 
the RAM of the target computer. Worms can use TCP/IP, email, Internet services, or any 
number of possibilities to reach their target. 


Spyware 


Spyware differs from other malware in that it works—often actively—on behalf of a 
third party. Rather than self-replicating, like viruses and worms, spyware is spread to 
machines by users who inadvertently ask for it. The users often don’t know they have 
asked for it but have done so by downloading other programs, visiting infected sites, 
and so on. 

The spyware program monitors the user’s activity and responds by offering unsolicited 
pop-up advertisements (sometimes known as adware), gathers information about the user 
to pass on to marketers, or intercepts personal data, such as credit card numbers. 


Mitigating Software Threats 


Now that you understand some of the common software threats, let’s look at how you can 
protect yourself from them. This section discusses practical tools and methods that you can 
use to safeguard yourself from common software-based threats. We will also discuss tactics 
you can use to mitigate risk as well as ways to recover from security mishaps. 


Antivirus 


Largely what was discussed in the preceding section, “Common Software Threats,” can 
be simply prevented with the use of antivirus software. Back when Windows XP came 
out, the running joke was that you would get a virus before you could get a chance to 
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install antivirus software. To some extent, this was true, if you had to get online to 
retrieve the software. 

Microsoft introduced Microsoft Security Essentials as a download for Windows XP, 
and the Windows Vista operating system started to ship with it installed. Today, Windows 
10 comes preinstalled with Windows Defender Antivirus, so if you don’t purchase antivi- 
rus software you are still protected. As a result of these tactics, Microsoft has made the 
Windows operating system safer than it used to be. 

Although Microsoft’s antivirus program will work fine for most computing needs, 
there are some advantages to purchasing antivirus products from third-party vendors. To 
understand some of the differences, you need to understand the components of antivirus 
software. Antivirus software comprises two main components: the antivirus engine and the 
definitions database, as shown in Figure 22.26. 


FIGURE 22.26 Antivirus software components 
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Notifications 


Antivirus Engine The antivirus engine is responsible for the real-time scanning of oper- 
ating system files and the notifications to the user. Various antivirus engines will scan 
operating system files differently. For example, an antivirus engine might recognize when a 
game is being played, and it will temporarily stop scanning files so that the game loads faster. 
Notifications can also automatically submit files to the cloud for more extensive scanning. 


Definitions Database The definitions database is why you would select one antivirus 
product over another. A definitions database’s effectiveness is based on two attributes: the 
frequency of updates and the comprehensiveness of the database signatures. Antivirus defi- 
nitions, also known as antivirus signatures, are discovered daily and added to the antivirus 
database. Some antivirus products will download deltas to the initial database every hour, 
and some will download them once a day. 


Anti-Malware 


Malware is a broad term and covers many different software threats that we learned about 
in this chapter. Anti-malware and antivirus are extremely similar in their functionality, and 
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sometimes vendors have a hard time differentiating their products. This is because many 
antivirus products now check more than just files. 

An anti-malware software package will not only check the filesystem for threats, like 
rootkits and trojans, but will also watch incoming email for phishing scams and malicious 
websites, as shown in Figure 22.27. When these threats are detected, the user gets a notifi- 
cation, and the threat is usually mitigated or avoided completely. 


FIGURE 22.27 Anti-malware components 
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Recovery Console 


The Windows Recovery Console can perform a number of useful functions for recovering 
from a security threat. The most useful function is the Reset This PC option, which allows 
you to refresh the operating system while keeping your data files or remove everything and 
start from scratch, as shown in Figure 22.28. The later of the two options assumes you 
have backups of your data files. 

Recovery Console also allows you to perform a system restore, whereby you can restore 
the operating system back to a specific point in time. If a system recovery image exists, you 
can also recover with the System Recovery Image option. This option will reset the operat- 
ing system back to the point in the recovery image, which is usually just like the day you 
turned it on. Figure 22.29 shows the Advanced Options menu. 
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FIGURE 22.28 Windows 10 Recovery Console 
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FIGURE 22.29 Windows 10 Advanced Options 
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Backup/Restore 


The reason to back up is to safeguard against loss of data. You often need to restore files 
when you unintentionally write over them, delete them, or misplace them. Restoring from 
backups can also be useful when the fate of the file is out of your control—for example, 
when your operating system is struck with ransomware. One of the behaviors of ransom- 
ware is to dump all the restore points on your operating system before it starts to encrypt 
your files. The only way you can get your files back at that point is to pay the ransom or 
recover the files from a backup. 

Now that you understand how important backups are in the wake of disaster, let’s look 
at our various options for backing up and restoring files. In Windows 10, you can use the 
Back Up Using File History setting, which can be accessed from the Setting app, by choos- 
ing Update & Security, then Backup, as shown in Figure 22.30. By default, personal files 
are backed up every hour to an external drive that you choose and kept forever. 


FIGURE 22.30 Windows 10 Backup file history 
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One of the inherit problems is that the drive used with the Back Up Using File History 
setting is attached to your system. So if ransomware strikes, it will wipe out the files as 
well. Windows 10 has an answer to that problem, but it’s not in the area you would expect. 
You can access the backup protection by navigating to the Settings app, choosing Update 
& Security, then Windows Security, then Virus & Threat protection, finally choosing 
Ransomware Protection, as shown in Figure 22.31. Ransomware Protection works by 
copying your data to a Microsoft OneDrive account. If ransomware strikes your operating 
system, you'll still have a copy of the data on the cloud that is untouched by the encryption. 
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FIGURE 22.31 Windows 10 Ransomware Protection 
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Other third-party utilities, such as Carbonite and Backblaze, can also be used to back 
up and restore data. Some of these services have very unique features, such as locating a 
missing computer by its IP address if it is lost or stolen. You can even order a USB drive of 
your data so that the restoration of data is quicker, especially when the size of data to be 
restored is extremely large. 


End-User Education 


By far the best prevention of security threats is the education of your end users. For 
example, the most effective method of preventing viruses, spyware, and harm to data is to 
teach your users not to open suspicious files and to open only those files that they’re reason- 
ably sure are virus free. End users should also be educated on how to identify trojans and 
phishing emails scams. The end-user education should also identify guidelines for physical 
destruction of data, in particular any paperwork that has sensitive information on it. End 
users should also be educated on the various social engineering threats and how to identify 
them. An end user who has foresight and exercises vigilance is more powerful than any 
antivirus or anti-malware product on the market. 

End-user education is normally part of the employee’s onboarding process when they 
are hired in an organization. However, it should not stop there, because threats change 
every day. Many organizations revisit the training for their employees once a year, in ideal 
circumstances. This training can be performed in a formal classroom setting or through an 
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online service. Some online services offer educational videos that have interactive questions 
to verify that the employee has learned the objectives of the video. 


Software Firewalls 


“Software firewalls” is a misnomer for this section, as all firewalls are software-based in 
some way. Sure, you might purchase a piece of equipment that is classified as a firewall, but 
there is software running on the firewall to protect your network. However, when we dis- 
cuss firewalls in respect to operating systems, we call them software firewalls, because they 
are part of the operating system and thus considered software. 
Let’s look at where we came from and where we are now. A major “game changer” in 
the history of Microsoft was the release of Windows XP Service Pack 2, which switched 
on the built-in firewall by default. It was long overdue for the operating system at the time. 
It was also not well received, because administrators had to learn firewall rules when they 
installed a new software package that required incoming network traffic. As a result, the 
firewall was the first thing that got shut off when there was a problem with connectivity. 
Throughout the years of new Windows versions, the firewall has received new fea- 
tures and became a polished product. Windows 10 renamed the product to Windows 
Defender Firewall and Windows Defender Firewall with Advanced Security, as shown in 
Figure 22.32. Both of these configure the same firewall service, with the latter of the two 
allowing for much granular control. The inner workings are almost identical to the original 
firewall that shipped with Windows XP SP2. 


FIGURE 22.32 Windows Defender Firewall on Windows 10 
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The Windows firewall has achieved its original purpose of protecting the operating sys- 
tem from malicious worms and malicious inbound network connections. By default, the 
outbound network traffic is allowed and inbound network traffic is blocked, unless a rule 
exists (see Figure 22.33). 


FIGURE 22.33 Windows Defender Firewall defaults 
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You will also notice that there are three different profiles: Domain, Private, and Public. 
When the network service starts up, it contacts the default gateway (router) and configures 
itself to a profile. This allows the operating system to be location-aware and protect itself 
differently based on your location. If the router has never been seen before, then you'll 
get prompted with a dialog box asking you to choose if you want to allow your PC to be 
discoverable, as shown in Figure 22.34. If you answer Yes, then the firewall profile will be 
configured as Private, and any rules associated with the Private Profile will be active. If you 
answer No, then any rules associated with the Public Profile will be active. The Domain 
Profile is automatically selected if the network is the corporate network and the operating 
system is joined to the domain. 

Firewalls are also built into other operating systems, including Linux and macOS. 
Depending on the distribution of Linux or macOS, the firewall included will vary, as well 
as the way you would configure it. However, most distributions of Linux, such as Ubuntu 
and Debian, come with the iptables firewall installed. CentOS and Fedora come with 
Firewalld, which also supports location-based firewall rules. 
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FIGURE 22.34 Windows location dialog box prompt 
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Regardless of which type of firewall an operating system comes preinstalled with, a 
third-party firewall can be installed. These firewalls can offer intrusion-detection capabili- 
ties that alert you when someone is attacking. In almost all cases, the firewall that comes 
with the operating system is more than adequate, but you have to keep it on at all times to 
prevent unwanted connections. 


FilteredDNS 


DNS configuration is one of the simplest threat-mitigation techniques to implement. 
Normally, when you connect to the Internet, you are using your Internet service pro- 
vider’s (ISP) DNS service. This allows you to resolve www.sybex.com, for example, to an IP 
address, as well as any other fully qualified domain names (FQDNs). This is a benefit and a 
problem at the same time, because malicious and undesirable content uses FQDNs as well. 

The configuration of DNS to a filtered DNS provider can help you avoid malware infec- 
tion and filter sites with undesirable content. Filtered DNS service replaces your ISP’s DNS 
with their service. When you attempt to resolve an undesirable or malicious FQDN, the 
service will return an IP address for a page that describes that the content is unreachable 
due to a policy you put in place. Filtered DNS services even allow you to block certain cat- 
egories, such as adult content, adware, chat, and gambling. 

Although using a filtered DNS service is not a catch-all solution to remove all undesir- 
able content, it is one of the simplest methods to implement. It also covers all devices that 
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are configured with the filtered DNS server, since it is often configured through DHCP 
automatically. Not only will your desktop operating system be covered as a result, but any 
mobile devices on your network will be covered as well. 


PP OpenDNS and Comodo Secure DNS are free DNS services. OpenDNS 

A: identifies you by your home IP address, and policies can be configured based 
on your selection of categories. Comodo Secure DNS automatically blocks 
malware by using their real-time black list (RBL) list. You can find additional 
information about both of these services at https: / /www. opendns . com and 
https: //www.comodo.com/secure-dns. There are other services that can be 
purchased from either of these vendors, as well as many other vendors. 


Destruction and Disposal Methods 


Think of all the sensitive data written to a hard drive. The drive can contain information 
about students, clients, users—about anyone and anything. The hard drive can be in a 
desktop PC, in a laptop, or even in a printer. Many laser printers above consumer grade 
offer the ability to add a hard drive to store print jobs. If the drive falls into the wrong 
hands, you can not only lose valuable data but also risk a lawsuit for not properly protect- 
ing privacy. An appropriate data destruction/disposal plan should be in place to avoid any 
potential problems. 

Since data on media holds great value and liability, that media should never simply be 
tossed away for prying eyes to stumble on. For the purpose of this objective, the media 
in question is hard drives, and there are three key concepts to understand with regard to 
them: formatting, sanitation, and destruction. Formatting prepares the drive to hold new 
information (which can include copying over data already there). Sanitation involves wiping 
the data off the drive, whereas destruction renders the drive no longer usable. 


While this objective is heavily focused on hard drives, it is also possible to 

OTE have data stored on portable flash drives, backup tapes, CDs, or DVDs. In 
the interest of security, it is recommended that you destroy them before 
disposing of them. 


Recycling or Repurposing Best Practices 


For exam purposes, the best practices for recycling or repurposing fall beneath the catego- 
ries of low-level formats (as opposed to standard formatting), overwrites, and drive wipes. 


Low-Level Format vs. Standard Format 


There are multiple levels of formatting that can be done on a drive. A standard format, 
accomplished using the operating system’s format utility (or similar), can mark space 
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occupied by files as available for new files without truly deleting what was there. Such eras- 
ing—if you want to call it that—doesn’t guarantee that the information isn’t still on the 
disk and recoverable. 

A low-level format (typically accomplished only in the factory) can be performed on the 
system, or a utility can be used to completely wipe the disk clean. This process helps to 
ensure that information doesn’t fall into the wrong hands. 

The manufacturer performs a low-level format on integrated device electronics (IDE) 
hard drives. Low-level formatting must be performed even before a drive can be parti- 
tioned. In low-level formatting, the drive controller chip and the drive meet for the very 
first time and learn to work together. Because controllers are integrated into SATA and IDE 
drives, low-level formatting is a factory process. Low-level formatting is not operating sys- 
tem dependent. 


gmi Never perform a low-level format on IDE or SCSI drives! These drives are 
n formatted at the factory, and you may cause problems by using low-level 
utilities on them. 

The main thing to remember for the exam is that most forms of formatting included 
with the operating system do not actually erase the data completely. Formatting the drive 
and then disposing of it has caused many companies problems when individuals who never 
should have seen it retrieve the data using applications that are commercially available. 


Hard Drive Sanitation and Sanitation Methods 


A number of vendors offer hard drives with Advanced Encryption Standard (AES) cryp- 
tography built in. However, it’s still better to keep these secure hard drives completely out 
of the hands of others than to trust their internal security mechanisms once their usable 
life span has passed for the client. Some vendors include freeware utilities to erase the hard 
drive. If it is a Serial ATA (SATA) drive, you can always run HDDerase, but you are still 
taking your chances. 








Sanitation Utilities 


The HDDerase utility is a freeware utility that is included with many different 
boot images. HDDerase can be downloaded with Hiren's BootCD from 
https://www.hirensbootcd.org/. 


If you were to perform a web search, you would find several other sanitization utilities 
like HDDerase, but it is important to recognize and acknowledge that many of these do 
not meet military or GSA specifications. Those specifications should be considered as 
guidelines to which you must also adhere when dealing with your own, or a client's, data. 
The only surefire method of rendering the hard drive contents completely eradicated is 
physical destruction. 
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Solid-state drives (SSDs) pose a greater problem since the media is flash memory and 
not mechanical, like conventional hard disk drives (HDDs). Low-level formats can be 
performed, as mentioned in the preceding section, but the ones and zeros will still be tech- 
nically on the flash memory. Therefore, many vendors have a sanitization utility for scrub- 
bing information from SSDs. It is best to check with the specific vendor, as these tools are 
specific to the vendor and model of SSD. 


Overwrite 


Overwriting the drive entails copying over the data with new data. A common practice is 
to replace the data with 0s. A number of applications allow you to recover what was there 
prior to the last write operation, and for that reason, most overwrite software will write the 
same sequence and save it multiple times. 

DBAN is a utility, which comes with its own boot disk from https: //dban.org/. You 
can find a number of other software “shredders” by doing a quick web search. 


Drive Wipe 


If it’s possible to verify beyond a reasonable doubt that a piece of hardware that’s no longer 
being used doesn’t contain any data of a sensitive or proprietary nature, then that hardware 
can be recycled (sold to employees, sold to a third party, donated to a school, and so on). 
That level of assurance can come from wiping a hard drive or using specialized utilities. 

If you can’t be assured that the hardware in question doesn’t contain important data, 
then the hardware should be destroyed. You cannot, and should not, take a risk that the 
data your company depends on could fall into the wrong hands. 


Physical Destruction 


Physically destroying the drive involves rendering it no longer usable. While the focus is on 
hard drives, you can also physically destroy other forms of media, such as flash drives and 
CD/DVDs. 


Shredder 


Many commercial paper shredders are also capable of destroying DVDs and CDs. Paper 
shredders, however, are not able to handle hard drives; you need a shredder created for just 
such a purpose. Jackhammer makes a low-volume unit that will destroy eight drives per 
minute and carries a suggested list price of just under $30,000. 


Drill/Hammer 


If you don’t have the budget for a hard drive shredder, you can accomplish similar results in 
a much more time-consuming way with a power drill. The goal is to physically destroy the 
platters in the drive. Start the process by removing the cover from the drive—this is nor- 
mally done with a Torx driver. (Although #8 does not work with all drives, it is a good one 
to try first.) You can remove the arm with a slotted screwdriver and then the cover over the 
platters using a Torx driver. Don’t worry about damaging or scratching anything—nothing 
is intended to be saved. Everything but the platters can be tossed away. 
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As an optional step, you can completely remove the tracks using a belt sander, grinder, 
or palm sander. The goal is to turn the shiny surface into fine powder. Again, this step is 
optional, but it adds one more layer of assurance that nothing usable remains. Always wear 
eye protection and be careful not to breathe in any of the fine particles that are generated 
during the grinding/destruction process. 

Following this, use the power drill to create as small a set of particles as possible. A drill 
press works much better for this task than trying to hold the drive and drill it with a hand- 
held model. 








Do You Really Want to Do It Yourself? 


Even with practice, you will find that manually destroying a hard drive is time consuming. 
There are companies that specialize in this and can do it efficiently. One such company is 

Shred-it, which will pick up your hard drive and provide a chain-of-custody assurance and 
a certificate of destruction on completion. You can find out more about what they offer at 
www. shredit.com. 





Electromagnet (Degaussing) 


A large electromagnet can be used to destroy any magnetic media, such as a hard drive 
or backup tape set. The most common of these is the degaussing tool. Degaussing 
involves applying a strong magnetic field to initialize the media. (This is also referred 
to as disk wiping.) This process helps to ensure that information doesn’t fall into the 
wrong hands. 

Degaussing involves using a specifically designed electromagnet to eliminate all data 
on the drive, including the factory-prerecorded servo tracks. You can find wand model 
degaussers priced at just over $500 or desktop units that sell for up to $30,000. 


Incineration 


A form of destruction not to be overlooked is fire. It is possible to destroy most devices by 
burning them up, using an accelerant such as gasoline or lighter fluid to aid the process. 


gm Be careful with any fire, particularly those in which accelerants are used. 
ING Be sure that you are not burning anything capable of releasing toxic fumes 
and that you have the fire controlled and contained at all times. 


Certificate of Destruction 


A certificate of destruction (or certificate of recycling) may be required for audit pur- 
poses. Such a certificate, usually issued by the organization carrying out the destruction, 
is intended to verify that the asset was properly destroyed and usually includes serial num- 
bers, type of destruction done, and so on. 
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Securing a SOHO Network (Wireless) 


CompTIA wants administrators of small office, home office (SOHO) networks to be able 
to secure those networks in ways that protect the data stored on them. This objective looks 
at the security protection that can be added to a wireless SOHO network, while the follow- 
ing section examines similar procedures for a wired network. 

A wireless network is not and never will be secure. Use wireless only when absolutely 
necessary. If you must deploy a wireless network, here are some tips to make some 
improvements to wireless security: 


a Change the default SSID. 

= Disable SSID broadcasts. 

a Disable DHCP or use reservations. 

= Use MAC filtering. 

= Use IP filtering. 

a Use the strongest security available on the wireless access point. 
= Change the static security keys every two to four weeks. 


a When new wireless protection schemes become available (and are reasonably priced), 
consider migrating to them. 


a Limit the user accounts that can use wireless connectivity. 
= Use a preauthentication system, such as RADIUS. 


a Use remote access filters against client type, protocols used, time, date, user account, 
content, and so forth. 


= Use IPSec tunnels over the wireless links. 
a Turn down the signal strength to the minimum needed to support connectivity. 


= Seriously consider removing wireless access from your LAN. 


Changing Default Usernames and Passwords 


In addition to those created with the installation of the operating system(s), default 
accounts are also often associated with hardware. Wireless access points, routers, and simi- 
lar devices often include accounts for interacting with, and administering, those devices. 
You should always change the passwords associated with those devices and, where possible, 
change the usernames. 

If there are accounts that are not needed, disable or delete them. Make certain that you 
use strong password policies and protect the passwords with the same security that you 
use for users and administrators. (In other words, don’t write the router’s password on an 
address label and stick it to the bottom of the router.) 
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Changing the SSID 


All radio frequency (RF) signals can be easily intercepted. To intercept 802.11 wireless 
traffic, all you need is a PC with an appropriate 802.11 card installed. Many networks will 
regularly broadcast their name (known as an SSID broadcast) to announce their presence. 
Simple software on the PC can capture the link traffic in the wireless AP and then process 
this data to decrypt account and password information. 

You should change the SSID—whether or not you choose to disable its broadcast—to 
keep it from being a value that many outsiders come to know. If you use the same SSID for 
years, then the number of individuals who have left the company or otherwise learned of its 
value will only increase. Changing the variable adds one more level of security. 


Setting Encryption 


It’s important to remember that you should always enable encryption for any wireless 
network that you administer. You should choose the strongest level of encryption you can 
work with. Following are some of the wireless protocols that you might encounter when 
securing wireless: 


Open Open security is just that—open with no passphrase or authentication protocol. 
Open security was originally how all wireless access points (WAPs) were shipped to the cus- 
tomer. Open security still has its uses when used in conjunction with guest wireless access. 


Wired Equivalent Privacy Shared passphrases are used with Wired Equivalent Privacy 
(WEP). WEP provides 64- or 128-bit encryption via the shared passphrase. The passphrase 
can easily be cracked with tools and is no longer used to secure wireless. 


Wi-Fi Protected Access Wi-Fi Protected Access (WPA) was standardized by the Wi-Fi 
Alliance in 2003 in response to the vulnerabilities in Wired Equivalent Privacy (WEP). 
WPA uses 256-bit keys, versus the 64-bit and 128-bit keys WEP used previously. WPA 
operates in two modes for security, pre-shared key (PSK) also called personal mode and 
enterprise mode. PSK is the most common mode, because it can easily be implemented with 
a mutual agreed upon passphrase. Enterprise mode, also called WPA-802.1x, requires a 
certificate server infrastructure. Enterprise mode uses the 802.1x protocol, RADIUS, and 
EAP; it is often used in corporate environments. 


WPA introduced many improved security features over WEP, such as message integrity 
checks (MICs), which detect packets altered in transit. WPA also introduced Temporal Key 
Integrity Protocol (TKIP), which uses the RC4 algorithm for encryption. TKIP provides 
per-packet keying to prevent eavesdropping on wireless conversations. However, despite the 
improvements in security, WPA is considered exploitable and is no longer used for wireless 
security. A common exploit used against WPA is an attack on the helper protocol of Wi-Fi 
Protected Setup (WPS). WPS is used for consumer ease of setup and should be turned off 
for security purposes. 
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Wi-Fi Protected Access 2. Wi-Fi Protected Access 2 (WPA2), also known as 802.11i, 
is the successor to WPA. WPA was deprecated in 2006, when WPA2 became a wireless 
security standard. Just like WPA, WPA2 operates in both personal mode (PSK) and 
enterprise mode. 


WPA2 uses the Advanced Encryption Standard (AES) algorithm to protect data. AES is 
more secure than the RC4 algorithm used with TKIP. WPA2 replaced TKIP with Counter 
Cipher Mode (CCM) with Block Chaining Message Authentication Code Protocol 
(CCMP). However, TKIP can be configured as a fallback for WPA backward compatibility. 
Like WPA, WPA2 is exploitable if the WPS service is enabled. WPS should be turned off 
for security purposes. 


Disabling SSID Broadcast 


One method of “protecting” the network that is often recommended is to turn off the SSID 
broadcast. The access point is still there and can still be accessed by those who know of it, 
but it prevents those who are looking at a list of available networks from finding it. This 
should be considered a very weak form of security because there are still ways, albeit a bit 
more complicated, to discover the presence of the access point besides the SSID broadcast. 


Wireless MAC Filtering 


Most APs offer the ability to turn on MAC filtering, but it is off by default. In the default 
state, any wireless client that knows of the existence of the AP can join the network. When 
MAC filtering is used, the administrator compiles a list of the MAC addresses associated 
with the users’ computers and enters them. When a client attempts to connect, an addi- 
tional check of the MAC address is performed. If the address appears on the list, the client 
is allowed to join; otherwise, they are forbidden from so doing. On a number of wireless 
devices, the term network lock is used in place of MAC filtering, but the two terms are 
synonymous. 


Adding port authentication to MAC filtering takes security for the network 
s TE down to the switch port level and increases your security exponentially. 


Antenna and Access Point Placement 


Antenna placement can be crucial in allowing clients to reach the access point. For security 
reasons, you do not want to overextend the reach of the network so that people can get 
onto the network from other locations (the parking lot, the building next door, and so on). 
Balancing security and access is a tricky thing to do. 

There isn’t any one universal solution to this issue, and it depends on the environment in 
which the access point is placed. As a general rule, the greater the distance the signal must 
travel, the more it will attenuate; however, you can lose a signal quickly in a short space as 
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well, if the building materials reflect or absorb it. You should try to avoid placing access 
points near metal (which includes appliances) or near the ground. They should be placed in 
the center of the area to be served and high enough to get around most obstacles. 

Wireless surveys can be performed with specialized software that records the strength of 
the signal on a map you import of the coverage area. Wireless surveys should be performed 
in your environment before access point placement, to determine the best placement. They 
should also be performed after access point placement for fine-tuning of the location and 
verification of uniform signal strength. 


Radio Power Levels 


Consideration should be made to radio power level, since the wireless access point has 
better transmitting power than most mobile devices. Consider the analogy of two people 
standing in a field. One person is using a bullhorn to ask the other person the time, and the 
other person only has their voice to respond. Although they can hear the request, they will 
not be heard when they answer because they don’t have a bullhorn. To fix this problem, 
the wireless access point should have its power level adjusted so that the client needs to be 
closer to receive data or associate. 

From a security aspect, power levels should be adjusted so that they do not travel past 
the interior of the organization’s building. If they do, then someone sitting in the parking 
lot or an adjoining building could attempt to infiltrate the wireless network. On the chance 
that the signal is actually traveling too far, some access points include power level controls 
that allow you to reduce the amount of output provided. 








Power Value Information 


A great source for information on RF power values and antennas can be found on the 
Cisco site, at: 


www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-lan-wlan/ 
23231-powervalues-23231.html 





Assign Static IP Addresses 


While DHCP can be a godsend, a SOHO network is small enough that you can get by 
without it issuing IP addresses to each host. The advantage to assigning the IP addresses 
statically is that you can make certain which host is associated with which IP address and 
then utilize filtering to limit network access to only those hosts. 


WPS 


WPS (Wi-Fi Protected Setup) can help to secure the network by requiring new machines to 
do something before they can join the network. This often requires the user to perform an 
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action in order to complete the enrollment process: Press a button on the router within a 
short time period, enter a PIN number, or bring the new device close-by (so that near field 
communication can take place). It should be noted that during this brief period the wireless 
access point is susceptible to an attack. Anyone with the passcode or the ability to guess the 
passcode can gain access to your wireless network. Therefore WPS is not used outside of 
SOHO networks and is not found in corporate networks. 


Authentication 


When setting up a wireless network, you are extending a wired network to a wireless net- 
work. Therefore, you must consider how users will authenticate to the wireless network. 
Following are various concepts of authentication that can be used with wireless and wired 
networks (though they are more commonly used with wireless networks): 


Single-Factor Authentication As previously mentioned, a single-factor of authentication is 
weak authentication. It is based on only one of the following factors: 


=a Something you know 
= Something you have 
= Something you are 

= Somewhere you are 


= Something you do 


Setting up a wireless network based on a pre-shared key limits you to a single authentica- 
tion factor, which everyone consequently shares. The use of a pre-shared key is a great 
example of an authentication factor of something that you know. Unfortunately, a pre- 
shared key can be compromised because people must share it, and you only have one pre- 
shared key per wireless SSID. 


Multifactor Authentication Using a single-factor of authentication alone allows you to 
be compromised much quicker. Therefore, using multifactor authentication is desirable 

for a higher level of wireless security. Multifactor authentication requires two or more 
single-factor authentication methods to be used to secure the wireless network. A common 
multifactor authentication implementation is the use of the Extensible Authentication 
Protocol - Transport Layer Security (EAP-TLS) protocol. EAP-TLS requires a certificate be 
installed in the operating system along with a matching password for the computer. 


RADIUS Remote Authentication Dial-In User Service (RADIUS) was originally pro- 
posed as an Internet Engineering Task Force (IETF) standard. It has become a widely 
adopted industry standard for authenticating users and computers for network systems. 
RADIUS creates a common authentication system, which allows for centralized authentica- 
tion and accounting. 


The origins of RADIUS are from the original ISP dial-up days, as its acronym describes. 
Today, RADIUS is commonly used for authentication of virtual private networks (VPN), 
wireless systems, and any network system that requires a common authentication system. 
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RADIUS operates as a client-server protocol. The RADIUS server controls authentication, 
authorization, and accounting (AAA). The RADIUS client can be wireless access points, a 
VPN, or wired switches. The RADIUS client will communicate with the RADIUS server 
via UDP/1812 for authentication and UDP/1813 for accounting. 


The RADIUS server can be installed on many different operating systems, such as Linux 
and Windows. Microsoft Windows Server includes an installable feature, called the 
Network Policy Server (NPS), that provides RADIUS functionality. 


TACACS+ Terminal Access Controller Access Control System+ (TACACS+) is a proto- 
col developed by Cisco, from the original dated protocol of TACACS. Although it was 
developed by Cisco, it was released as an open standard. The protocol is mainly used for 
authentication of users on routers and switches to allow management access. It is also 
used to authenticate users connecting to wireless access points via a centralized data- 
base. The TACACS+ protocol is declining in popularity and has largely been replaced 
with RADIUS. 


Securing a SOHO Network (Wired) 


While a wired network can be more secure than a wireless one, there are still a number 
of procedures that you should follow to leave as little to chance as possible. Among them, 
change the default usernames and passwords to different values and secure the physi- 

cal environment. You should also disable any ports that are not needed, assign static IP 
addresses, and use MAC filtering to limit access only to hosts that you recognize. 


Changing Default Usernames and Passwords 


Make sure the default password is changed after the installation of any network device. 
Failure to do so leaves that device open for anyone recognizing the hardware to access it 
using the known factory password. 

In Windows, the Guest account is automatically created with the intent that it is to be 
used when someone must access a system but lacks a user account on that system. Because 
the Guest account is so widely known to exist, you should not use this default account 
but instead create another account for the same purpose, if you truly need one. The Guest 
account leaves a security risk at the workstation and should be disabled to deter anyone 
attempting to gain unauthorized access. 


1 Change every username and password that you can so that they vary from 
P their default settings. 


Limit access to the network to MAC addresses that are known and filter out those that 
are not. Even in a home network, you can implement MAC filtering with most routers and 
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typically have an option of choosing to allow only computers with MAC addresses that you 
list or deny only computers with MAC addresses that you list. 


P If you don’t know a workstation’s MAC address, you can find it by using 
A TE ipconfig /ALL (on Windows machines; it is listed as physical address) and 
ifconfig (on macOS and Linux machines). 


Assigning Static IP Addresses 


Static IP addresses should be used (avoid having them dynamically issued by DHCP) on 
SOHO networks to keep from issuing addresses to hosts other than those you recognize 
and want on the network. The assignment of static IP addresses was covered in Chapter 19, 
“Working with Windows 7.” 


Disabling Ports 


Disable all protocols on the network device that are not required. As an example, many 
network multifunction printers are preconfigured with a multitude of protocols, such as 
TCP/IP, Bonjour, and Internet Printing Protocol (IPP), just to name a few. If you don’t need 
them, remove the additional protocols, software, or services, or prevent them (disable them) 
from loading. Ports on a switch, router, or firewall not in use present an open door for an 
attacker to enter and should be disabled or disconnected. 


PPS Many of the newer SOHO router solutions (and some of the personal 
‘gr firewall solutions on end-user workstations) close down the ICMP 
ports by default. Keep this in mind, because it can drive you nuts 
when you are trying to see if a brand-new station/server/router is up 
and running. 


Physical Security 


Just as you would not park your car in a public garage and leave its doors wide open with 
the key in the ignition, you should educate users to not leave a workstation that they are 
logged into when they attend meetings, go to lunch, and so forth. They should log out 

of the workstation or lock it. “Lock when you leave” should be a mantra they become 
familiar with. A password (usually the same as their user password) should be required to 
resume working at the workstation. 

You can also lock a workstation by using an operating system that provides filesystem 
security. Microsoft’s earliest filesystem was referred to as File Allocation Table (FAT). FAT 
was designed for relatively small disk drives. It was upgraded first to FAT-16 and finally to 
FAT-32. FAT-32 (also written as FAT32) allows large disk systems to be used on Windows 
systems. 
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FAT allows only two types of protection: share-level and user-level access privileges. If 
a user has write or change access to a drive or directory, they have access to any file in that 
directory. This is very unsecure in an Internet environment. 

With NTFS, files, directories, and volumes can each have their own security. NTFS’s 
security is flexible and built in. Not only does NTFS track security in access control lists 
(ACLs), which can hold permissions for local users and groups, but each entry in the ACL 
can also specify which type of access is given. This allows a great deal of flexibility in set- 
ting up a network. In addition, special file-encryption programs can be used to encrypt 
data while it is stored on the hard disk. 

Microsoft strongly recommends that all network shares be established using NTFS. 
While NTFS security is important, however, it doesn’t matter at all which filesystem you 
are using if you log into your workstation and then leave, allowing anyone to sit down at 
your desk and use your account. 


-_ Because NTFS and share permissions are operating system-specific, they 
‘gr were discussed in the chapters on operating systems. 


Last, don’t overlook the obvious need for physical security. Adding a cable to lock a 
laptop to a desk prevents someone from picking it up and walking away with a copy of 
your customer database. Every laptop case we are aware of includes a built-in security 
slot in which a cable lock can be added to prevent it from easily being carried off the 
premises. 

When it comes to desktop models, adding a lock to the back cover can prevent an 
intruder with physical access from grabbing the hard drive or damaging the internal 
components. You should also physically secure network devices, such as routers, access 
points, and the like. Place them in locked cabinets, if possible, for if they are not physically 
secured, the opportunity exists for them to be stolen or manipulated in such a way as to 
allow someone unauthorized to connect to the network. 


Wired and Wireless Security 


Whether your SOHO network is wired or wireless, you should keep the following basic 
security principles in mind: 


Firewall Settings The first principle is to configure firewall settings to block unwanted 
traffic. It is important to configure firewalls to keep as many potential problems out as 
possible. Turn off the ability to receive types of data that your users do not need, and con- 
stantly monitor, tweak, and refine these settings. 


Port Forwarding/Mapping Next, pay attention to port forwarding. On the router, the 
port configuration dictates what traffic is allowed to flow through. The router can be con- 
figured to enable individual port traffic in, out, or both, when you implement this type 

of configuration it is referred to as port forwarding. If a port is blocked (such as port 80 
for HTTP or port 21 for FTP), the data will not be allowed through, and users will be 
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affected. Port forwarding is also known as port mapping, and both are subsets of what a 
firewall does, and the amount of tweaking they require to get right is about the same. 


Content Filtering The basic premise behind content filtering is that some things are 
blocked. If a user attempts to go to a site that you do not want them to, for example, a mes- 
sage can appear telling them that access is denied. You can choose to block networks, types 
of sites, individual sites, or almost anything else on a granular level. While content filtering 
can be accomplished a number of ways, one of the most common is with parental controls 
(which are not available on a machine connected to the network through a domain). Within 
Windows 10, for example, choose Family Options from the Setting app. You can then set 
up a family group and configure settings for your family, as shown in Figure 22.35. 


FIGURE 22.35 Family Options in Windows 10 
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Update Firmware Most devices today, such as home routers, have the ability to download 
and install the latest firmware automatically. Devices that do not automatically update 
should be kept up-to-date to make sure that any vulnerabilities are patched. This is to 
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include graphics cards, hard drives, and other peripherals connected to the computer. You 
should check the manufacturer’s website to download the latest firmware for peripherals. 


Summary 


In this chapter, you learned about the various issues related to security that appear on the A+ 
220-1002 exam. Security is a popular topic in computing, and the ways in which a trouble- 
maker can cause harm increase regularly. CompTIA expects everyone who is A+ certified to 
understand the basic principles of security and be familiar with solutions that exist. 

In this chapter, you learned of security problem areas and issues that can be easily iden- 
tified. Problem areas include viruses, Trojans, worms, and malware. Security solutions 
include implementing encryption technology, using authentication, implementing firewalls, 
and incorporating security at many levels. 

Security is a set of processes and products. For a security program to be effective, all its 
parts must work and be coordinated by the organization. 


Exam Essentials 


Be able to describe why antivirus software is needed. Antivirus software looks at a virus 
and takes action to neutralize it based on a virus definition database. Virus definition data- 
base files are regularly made available on vendor sites. 


Understand the need for user education. Users are the first line of defense against most 
threats, whether physical or digital. They should be trained on the importance of security 
and how to help enforce it. 


Know the characteristics and types of viruses used to disrupt systems and networks. 
Several different types of viruses are floating around today. The most common ones are 
polymorphic viruses, stealth viruses, retroviruses, multipartite viruses, and macro viruses. 


Know how to compare and contrast social engineering, threats, and vulnerabilities. 

Social engineering variants include shoulder surfing (watching someone work) and phishing 
(tricking someone into believing they are communicating with a party other than the one 
with whom they are communicating). Variations on phishing include vishing, whaling, and 
spear phishing. 


Understand the need for good passwords. Passwords are the first line of defense for pro- 
tecting an account. A password should be required for every account, and strong passwords 
should be enforced. Users need to understand the basics of password security and work to 
keep their accounts protected by following company policies regarding passwords. 


Understand the difference between standard and low-level formatting. Standard format- 
ting uses operating system tools and marks the drive as available for holding data without 
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truly removing what was on the drive (thus, the data can be recovered). A low-level format 
is operating system—independent and destroys any data that was on the drive. 


Understand how to implement appropriate data destruction and disposal methods. A 
hard drive can be destroyed by tossing it into a shredder designed for such a purpose, or it 
can be destroyed with an electromagnet, in a process known as degaussing. You can also 
disassemble the drive and destroy the platters with a drill or other tool that renders the data 
irretrievable. 


Know how to compare and contrast wireless security protocols and authentication methods. 
Wireless networks can be encrypted through WEP, WPA, and WPA2 technologies. Wireless 
controllers use service-set identifiers (SSIDs)—32-character, case-sensitive strings—that 
must be configured in the network cards to allow communications. However, using ID 
string configurations doesn’t necessarily prevent wireless networks from being monitored, 
and there are vulnerabilities specific to wireless devices. 


Understand the basics of antenna placement and radio power levels. Antenna placement 
can be crucial in allowing clients to reach an access point. Place access points near the 
center of the area to be served and high enough to get around most obstacles. Know that 
power level controls allow you to reduce the amount of output provided. 


Know how to configure security on SOHO wireless and wired networks is various scenarios. 
Disable all unneeded protocols/ports. If you don’t need them, remove them or prevent them 
from loading. Ports not in use present an open door for an attacker to enter. MAC filtering 
allows you to limit access to a network to MAC addresses that are known and filter out 
(deny access to) those that are not. 


Review Questions 1227 


Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. Which component of physical security addresses outer-level access control? 
A. Perimeter security 
B. Mantraps 
C. Multifactor authentication 
D. Strong passwords 
2. You have a very small network in a home-based office, and you want to limit network 
access to only those hosts that you physically own. What should you utilize to make this 
possible? 
A. Static IP addresses 
B. Disabled DNS 
C. Default subnet mask 
D. Empty default gateway 
3. As part of your training program, you’re trying to educate users on the importance of 
security. You explain to them that not every attack depends on implementing advanced 
technological methods. Some attacks, you explain, take advantage of human shortcomings 
to gain access that should otherwise be denied. Which term do you use to describe attacks 
of this type? 
A. Social engineering 
B. IDS system 
C. Perimeter security 
D. Biometrics 
4. You’re in the process of securing the IT infrastructure by adding fingerprint scanners to 
your existing authentication methods. This type of security is an example of which of the 
following? 
A. Access control 
B. Physical barriers 
C. Biometrics 
D. Softening 
5. Which type of attack denies authorized users access to network resources? 
A. DoS 
B. Worm 
C. Trojans 
D. Social engineering 
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6. As the security administrator for your organization, you must be aware of all types of 
attacks that can occur and plan for them. Which type of attack uses more than one com- 
puter to attack the victim? 


A. DoS 

B. DDoS 
C. Worm 
D. Rookits 


7. A vice president of your company calls a meeting with the IT department after a recent trip 
to competitors’ sites. She reports that many of the companies she visited granted access to 
their buildings only after fingerprint scans, and she wants your company to use a similar 
technology. Of the following, which technology relies on a physical attribute of the user for 
authentication? 

A. Smart card 
B. Biometrics 
C. Geo-fencing 


D. Tokens 
8. You’ve discovered that credentials to a specific application have been stolen. The applica- 


tion is only accessed from one computer on the network. Which type of attack is this most 
likely to be? 


A. Man-in-the-middle 


B. Zero-day 
C. Denial-of-service (DoS) 
D. Smurf 


9. A junior administrator comes to you in a panic. After looking at the log files, he has 
become convinced that an attacker is attempting to use a legitimate IP address to disrupt 
access elsewhere on the network. Which type of attack is this? 


A. Spoofing 

B. Social engineering 

C. Worm 

D. Password 
10. Which of the following is different from a virus in that it can reproduce itself, is self- 

contained, and doesn’t need a host application to be transported? 

A. Worm 

B. Smurf 
C. Phish 
D 


Trojan 


11. 


12. 


13. 


14. 


15. 


16. 
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A smurf attack attempts to use a broadcast ping on a network. The return address of the 
ping may be that of a valid system in your network. Which protocol does a smurf attack use 
to conduct the attack? 


A. TCP 
B. IP 

cC. UDP 
D. ICMP 


Which wireless encryption protocol provides Advanced Encryption Standard (AES) 
encryption? 


A. Wired Equivalent Privacy (WEP) 

B. Wi-Fi Protected Access (WPA) 

C. Wi-Fi Protected Access 2 (WPA2) 

D. Temporal Key Integrity Protocol (TKIP) 

You want to mitigate the threat of someone attaching a wireless access point to your wired 
network. What should you use to mitigate this threat? 

A. Firewall 

B. Data loss prevention (DLP) 

C. Active Directory 

D. Port security 

You need to protect your users from potentially being phished via email. What of the 
following should you use to protect them? 

A. Antivirus software 

B. End-user education 

C. SecureDNS 

D. The principle of least privilege 

Your help desk has informed you that they received an urgent call from the vice president 


last night requesting his login ID and password. When you talk with the VP today, he says 
he never made that call. What type of attack is this? 


A. Spoofing 

B. Replay 

C. Social engineering 

D. Trojan horse 

Internal users suspect repeated attempts to infect their systems, as reported to them by 


pop-up messages from their antivirus software. According to the pop-up messages, the 
virus seems to be the same in every case. What is the most likely culprit? 


A. A server is acting as a carrier for a virus. 

B. A password attack is being carried out. 

C. Your antivirus software has malfunctioned. 
D 


A DoS attack is underway. 
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17. You’re working late one night and notice that the hard drive on your new computer is very 
active even though you aren’t doing anything on the computer and it isn’t connected to the 
Internet. What is the most likely suspect? 


A. A spear phishing attack is being performed. 
B. A virus is spreading in your system. 
C. Your system is under a DoS attack. 
D. TCP/IP hijacking is being attempted. 
18. You’re the administrator for a large bottling company. At the end of each month, you 
routinely view all logs and look for discrepancies. This month, your email system error log 


reports a large number of unsuccessful attempts to log in. It’s apparent that the email server 
is being targeted. Which type of attack is most likely occurring? 


A. Brute-force 
B. Backdoor 
C. Worm 
D. TCP/IP hijacking 
19. Your boss needs you to present to upper management the need of a firewall for the network. 
What is the thesis of your presentation? 
A. The isolation of one network from another 
B. The scanning of all packets for viruses 
C. Preventing password attacks 


D. The hardening of physical security 


20. Which Active Directory component maps printers and drives during login? 
A. Home folders 
B. Organizational unit 
C. Login script 
D. Microsoft Management Console (MMC) 


Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answers compare to the authors’, refer 
to Appendix B. 

You have been asked to install wireless for your organization. Which tasks do you need 
to perform? 
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v 2.6 Compare and contrast the differences of basic 
Microsoft Windows OS security settings. 


= User and groups: Administrator, Power user, Guest, 
Standard user 


= NTFS vs. share permissions: Allow vs. deny, Moving vs. 
copying folders and files, File attributes 


= Shared files and folders: Administrative shares vs. local 
shares, Permission propagation, Inheritance 


a System files and folders 

= User authentication: Single sign-on 

a Run as administrator vs. standard user 
a BitLocker 

= BitLocker To Go 

= EFS 


y 2.7 Given a scenario, implement security best practices 
to secure a workstation. 


= Password best practices: Setting strong passwords, 
Password expiration, Screensaver required password, 
BIOS/UEFI passwords, Requiring passwords 


a Account management: 
= Restricting user permissions 
= Logon time restrictions 


= Disabling guest account 





= Failed attempts lockout 
= Timeout/screen lock 
= Change default admin user account/password 


a Basic Active Directory functions: Account creation, 
Account deletion, Password reset/unlock account, 
Disable account 


s Disable autorun 
= Data encryption 


a Patch/update management 


v 2.8 Given a scenario, implement methods for securing 
mobile devices. 


= Screen locks: Fingerprint lock, Face lock, Swipe lock, 
Passcode lock 


=» Remote wipes 

a Locator applications 

=» Remote backup applications 

a Failed login attempts restrictions 
a Antivirus/Anti-malware 

= Patching/OS updates 

= Biometric authentication 

= Full device encryption 

a Multifactor authentication 

a Authenticator applications 

= Trusted sources vs. untrusted sources 
= Firewalls 


= Policies and procedures: BYOD vs. corporate-owned, Profile 
security requirements 





This chapter is the second of two chapters that focus primarily 
on security. Chapter 22, “Security Concepts,” covered myriad 
BEBLESE a security concepts, ranging from physical security to the poli- 
cies that define security in your organization. In this chapter, we will focus on operating 
system security and mobile security. 

Many organizations are adopting a cloud-first initiative for their line of business applica- 
tions. This has further perpetuated the adoption of mobile devices in the work place. These 
initiatives, along with the rapid adoption of mobile devices in our personal life has created 
a tremendous need for security. This chapter will address the concerns of operating system 
security, mobile device security, and best practices. 





Workstation Security Best Practices 


The user represents the weakest link in the security chain, whether harm comes to them 
as a result of malware, social engineering, or simply avoidable mistakes. The workstation, 
which represents the digital arm of the user, must be properly and adequately secured to 
keep the user—and the network—protected. 

The following sections explore some of the more commonly implemented best practices 
in greater detail. 


Setting Strong Passwords 


One of the most effective ways to keep a system safe is to employ strong passwords and 
educate your users about their best practices. Many password-based systems use a one- 
way hashing approach. You can’t reverse the hash value in order to guess the password. 
This makes it impossible to reverse the hashes if the database of stored passwords is lifted 
(stolen) from the operating system. Because the hash is sent over the network in lieu of the 
actual password, the password is harder to crack. 

Passwords should be as long and complex as possible. Most security experts believe 
that at least 12 characters should be used, 20 or more characters if security is a real con- 
cern. If you use only the lowercase letters of the alphabet, you have 26 characters with 
which to work. If you add the numeric values 0-9, you get another 10 characters. Adding 
uppercase letters, you gain an additional 26 characters. If you go one step further by using 
symbol characters (such as !"#$%&' ()*+,-./:3<=>?@[\]4_° {|} and ~, including a blank 
space), you have an additional 33 more characters. You then have a pallet of 95 characters 
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for each position in your password. A typical example of a complex password using all 
these elements might be %s4@7dFs#D2$. If you have a hard time coming up with a strong 
password on your own, you can always use an online password generator, such as 
https: //passwordsgenerator.net. 

When the Password Complexity policy in Group Policy is enabled for the Windows 
operating system, three of the four categories—lowercase, uppercase, numbers, and 
symbols—must be used in your password. Windows Server and/or Active Directory 
can also require a minimum password size, which guarantees a secure password when 
coupled with complexity. These account policies were covered in Chapter 19, “Working 
with Windows 7.” 


some go so far as to require it. Some symbols, however, do not work for 
web-based applications. Therefore, you may find that a vendor accepts 
a reduced set of characters. Although this reduces the complexity, using 
characters in addition to letters and numbers makes the password more 
secure. 


w Most vendors recommend that you use symbols in your password, and 
P 


Let’s look further at password complexity. If you used a 4-character password, this 
would be 95 x 95 x 95 x 95, or approximately 81.5 million possibilities. A 5-character 
password would give you 95°, or approximately 7.7 billion possibilities. And a 10-character 
password would give you 95!°, or 5.9 x 10!8 (a very big number) possibilities. As you can 
see, these numbers increase exponentially with each position added to the password. A 
4-digit password could probably be broken in a fraction of a day, whereas a 10-digit pass- 
word would take considerably longer and much more processing power. 

If your password consisted of only the 26 lowercase letters, the 4-digit password would 
have 26*, or 456,000 combinations. A 5-character password would have 26°, or over 11 
million combinations, and a 10-character password would have 26", or 1.4 x 101 combi- 
nations. The number of combinations is still a big number, but it would take considerably 
less time to break it compared to a longer password. This is all based on the notion that 
a brute-force password attack is being performed. If a dictionary attack were being per- 
formed, a 4- or 5-digit lowercase password could take less than five minutes to crack. 

Mathematical methods of encryption are primarily used in conjunction with other 
encryption methods as part of authenticity verification. The message and the hashed value 
of the message can be encrypted using other processes. In this way, you know that the mes- 
sage is secure and hasn’t been altered. 


Requiring Passwords 


Make absolutely certain that you require passwords for all accounts. It’s such a simple 
thing to overlook in a small network, but it’s not something a malicious user will overlook. 
By default, the Windows operating system will not allow an account to connect over the 
network if it has a blank password. It will, however, allow a person to log in locally with 
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Windows security options 


a blank password. There is a security option in the local Group Policy that specifies this 
behavior, as shown in Figure 23.1. 
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T) Audit: Audit the use of Backup and Restore privilege 
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E Audit: Shut down system immediately if unable to log security audits 
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(Ey Devices: Restrict CD-ROM access to locally logged-on user only 

E) Devices: Restrict floppy access to locally logged-on user only 

E Domain controller: Allow server operators to schedule tasks 
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The operating system is not the only place where you should use a password for secu- 


rity. You should also use passwords on the basic input/output system (BIOS) and unified 
extensible firmware interface (UEFI) firmware. If a malicious user has access, they could 


possibly circumvent your security by booting a live operating system. 


You should also change the default passwords on system accounts. There are dedicated 
sites on the web that document default username and password for various vendor devices. 


A common hacker can easily pull up these sites and find the default username and pass- 


word for your wireless access point, camera system, or any other system on which you’ve 
neglected to change the default password. 


Password Expiration 


Password expiration should be a consideration because passwords can be compromised 


as time goes on. Whether passwords are compromised by shoulder surfing or keylogging, 
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or intercepted via the network when a user is logging in, the fact remains they are only 
one factor of authentication. Therefore, passwords should be set to expire on a monthly, 
bi-monthly, quarterly, semi-annual, or annual basis. The more sensitive an account is, the 


more frequently the password should be changed. 


Windows has a default password expiration of 42 days, as shown in Figure 23.2. A 
system should be put in place to expire passwords on a periodic basis, as stated previously. 
This would then be communicated to your users via the onboarding process when they are 
hired. This policy and several others were covered in Chapter 19. Group Policy has identi- 


cal policies that can be applied to the domain. 


FIGURE 23.2 Password expiration 
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Account Management 


Given a security-related scenario, account management can take into account such settings 
as restricting user permissions, setting login time restrictions, disabling the Guest account, 
locking an account after a certain number of failed attempts, and configuring a screen lock 


when the system times out after a certain length of inactivity. 
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Restricting User Permissions 


When assigning user permissions, follow the principle of least privilege: Give users only the 
bare minimum that they need to do their job. Assign permissions to groups rather than to 
users, and make users members of groups (or remove them from groups) as they change 
roles or positions. 

The use of groups is crucial to account management, because when you apply permission 
on NTFS for the user, you need to visit the resource to identify the permissions granted. 
When you use a group and apply the NTFS permission to that specific group, you can 
now look at either the membership of the group or the membership of the user in Active 
Directory. This allows you us to see who has access to the resource without having to visit 
the resource. Figure 23.3 shows an oversimplified example. A user, Fred, is a member of 
both the Sales and R&D groups; therefore, he has access to the Sales and R&D folders. In 
a real-world application, the group would be more descriptive, such as Perm_RW_Sales_ 
Server1. This naming would describe what the group is used for (permissions), what level of 
permissions (RW), what resource (Sales share), and on what server (Server1). 


FIGURE 23.3 Users, groups, and resources 
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Setting Time Restrictions 


Configure user accounts so that logins can occur only during times that the user can be 
expected to be working. Preventing logins at 2:00 a.m. can be an effective method of keep- 
ing hackers from your systems. This can be performed in Active Directory by clicking the 
user’s account, selecting the Account tab, and then click on Logon Hours..., as shown 

in Figure 23.4. From this interface, you can configure the permitted hours for logins and 
denied hours for logins. 
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FIGURE 23.4 Account restrictions 
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You can also set account expiration on the Properties tab of the user. By default, the 
account is set to never expire. However, you can add a date at which time the account will 
expire. This is best used on contractor accounts, where the term of use can be defined. 
Because contractor accounts often don’t go through typical human resource processes, the 
accounts can be forgotten about. By adding an account expiration, you can be assured that 
at the end of the contract the account will be disabled (expired). 


Limiting the Number of Failed Login Attempts 


Configure user account settings to limit the number of login attempts before the account is 
locked for a period of time. Legitimate users who need to get in before the block expires can 
contact the administrator and explain why they weren’t able to give the right password three 
times in a row, and non-legitimate users will go away in search of another system to try to enter. 
When choosing the number of failed attempts, you need to consider the number of calls 

you get to the help desk versus the security in having few failed attempts before lockout. 
You'll find that when you set it to three failed attempts, the help desk will get more calls 
than necessary, but it allows for better security. Setting the number of failed login attempts 
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to five may be better for users, because many users realize after the third failed attempt that 
their Caps Lock key was on, but is less secure than three failed attempts. This setting needs 
to be evaluated against your security requirement and help desk volume. 

You should also consider the length of the lockout. If it’s a Monday morning and a per- 
son enters their password wrong x-number of times and gets locked out, five minutes might 
be appropriate. The time it takes to get a cup of coffee and unlock might be just enough 
time on a Monday morning to allow the user to wake up. You can set these settings for an 
entire domain, as shown in Figure 23.5. As shown here, the user will be locked out for 30 
minutes after three failed attempts. By default, there is no account lockout policy set for a 


domain. 


FIGURE 23.5 Account lockout policy settings 
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If a password attack is being executed, no protection could easily allow 
OTE millions of password attempts. By setting a failed login attempt counter 


and a lockout duration, you slow the progress of the attack. 


Changing Default Usernames 


Default accounts represent a huge weakness because everyone knows they exist. When 
an operating system is installed—whether on a workstation or a server—certain default 
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accounts are created. Knowing the names of those accounts simplifies the process of poten- 
tial attackers accessing them because they only have to supply the password. 

The default username should be changed whenever possible. Several websites are dedi- 
cated to documenting the default username and password for routers, switches, and other 
network equipment. These sites are useful, especially when you lose the documentation for 
the device and have factory reset it. A login after you have successfully just factory reset the 
device is really the only time that it’s acceptable to use the default username and password 
for security. You don’t need a website to guess the common administrative accounts on 
equipment or an operating system. They are usually admin, administrator, root, or sysad- 
min. Changing the default username makes it more challenging for someone to try to guess 
the credentials. 


Disabling the Guest Account 


When Windows is installed, one of the default accounts it creates is Guest. This represents 
a weakness that can be exploited by an attacker. While the account cannot do much, it can 
provide initial access to a system, which the attacker can use to find another account or 
acquire sensitive information about the system. 

You should disable all accounts that are not needed, especially the Guest account. 
Windows 10 disables the Guest account by default, as shown in Figure 23.6. Next, rename 
the accounts, if you can. (Microsoft won’t allow you to rename some.) Finally, change the 
passwords from the defaults and add them to the cycle of passwords that routinely get 
changed. 


FIGURE 23.6 Disabled Guest account 
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Requiring Screensaver Passwords 


You can require lengthy, complex passwords for all your users as well as lock down the 
operating system with passwords, but if a user goes to the restroom or on break without 
locking their workstation, any person wandering by can access everything the user has 
privileges to. 

A screensaver should automatically start after a short period of idle time, and a pass- 
word should be required before the user can begin the session again. This method of lock- 
ing the workstation adds one more level of security. A Group Policy can be put in place 
to turn on password-protected screensavers. Adding a password-protected screensaver 
can assure that if a workstation is left unattended, it will lock and require a password 
to resume access. You can access this setting on Window 10 by right-clicking an empty 
portion of the Desktop and selecting Personalize > Lock Screen > Screen Saver Settings. 
The Screen Saver Settings dialog box will appear. To manually require a password after 
a screensaver has activated, select the On Resume, Display Logon Screen check box, as 
shown in Figure 23.7. 


FIGURE 23.7 The Screen Saver Settings dialog box 
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Active Directory 


The Active Directory User and Computers Microsoft Management Console (MMC) is a 
big part of account management. It’s the one spot where you can do just about everything 
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mentioned in this section. As a network administrator, you'll spend most of your time 
working within this console, as shown in Figure 23.8. Following are several different tasks 
that you'll be expected to perform: 


FIGURE 23.8 Active Directory Users and Computers 


File Action View Help 
e| am] ¢oO|XOSa|\Em| tS t tT? ak 
E Active Directory Users and Computers [server1.contoso.com] Name Description 
> E Saved Queries 8, Mark Probst 
4 #4 contoso.com & sally James 
b ©) Builtin 
p 1) Computers 
b &) Domain Controllers 
p (5) ForeignSecurityPrincipals 
4 @) IND 
E HR 
IT 
E] Marketing 
Bl Sales | 
b Gj LAX 
p (©) Managed Service Accounts 
b @) PIT 
p © Users 




















Creating Accounts As new users enter your network, you’ll need to create new 
accounts for them in Active Directory. This is considered part of the onboarding pro- 
cess, so it should begin with Human Resources. Inevitably, you will need to create an 
account after the paperwork reaches your desk. You have several options when creat- 
ing a new account. You can either create a new account from scratch or copy an exist- 
ing account into a new account. If you create a new account from scratch, everything 
needs to be entered manually, such as group assignment and profile settings. If you 
copy an existing account into a new account, security settings and other useful set- 
tings are copied over automatically. You can then focus on customizing the account 
for the new user. A third option exists, which is really the same as copying an account 
into a new account; the only difference is the account that is being copied from is only 
used as a template. 


Deleting Accounts As users leave your organization, you need to offboard them and exit 
their account from the system. Again, this process should start with Human Resources. 
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Once you delete an account, it’s very difficult to bring it back. Deletion of an account 
can be undone, but the undo disruption to the user cannot be undone. Some offboarding 
processes disable the account for a length of time, after which the account is completely 


deleted. 


Resetting Passwords and Unlocking Accounts By far, the most common tasks you'll per- 
form are resetting passwords and unlocking accounts. If a user forgets their password or 
gets locked out, the help desk is the first place they call. When dealing with account 
lockouts, make sure that the person actually forgot their password. If the user is calling 
because they are locked out and just need to be unlocked because they have a case of the 
Mondays, there is no need to reset their password. You can unlock their account by right- 
clicking their account selecting Properties, then clicking on the Account tab, and finally click- 
ing Unlock account and then OK, as shown in Figure 23.9. If they both forgot their password 
and locked their account out in the process, however, then resetting the password and 
unlocking the account is the remedy. You can do this by right-clicking their account and 
choosing Reset Password, as shown in Figure 23.10. 


FIGURE 23.9 Unlocking an account 
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FIGURE 23.10 Resetting a password 
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Moves the current selection to another organizational unit. 


Disabling Accounts When accounts are no longer used but cannot be deleted completely, 
the appropriate action is to disable them. Simply right-click the user account and select 
Disable Account. Once disabled, the account will show a small down arrow next to the icon 
of the user in Active Directory Users and Computers. You can right-click a disabled account 
and select Enable Account to make the account active again, as shown in Figure 23.11. 


FIGURE 23.11 Enabling a disabled account 
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Disable Autorun 


It is never a good idea to put any media in a workstation if you do not know where it came 
from or what it is. The simple reason is that said media (CD, DVD, USB) could contain 
malware. Compounding matters, that malware could be referenced in the autorun. inf 

file, causing it to be summoned when the media is inserted in the machine and requiring no 
other action. Autorun. inf can be used to start an executable, access a website, or do any of 
a large number of different tasks. The best way to prevent a user from falling victim to such 
a ploy is to disable the AutoRun feature on the workstation. 

Microsoft has changed the function on Windows so that it no longer acts as it previously 
did (prior to Windows 7). The feature is now disabled by default. The reason Microsoft 
changed the default action can be summed up in a single word: security. That text-based 
autorun. inf file can not only take your browser to a web page, it can also call any execut- 
able file, pass along variable information about the user, or do just about anything else 
imaginable. Simply put, it is never a good idea to plug any media into your system if you 
have no idea where it came from or what it holds. Such an action opens up the user’s 
system—and the network—to any number of possible risks. An entire business’s data could 
be jeopardized by someone with elevated privileges inadvertently putting a harmful CD 
into a computer at work. 


The AutoRun feature is disabled by default, so that malicious software 
‘QB does not start automatically. However, the ability to automatically start a 
video, music, or open a folder when removable media is inserted into the 
computer is really useful. The functionality of automatically performing 
an action or asking what should be done when media is inserted is still 
enabled by default on Windows, via a feature called AutoPlay. AutoPlay 
distinguishes itself from AutoRun, as it does not look at the autorun. inf 
file and does not start an executable unless the user specifically clicks they 
want to do so. For more information about AutoRun and AutoPlay, visit: 


https: //blogs.technet.microsoft.com/srd/2009/04/28/ 
autorun-changes-in-windows-7/ 


Data Encryption 


To prevent the loss of data, data encryption should be considered. Not that the data is really 
ever lost, but it’s no longer within your control. Consider an example of a laptop with sen- 
sitive patient record information stored on it. If the laptop were to be stolen, there are a 
number of utilities that could provide unauthorized access. However, with encryption (such 
as BitLocker) enabled, both the operating system and the data would remain encrypted and 
inaccessible. 

There are three concepts with data encryption: data in use, data in transit, and data at 
rest, as shown in Figure 23.12. Data in use is the concept of data that is in an inconsis- 
tent state and or currently resident in memory. Most of the time, you don’t need to be too 
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concerned with data in memory, since that is normally a function of the operating system. 
However, when data is written to a temporary location, it is considered data in use and 
therefore should be encrypted. Data in transit is information traversing the network and 
should always be encrypted so that it is not intercepted. Over the past decade, just about 
every website and application has adopted some form of encryption, so there is no reason 
not to use encryption in transit. 


FIGURE 23.12 Data and encryption 
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Data at rest is a point of contention because it is believed that once the data hits the 
server, it’s safe. However, the data is more vulnerable because it’s in one spot. If a drive 
needed to be replaced because it went bad, outside of physical destruction, there is no way 
to assure the data is inaccessible. When used for backup tapes, it is not only a good idea but 
should be a requirement. 


Patch/Update Management 


When operating systems are installed, they are usually point-in-time snapshots of the cur- 
rent build of the operating system. From the time of the build to the time of install, several 
vulnerabilities can be published for the operating system. When an operating system is 
installed, you should patch it before placing it into service. Patches remediate the vulner- 
abilities found in the operating system and fixed by the vendor. Updates add new features 
not included with the current build. However, some vendors may include vulnerability 
patches in updates. Network devices also have patches and updates that should be installed 
prior to placing them into service. 

After the initial installation of the device or operating system and the initial patches and 
updates are installed, you are not done! Vendors continually release patches and updates to 
improve security and functionality, usually every month and sometimes outside of the nor- 
mal release cycle. Patches released outside of the normal release cycle are called out-of-band 
patches and are often in response to a critical vulnerability. 

Microsoft products are patched and updated through the Windows Update func- 
tionality of the operating system. However, when an administrator is required to patch 
and update an entire network, Windows Server Update Services (WSUS) can be imple- 
mented. A WSUS server enables the administrator to centrally manage patches and 
updates. The administrator can also report on which systems still need to be patched 
or updated. 
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Working with Windows OS 
Security Settings 


Every operating system offers security features and settings. While you need to know 

a little about Linux and macOS, the A+ exams focus primarily on Windows and the 
OS-specific security settings that you need to know to secure them. The following sections 
will explore some of the more basic Windows OS security features and settings in more 
detail. 


Users and Groups 


A number of groups are created on the operating system by default. The following sections 
look at the main ones. 


Administrator 


The Administrator account is the most powerful of all: It has the power to do every- 
thing from the smallest task all the way to removing the operating system. Because 

of the great power the Administrator account holds, and the fact that it is always 
created, many who want to do harm will target this account as the one that they try 

to breach. To increase security, during the installation of the Windows operating sys- 
tems in question, you are prompted for a name of a user who will be designated as the 
Administrator. The power then comes not from being called “Administrator” (the user- 
name might now be “buhagiar,” “jbuhagiar,” or something similar) but from being a 
member of the Administrators group. (Notice the plural for the group and singular for 
the user.) 

Since members of the Administrators group have such power, they can inadvertently do 
harm (such as accidentally deleting a file that a regular user could not). To protect against 
this, the practice of logging in with an Administrators group account for daily interaction 
is strongly discouraged. Instead, we suggest that system administrators log in with a user 
account (lesser privileges) and change to the Administrators group account (elevated privi- 
leges) only when necessary. 


Power User 


Originally, Microsoft wanted to create a group in Windows whose members were not as 
powerful as members of the Administrators group, so they created the Power Users group. 
The idea was that members of this group would be given Read and Write permission to the 
system, allowing them to install most software but keeping them from changing key oper- 
ating system files. As such, it would be a good group for those who need to test software 
(such as programmers) and junior administrators. 
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The group did not work out as planned, and in Windows 7, Windows 8/8.1, and 
Windows 10 the group has no more permissions than a standard user. The group is now 
kept around only for backward compatibility with Windows XP systems. 


Guest 


The Guest account is created by default (and should be disabled) and is a member of the 
Guests group. For the most part, members of Guests group have the same rights as a stan- 
dard user, except they can’t get to log files. The best reason to make users members of the 
Guests group is to access the system only for a limited time. 


1 As part of operating system security, it’s usually recommend that you 
P rename the default Administrator and Guest accounts that are created at 
installation. 


Standard User 


By default, standard users belong to the Users group. Members of this group have Read and 
Write permission to their own profile. They cannot modify system-wide Registry settings 
or do much harm outside of their own account. Under the principle of least privilege, users 
should be made a member of the Users group only, unless qualifying circumstances force 
them to have higher privileges. 

If you attempt to run some utilities (such as sfc.exe) from a standard command prompt, 
you will be told that you must be an administrator running a console session in order to 
continue. Rather than opening a standard command prompt, choose Start > All Programs 
> Accessories, and then right-click Command Prompt and choose Run As Administrator. 
The User Account Control (UAC) will prompt you to continue, and then you can run 
sfc.exe without a problem. 


NTFS vs. Share Permissions 


The New Technology File System (NTFS) was introduced with Windows NT to address 
security problems. Before Windows NT was released, it had become apparent to Microsoft 
that a new filesystem was needed to handle growing disk sizes, security concerns, and the 
need for more stability. NTFS was created to address those issues. 

Although the File Allocation Table (FAT) filesystem was relatively stable if the systems 
that were controlling it kept running, it didn’t do well when the power went out or the sys- 
tem crashed unexpectedly. One of the benefits of NTFS was a transaction tracking system, 
which made it possible for Windows NT to back out of any disk operations that were in 
progress when it crashed or lost power. 

With NTFS, files, folders, and volumes can each have their own security. NTFS’s 
security is flexible and built in. Not only does NTFS track security in ACLs, which 
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can hold permissions for local users and groups, but each entry in the ACL can specify 
which type of access is given—such as Read & Execute, List Folder Contents, or Full 
Control. This allows a great deal of flexibility in setting up a network. In addition, spe- 
cial file-encryption programs were developed to encrypt data while it is stored on the 
hard disk. 

Microsoft strongly recommends that all network shares be established using NTFS. 
Several current operating systems from Microsoft support both FAT32 and NTFS. It’s pos- 
sible to convert from FAT32 to NTFS without losing data, but you can’t do the operation 
in reverse. (You would need to reformat the drive and install the data again from a backup 
tape.) 


If you're using FAT32 and want to change to NTFS, the convert utility 
P will allow you to do so. For example, to change the E: drive to NTFS, the 
command is convert E: /FS:NTFS. 


Share permissions apply only when a user is accessing a file or folder through the 
network, as shown in Figure 23.13. NTFS permissions and attributes are used to pro- 
tect the file when the user is local. With FAT and FAT32, you do not have the ability to 
assign “extended” or “extensible” permissions, and the user sitting at the console effec- 
tively is the owner of all resources on the system. As such, they can add, change, and 
delete any data or file. 


FIGURE 23.13 Network share permissions and NTFS permissions 
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With NTFS as the filesystem, you are allowed to assign more comprehensive secu- 
rity to your computer system, as shown in Table 23.1. NTFS permissions can protect 
you at the file level. Share permissions can be applied to the folder level only, as shown 
in Table 23.2. NTFS permissions can affect users accessing files and folders across a 
network or logged in locally to the system where the NTFS permissions are applied. 
Share permissions are in effect only when the user connects to the resource via the 
network. 
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TABLE 23.1 


NTFS Permission 


NTFS permissions 


Meaning 


Object Used On 





Full Control 


Modify 


Read & Execute 


List Folder 
Contents 


Read 


Write 


Gives the user all the other choices and the 
ability to change permissions. The user can 
also take ownership of the folder or any of its contents. 


Combines the Read & Execute permission with the 
Write permission and further allows the user to delete 
everything, including the folder. 


Combines the Read permission with the List Folder 
Contents permission and adds the ability to run exe- 
cutables. 


The List Folder Contents permission (known simply as 
List in previous versions) allows the user to view the con- 
tents of a folder and to navigate to its subdirectories. It 
does not grant the user access to the files in these direc- 
tories unless that is specified in file permissions. 


Allows the user to navigate the entire folder structure, 
view the contents of the folder, view the contents of any 
files in the folder, and see ownership and attributes 


Allows the user to create new entities within a folder 


TABLE 23.2 Share permissions 


Share Permission 


Meaning 


Folder and 
file objects 


Folder and 
file objects 


Folder and 
file objects 


Folder objects 


Folder and 
file objects 


Folder and 
file objects 





Full Control 


Change 


Read 


Gives the user all the other permissions as well as permission to take 


ownership and change permission 


Allows the user to overwrite, delete, and read files and folders 


Allows the user to view the contents of the file and to see ownership 


and attributes 


Allow vs. Deny 


Within NTFS, permissions for objects fall into one of three categories: Allow, Deny, or 
not configured. When viewing the permissions for a file or folder, you can check the box 
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for Allow, which effectively allows the group selected to perform that action. You can 
also uncheck the box for Allow, which does not allow that group that action, as shown in 
Figure 23.14. Alternatively, you can check the Deny box, which prevents that group from 
using that action. There is a difference between not allowing (a cleared check box) and 
Deny (which specifically prohibits), and you tend not to see Deny used often. Deny, when 
used, trumps other permissions. 


FIGURE 23.14 NTFS folder permissions 
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Permissions set on a folder are inherited down through subfolders, unless otherwise 
changed. Permissions are also cumulative: If a user is a member of a group that has Read 
permission and a member of a group that has Write permission, they effectively have both 
Read and Write permissions. 


Effective Permissions 


When a user accesses a file share, both the share permissions and NTFS permissions inter- 
act with each other to form the effective permission for the user. Figure 23.15 shows that a 
user named Fred has logged in and received his access token containing the Sales and R&D 
groups, since he is a member of both groups. When Fred accesses the Sales file share, the 
share permissions define that he has read-only access because he is part of the Sales group. 
You can see that the NTFS permissions are granting him read and write access because of 
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his Sales group membership, as well as full control because he is also in the R&D group. If 
Fred were to locally log in to this computer, he would effectively have full control of these 
files. However, because he is accessing these files from the network, he only has read-only 
access because of the file-share permissions. The opposite is also true: If he had full per- 
mission at the share level and read-only permission at the NTFS level, he would effectively 
have read-only access. 


FIGURE 23.15 Effective permissions 
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The rule to figuring out effective permissions is simple: If a user is in more than one 
group for which there are multiple permissions, take the most permissive permission of 
NTFS and then the most permissive permission of the share; the effective permission is the 
more restrictive of the two. There are some circumstances that change this rule slightly 
when the user (or group) is denied. If a user is in any group that is denied permission at 
the share level or NTFS level, they are denied for that access level. Therefore, when you 
derive the more restrictive permission, it will always be a deny for the user. A simple way to 
remember this is, a deny is a deny. 


Moving vs. Copying Folders and Files 


When you copy a file, you create a new entity. When you move a file, you simply relocate it and 
still have but one entity. This distinction is important when it comes to understanding permis- 
sions. A copy of a file will have the permissions assigned to it that are already in place at the 
new location of the file, regardless of which permissions were on the original file. 

A moved file, on the other hand, will attempt to keep the same permissions as it had 
in the original location. Differences will occur if the same permissions cannot exist in the 
new location. For example, if you are moving a file from an NTFS volume to FAT32, the 
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NTFS permissions will be lost. If, on the other hand, you are moving from a FAT32 vol- 
ume to an NTFS volume, new permissions will be added that match those for newly cre- 
ated entities. 


Folder copy and move operations follow guidelines that are similar to 


PP 
A: those with files. 


File and Folder Attributes 


Since the introduction of FAT, file and folder attributes have existed in the filesystem. The 
basic set of attributes—Read-only, Hidden, System, and Archive—can still be found in 
both FAT and NTFS and are very useful for the operating system, as explained in the fol- 
lowing list. You can view the file or folder attributes by right-clicking the file or folder and 
selecting Properties. From there, you can view the Read-only and Hidden attributes. 


Read-Only The Read-only attribute is used to make a file or folder read-only. If the Read- 
only attribute is present, regardless of the permission of the file or folder, there is a restric- 
tion of writing or deleting a file or folder. The Read-only attribute is useful for protecting 
files from being overwritten or deleted. 


Hidden The Hidden attribute makes files and folders disappear when using Windows File 
Explorer utility, using the defaults or using the dir command. The files still function and 
are still a part of the filesystem, but they just don’t appear by default. The Hidden attribute 
is useful when you want to hide a file or folder from the average user. 


System The System attribute marks file and folders as system files. When a file or folder is 
marked as system, it means the file or folder is critical. With the introduction of NTFS, the 
System attribute is not really useful anymore, but it is still there for backward compatibility. 


Archive The Archive attribute can be used to tell the system whether the file has changed 
since the last time it was backed up. Technically, it is known as the Archive Needed attri- 
bute. If this bit is on, the file or folder should be backed up. If it is not selected, a current 
version of the file is already backed up. 


Only the Read-only and Hidden attributes can be set or cleared from the 

TE GUI. The Archive attribute can be accessed from the Advanced Attributes 
dialog box. The System attribute can be set or cleared only with the 
attrib.exe command. 


Windows uses NTFS, which gives you a number of options that are not available on 
earlier filesystems, such as FAT and FAT32. A number of these options are implemented 
through the use of the Advanced Attributes dialog box, as shown in Figure 23.16. 
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FIGURE 23.16 The Advanced Attributes dialog box 
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FAT32 does not have as many options as NTFS, such as encryption and 
A TE compression. These attributes are available only on NTFS partitions. 


To reach these options in Windows, right-click the folder or file that you want to modify, 
and then select Properties from the menu. On the main Properties page of the folder or file, 
click the Advanced button in the lower-right corner. On the Advanced Attributes window, 
you have access to the following settings: 


Indexing Windows implements a feature called the Indexing Service to catalog and 
improve the search capabilities of your drive. Once files are indexed, you can search for 
them more quickly by name, date, or other attributes. Setting the index option on a folder 
causes a prompt to appear, asking whether you want the existing files in the folder to be 
indexed as well. If you choose to do this, Windows will automatically reset this attribute on 
subfolders and files. If not, only new files created in the folder will be indexed. 


Compression The versions of Windows that you need to know for the exam support 
advanced compression options, which were first introduced in Windows NT. NTFS files 
and folders can be dynamically compressed and uncompressed, often saving a great deal of 
space on the drive. As with indexing, when you turn on compression for a folder, you'll be 
prompted as to whether you want the existing files in the folder to be compressed. If you 
choose to do this, Windows automatically compresses the subfolders and files. If not, only 
new files created in the folder are compressed. 
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w Compression works best on such files as word processing documents and 
P 


uncompressed images. Microsoft Word files and Microsoft Paint bitmaps can 
be compressed up to 80 percent. Files that are already packed well do not 
compress as effectively; .exe and .zip files generally compress only about 

2 percent. Similarly, .gif and . jpeg images are already compressed (which is 
why they are used in Internet web pages), so they compress a little or not at all. 


Encryption Encryption lets you secure files so that no one else can view them. You encrypt 
files by encoding them with a key to which only you have access. This can be useful if you’re 
worried about extremely sensitive information, but in general encryption is not necessary on the 
network. NTFS local file security is usually enough to provide users with access to what they 
need and prevent others from getting to what they shouldn’t. If you want to encrypt a file, go 
through the same process that you would for indexing or compression. 


P Encryption and compression are mutually exclusive—you can set one but not 


‘Qo both features on a file or folder. Not all features are available in all editions 


of every operating system. If a user forgets their password or is unable to 
access the network to authenticate their account, they will not be able to open 
encrypted files. By default, if the user’s account is lost or deleted, the only 
other user who can decrypt the file is the Administrator account. 


Examining File Permissions 


1. 
2. 


Open Windows File Explorer. 

Right-click a file or folder and choose Properties. 

Select and then examine the Security tab. 

You'll see the users and/or groups to which permissions have been assigned. 


Select a user or group in the list, and examine the list of standard permissions. 
(To add a new user or group, click Add and follow the prompts.) 


Any standard permissions that are checked in the Allow column are applied. If a 
check box is grayed out, then the permission was inherited. 


To revoke a set of standard permissions, click the appropriate check box in the Deny 
column. 


If you click the check box in the Deny column for the Full Control permission, all other 
standard permissions are also denied. 


Click Advanced to examine advanced options. 


Click Cancel twice to close the file or folder’s properties. 
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EXERCISE 23.1 (continued) 


Be sure that you don’t accidentally make any changes that you didn’t intend to make. 
Changing permissions without understanding the ramifications can have negative conse- 
quences, such as losing access to files or folders. It is a best practice to assign Deny per- 
missions sparingly. It’s better to uncheck Allow. (You may need to turn off Inheritance.) 


Shared Files and Folders 


You can share folders, and the files beneath them, by right-clicking the files or folder and choos- 
ing Give Access To from the context menu and selecting Specific People. In Windows, the 
context menu asks you to choose with whom you want to share the folder or file, as shown in 
Figure 23.17. You can then choose whom to share it with along with their respective permis- 
sions. It is important to understand that when you use this method to share files and folders, 
the share permissions are set to Full Control for the Everyone group. The dialog box shown in 
Figure 23.17 will allow you to manipulate the NTFS permissions via the permission level. In 
addition to traditional folder sharing, you can also share folders for HomeGroups as well as 
remove sharing completely. Before Windows 10, this was called Simple File Sharing. 


FIGURE 23.17 Choose people to share with. 
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You can access the Advanced Sharing settings by right-clicking the folder to share select 
Properties, then click on the Sharing tab, and finally select Advanced Sharing, as shown 
in Figure 23.18. This file-sharing method is more traditional with network administra- 
tors because every aspect of the share can be controlled. Using this method, only the share 
permissions are set from this dialog box. The NTFS security permissions are set in the 
Security tab. In addition, you can add other share names to the same location, limit the 
number of simultaneous connections, and add comments. 


FIGURE 23.18 Advanced file and folder sharing 
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Administrative Shares vs. Local Shares 


Administrative shares are automatically created on all Windows operating systems on 
the network for administrative purposes. These shares can differ slightly based on which 
operating system is running, but they always end with a dollar sign ($) to make them 
hidden. There is one share for each volume on a hard drive (c$, d$, and so on) as well as 
admins (the root folder—usually C:\WINDOWS) and print$ (where the print drivers are 
located). These shares are created for use by administrators and usually require adminis- 
trator privileges to access. 

Local shares, as the name implies, are shares that are created locally by the administra- 
tive user on the operating system. The term local shares is used to distinguish between 
automated administrative shares and manually created shares. 
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Permission Inheritance and Permissions Propagation 


Inheritance is the default throughout the permission structure unless a specific setting is 
created to override it. A user who has Read and Write permissions in one folder will have 
them in all the subfolders unless a change has been made specifically to one of the sub- 
folders. If a user has the Write permission, which is inherited from the folder above, the 
removal of permissions cannot be performed unless inheritance is disabled. Only additional 
permissions can be added explicitly, since this is actually a new permissions entry and not 
the removal of an existing permissions entry. You can control NTFS inheritance by right- 
clicking a folder, selecting Properties, then choosing the Security tab, select Advanced, and 
finally clicking the Disable Inheritance button, as shown in Figure 23.19. 


FIGURE 23.19 Disabling inheritance 
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If the Disable Inheritance button is selected, you will be changing the NTFS security set- 
tings on the folder. A second dialog box will pop up and you must choose to either keep the 
existing permissions, by selecting Convert Inherited Permissions to Explicit Permissions on 
This Object. Or, you can choose to start fresh with no permissions by selecting Remove All 
Inherited Permissions from This Object. You should use caution when selecting the latter of 
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the two options, because all folders and files below will inherit and propagate the removal 
of existing permissions. 

If you want to make sure that inheritance and permissions for a folder is propagated to 
all files and folders below, you can use the Replace All Child Object Permission Entries 
(in Fig. 23.19) with Inheritable Permission Entries from This Object (refer to Figure 23.19). 
This option will replace every permission in this folder and all the subfolders, regardless of 
whether explicit permissions were applied further in the folder structure. 

In the Advanced Security Settings, you can also configure permissions entries that only 
apply to the current folder, current folder and files, all folders and files, as well as other 
variations of these, as shown in Figure 23.20. These settings can change the propagation of 
file permissions to folders and files. 


FIGURE 23.20 Permissions entry 
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System Files and Folders 


System files are usually flagged with the Hidden attribute, meaning they don’t appear when 
a user displays a folder listing. You should not change this attribute on a system file unless 
absolutely necessary. System files are required in order for the operating system to func- 
tion. If they are visible, users might delete them (perhaps thinking that they can clear some 
disk space by deleting files that they don’t recognize). Needless to say, that would be a bad 
thing! Most system files and folders are protected by the operating system and won’t allow 
deletion, but better safe than sorry. 
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User Authentication 


Users can log into the local operating system, if they have an account, and they will 
receive a local access token. The access token the user is granted is locally significant 
for the operating system. For example, an administrator (local) that authenticates 
against the operating system is only an administrator of that operating system and has 
no further network permissions. Every Windows operating system has a local database 
and authentication system called the Security Account Manager (SAM), as shown in 
Figure 23.21. 


FIGURE 23.21 Windows authentication 
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Active Directory simplifies the sign-on process for users and lowers the sup- 
port requirements for administrators. Access can be established through groups and 
enforced through group memberships: all users log into the Windows domain using 
their centrally created Active Directory account. It’s important to enforce password 
changes and make certain that passwords are updated throughout the organization on 
a frequent basis. 

Active Directory uses Kerberos v5. A server that runs Active Directory retains infor- 
mation about all access rights for all users and groups in the network. When a user logs 
into Active Directory, they are granted a network access token, also called a Kerberos 
token. This token can be used to authenticate against other servers and workstations in the 
domain and is accepted network (domain) wide. This token is also referred to as the user’s 
globally unique identifier (GUID). Applications that support Active Directory for authenti- 
cation can use this GUID to provide access control. 


Single Sign-On 


One of the big problems larger networks must deal with is the need for users to access 
multiple systems or applications. This may require users to remember multiple accounts 
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and passwords. An alternative to this is that the application must support Active Directory 
authentication, but that creates other considerations. 

The purpose of single sign-on (SSO) is to give users access to all the applications and 
systems that they need when they log in. Single sign-on is often used with cloud-based 
resources. The principle behind single sign-on is that the resource will trust that the user 
has already been authenticated. The authentication server performs this by sending a claim 
on behalf of the user, as shown in Figure 23.22. This claim can contain any number of 
Active Directory user attributes, such as first name, last name, email, username, just to 
name a few. It is important to understand that at no time during the authentication process 
are the username and password sent to the resource that is requesting authentication. The 
resource must trust that the user has already been authenticated and accept the claim at 
face value. 


FIGURE 23.22 _ Claims-based authentication 
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Authentication 


Single sign-on is both a blessing and a curse. It’s a blessing in that once users have been 
authenticated, they can access all the resources on the network and browse multiple folders. 
Single sign-on is a curse in that it removes the doors that otherwise exist between the user 
and various resources. 


Administrator vs. Standard User 


All end users on the network should log in with the principle of least privilege. This 
means that unless someone needs administrative privileges, they should always log in 
with a standard user account. This protects the local operating system and potentially 
the network (if domain authenticated) from security threats covered in Chapter 22. 
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User Account Control (UAC) is a feature that was introduced in Windows Vista. It 
supports the principle of least privilege by logging an administrator in with minimal per- 
missions. For example, if extra privileges were required to modify the operating system, a 
prompt asking if the user wants to continue would be displayed, as shown in Figure 23.23. 
If the user answers Yes, then the user will receive the administrative token to complete the 
task. UAC allows the user to run as a standard user with the ability to escalate privileges. 


FIGURE 23.23 UAC prompt 
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Examining a Security Token 


This exercise assumes that you have not turned off the UAC and that you are the adminis- 
trator of the operating system. 


1. Click the Start menu, type cmd, and then press Enter. 

2. Inthe command prompt, type whoami /ALL, and then press the Enter key. 
3. Record the privileges that you see in the output. 
4 


Click the Start menu and type cmd. 
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Right-click Command Prompt and select Run as Administrator. 


5 

6. Answer Yes to the UAC prompt. 

7. Inthe command prompt, type whoami /ALL, and then press the Enter key. 
8 


Compare the privileges that you see in the output. 


When you opened the first command prompt, it was opened with the standard user cre- 
dentials of your account. When you opened the second command prompt, you selected 
Run as Administrator. The second command prompt was opened with the administrative 
security token. 


BitLocker 


You have to be careful, because CompTIA sometimes refers to the utility as “bit-locker” 
or “Bitlocker,” while it is officially known as BitLocker. This tool allows you to use drive 
encryption to protect files—including those needed for startup and login. This is avail- 
able only with more complete editions of Windows 10 (Pro, Enterprise, and Education), 
Windows 8 (Pro and Enterprise), and Windows 7 (Enterprise and Ultimate). 

Another requirement is the use of a Trusted Platform Module (TPM). The TPM is a chip 
on the motherboard that safely stores the encryption key so that the key is not stored on the 
encrypted disk. BitLocker can mitigate the risk of data loss, because if the disk is separated 
from the computer, it is still encrypted and only the TPM with the encryption/decrypting 
key can decrypt the disk. This prevents out-of-band attacks on the hard drive, where it 
would be mounted and examined on a second system. BitLocker can also sense tamper- 
ing. If it senses tampering, the recovery key must be re-entered. The recovery key is either 
entered from a printout, loaded from a USB drive in which it was originally saved, or recov- 
ered from your Microsoft account. An option of how the recovery key is stored is presented 
to you when you initially turn on BitLocker. 


BitLocker to Go 


You can also protect removable drives with BitLocker to Go. It provides the same 
encryption technology BitLocker uses to help prevent unauthorized access to the files 
stored on them. You can turn on BitLocker to Go by inserting a USB drive into the 
computer and opening the BitLocker Drive Encryption Control Panel applet, as shown 
in Figure 23.24. When a USB drive is inserted into a Windows computer that contains 
BitLocker to Go encryption, the operating system prompts you for the password to 
unlock the drive. This password is the password you used originally when you set up 
BitLocker to Go on the USB drive. 
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FIGURE 23.24 BitLocker Drive Encryption applet 
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EFS 


Encrypting File System (EFS), available in most editions of Windows, allows for the 
encryption/decryption of files stored in NTFS volumes. EFS uses certificates to encrypt the 
data, and the private certificate is stored in the user profile. When the first file is encrypted, 
the operating system automatically generates a key-pair. If the computer were joined to an 
Active Directory domain and a certificate authority (CA) existed, the CA would create the 
key-pair. You can encrypt a file or folder by right-clicking the object, selecting Properties, 
then Advanced, as shown in Figure 23.25. 

All users can use EFS, whereas only administrators can turn on BitLocker. EFS does not 
require any special hardware, whereas BitLocker benefits from having the Trusted Platform 
Module (TPM). As an additional distinction, EFS can encrypt just one file, if so desired, 
whereas BitLocker encrypts the whole volume and whatever is stored on it. Finally, EFS can 
be used in conjunction with BitLocker to increase security further. 
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FIGURE 23.25 Encrypting a file in Windows 10 
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Mobile Device Security 


Apple computers have a pretty decent reputation in the industry for being somewhat 
resistant to malware. Whether or not this is because of the relatively small installed 
base or the ease with which hackers penetrate “other” operating systems, this char- 
acteristic carries over to Apple’s mobile devices. In fact, hackers don’t seem to be as 
interested in attacking the legions of mobile devices as much as they have gone after the 
Windows operating systems that drive the vast majority of laptops, desktops, and serv- 
ers in the world. Nevertheless, attacks occur. Coupled with how easy mobile devices 
are to misplace or steal, it behooves users to have proactive monitoring and contingency 
plans in place. 

The following sections detail the built-in security utilities that are common in 
today’s mobile devices. Furthermore, for threats not covered by the software with 
which the devices ship, the protection available from third-party utilities is worth 
discussing. 
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Screen Locks 


Apple and Android mobile devices include a requisite locking mechanism, which is off by 
default. The user on the go is encouraged to enable a lock. If your device acts primarily as a 
home computing device and rarely goes with you out the door, there is very little reason to 
set a lock. However, knowing how to do so is important. The following are types of locks 
that you can implement to secure your device: 


Fingerprint Lock The fingerprint lock is a biometric-type lock that uses your fingerprint 
to unlock the device. The fingerprint lock is the most secure biometric method for a device. 
The technology works by placing your finger on a touchpad sensor on the device. On Apple 
devices, the fingerprint recognition is called Touch ID. The technology works exception- 
ally well, except when your fingers are wet or extremely dirty. When your fingers are wet or 
extremely dirty, they make different prints from those you originally trained the device to 
recognize. 


Face Lock The face lock is a biometric-type lock that allows you to use your face to 
unlock your device. There are a high number of false positives that makes the face lock less 
secure than the fingerprint lock. This means that presumably someone that looks like you 
could unlock your phone. Almost all mobile devices have a front-facing camera, allowing 
you to instantly know that you’ve unlocked the phone seamlessly by looking at your phone. 
On Apple devices, this technology is called Face ID. 


Swipe Lock The swipe lock is a type of passcode that allows you to unlock your device. 
Swipe lock works by displaying nine dots in a matrix of 3 x 3. You then swipe with your 
finger with the registered pattern to unlock the phone. The swipe lock is the least secure 
of any locking methods. A grease trail from your fingers can allow someone to derive the 
swipe pattern. 


Passcode Lock The passcode lock is by far the most common way to unlock devices. It is 
typically a 4- or 6 digit-numeric passcode. However, it can also be alphanumeric, depend- 
ing on the device. Passcode locks suffer from the same problems that passwords are prone 
to: People can shoulder surf or learn your passcode over time. 


Exercise 23.3 outlines the steps for creating a code for your iPhone. 


Setting the Passcode Lock on an iPhone 
1. Tap Settings. 


2. Depending on the iOS version, select either Face ID & Passcode or Touch ID & 
Passcode. 


3. Tap Turn Passcode On. 
4. Enter in a six-digit passcode. 


If you want to use a four-digit passcode, tap Passcode Options to switch to a four- 
digit numeric code or a custom alphanumeric passcode. 
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5. Enter the passcode a second time, to confirm. Doing so sets the passcode. 


Optionally, you can set the amount of time that must pass while the phone is asleep 
before the passcode will be required and whether the Erase Data feature should be 
enabled. Setting the Required Passcode field to Immediately requires entering the 
passcode each time the device wakes up. 


The same general concept for Android phones is presented in Exercise 23.4: 


Setting the Passcode Lock on an Android Phone 
Depending on the Android version, these steps might differ. 

1. Swipe up on the home screen. 

Tap the Settings app. 

Select Lock Screen and Security from the Settings menu. 

Tap Screen Lock Type from the Lock Screen and Security menu. 


Select Pattern from the Phone Security list. 


ona fF WY DN 


Use your finger to draw a continuous pattern of four or more dots, and then tap the 
Continue button. 


7. Repeat the same pattern, and then tap the Confirm button. 


8. Optionally, tap Secure Lock Settings to lock the phone automatically and adjust the 
number of wrong swipes before a factory reset occurs. 


Remote Wipes and Locator Applications 


Should your work or personal mobile device disappear or fall into the wrong hands, it’s 
always nice to have a backup plan to ensure that no company secrets or personal identi- 
fiers get misused by anyone who would use the information with ill will. Apple supplies a 
free app called Find My iPhone that, together with iCloud, allows multiple mobile devices 
and Macs to be located if powered on and connected to the Internet (via cellular, Wi-Fi, 
Ethernet, and so on). The app allows the device to be controlled remotely to lock it, play a 
sound (even if audio is off), display a message, or wipe it clean. 

Within a newer iPhone’s Settings screen, you can find an iCloud settings page and select 
the Find My iPhone switch. If this switch is off, the Find My iPhone app and iCloud web 
page will be unable to find your device. 

On the login screen for the iPhone app, you must enter the iCloud account information 
that includes the device you are attempting to control remotely. 
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Note that when you change the password for your Apple ID, it affects your iCloud 
account but does not transfer automatically within your device. Always remember to 
update your iCloud account information on each device when you update the associated 
Apple ID. 


PP Although iCloud has its own settings page, you can also create an iCloud 
A: account—or change the settings—by choosing Settings > Passwords and 
Accounts. 


The iCloud website’s login page (https://www. icloud. com) calls for the same creden- 
tials as the app. You are signing in with HTTPS, so your username and password are not 
traversing the Internet in the clear. With the switch in the iCloud settings screen set to Off 
for all devices on your account, when you sign in to the app with your iCloud account 
credentials, you are met with a disabling switch message. 

You do not need to go to the website if you have another device with the Find My iPhone 
app or borrow one from someone else. The device forgets your credentials when you log 
out, so the owner will not be able to control your device the next time they use the app. 

After logging into the iCloud website, you can click the icon that matches the icon for 
the Find My iPhone app in iOS. Assuming that you’ve made it into the app on another 
device and your Find My iPhone feature is enabled on your missing device, the Info screen 
tells you that your device has been found and gives you options for the next step you take. 

Tapping the Location button in the upper left shows you a map of where your device is 
currently located. You have three options for how to view the location: a two-dimensional 
map, a satellite map, and a hybrid version, where the two-dimensional street-name infor- 
mation is laid over the satellite view. 

If you tap the Play Sound or Send Message button on the Info screen, instead of the 
Location button, the screen that pops up allows you to display a message remotely. You 
might consider first displaying a message without the sound, which is at maximum volume. 
Ask in the message to be called at another number. If you hear from someone in possession 
of your device, the hunt is over. Otherwise, send another message with the tone to get the 
attention of the nearest person. If you are at the reported location when you generate the 
sound, it can help you home in on the device. 

If you do decide to use the remote-lock feature of the app, you’ll have the opportunity 
to reconsider before locking it. You should have no issue with locking the device. Doing 
so does not prevent you from using the app further; it simply makes sure that the device is 
harder to break into. 

Should you decide to take the sobering step of destroying the contents of the device 
remotely, you get a solemn notice allowing you the opportunity to reassess the situation 
before proceeding. Sometimes there’s just no other option. 

For Android devices, Google’s Find My Device app performs many of the same 
functions as Apple’s Find My iPhone app, including playing your ring tone for five 
minutes. When you search Google’s web page for “find my device,” a map will display 
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the location of your device. Clicking the location will reveal the SSID the phone is con- 
nected to, the phone’s battery level, and when the phone was last in use at that location. 
You can then choose to play a sound (ring tone), secure the device, or erase the device. 
Securing the device will lock the phone and sign you out of your Google account. This 
option can also allow you to display a message on the lock screen. Erasing the device 

is the last step when you know it cannot be recovered and you want to be assured your 
data is removed. 








a Real World Scenario 
Uh-Oh. Where's My Phone? 


After a recent visit to a car dealership, a prospective new car owner named Jimmy 
departed without his iPhone—at least, that’s where Find My iPhone said it was. Luckily, 
Jimmy had the foresight to set up his free iCloud account and log that phone into it. Upon 
his return to the dealership, Jimmy was temporarily disheartened to find that no one had 
seen his phone. 


It occurred to him that he had laid his phone down on the counter in the men’s room as he 
was washing his hands. He didn’t recall having it after that point. A cursory look around 
the facilities turned up nothing. The app was not accurate enough to tell him where 
exactly the phone was at the time it was located on the Find My iPhone website, which he 
checked from home. However, the app did indicate that the iPhone was still somewhere 
at the dealership. 


Jimmy noticed that the salesperson assisting him had an iPhone, so he asked her if she 
also used the Find My iPhone app. She did. He asked if he could borrow her phone for a 
brief instant. She obliged, and Jimmy entered his iCloud credentials into the salesper- 
son’s app and then entered the message, “I’m in the showroom.” He left the Play Sound 
switch on and tapped the Send button. 


In less than five minutes, a manager that had been back at the loading dock came to the 
showroom with a story. He said he heard a disturbing noise coming from the dumpster, 
which was quite full and scheduled to be picked up the next morning. The trash bag con- 
taining Jimmy’s phone was conveniently right at the top of the heap and easily retrieved 
by the manager. 


Jimmy recalled being in a bit of a fluster as he left the men’s room. He was about to final- 
ize the terms of the deal he had been working on for more than an hour. In his haste to 
get back to the table, apparently his phone slipped from his hand as he was disposing of 
the paper towels he used to dry his hands. So, the cliché “All's well that ends well” has a 
shred of truth. Jimmy owed this happy ending to the features of the Find My iPhone app 
and tells his story to anyone who will listen. 
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Remote Backup 


Apple iOS devices automatically back themselves up either to a computer running iTunes 
that they sync with or to the iCloud account associated with the device. When a mobile 
device is connected to a computer containing iTunes, the process of backup is called 
synchronization. iCloud Backup is the most common method of backing up Apple iOS 
devices, since no computer is necessary. iCloud does require a Wi-Fi connection or cell 
service. To enable iCloud Backup, navigate to Settings, then tap your name, tap iCloud, 
and finally tap iCloud Backup. You can create an immediate backup by tapping Back Up 
Now, or you can wait until the next backup interval. 

The Android operating system will automatically synchronize the device to Google 
Drive. Android phones require a Google account during setup. This account is the account 
that will synchronize to Google Drive. Google Drive is Google’s cloud-based storage prod- 
uct. The backup service will back up Wi-Fi passwords, phone logs, app settings, contacts, 
messages, pictures, and other related files. A multitude of third-party backup apps can be 
downloaded from Google’s Play Store. Each third-party app offers different features over 
and above the built-in backup service functionality, such as the capability to remove the 
bloatware apps that come with the phone. 


Both Apple iCloud and Google Drive services allot you a certain amount of 

~<a storage when you sign up for free. The limited cloud storage used for back- 
ups of your settings and data is adequate for most people. However, you 
can always purchase more storage from Apple and Google. 


Failed Login Attempts Restrictions 


After you’ve set a screen lock, an optional step is to set the device to wipe, or factory reset, 
after a number of failed attempts. This option will wipe local data on the device if incorrect 
passcodes are entered 10 times in a row, or perform a factory reset depending on the device. 
While this is recommended for users with devices that contain sensitive data and that are 
frequently taken into public venues or placed in compromising positions, the casual user 
should not turn this feature on unless they can be sure that a recent backup will always be 
available in iTunes or Google. 

Imagine a user’s child or a mischievous, yet harmless, friend poking away at passcodes until 
the device informs them that it is being wiped clean; it’s not for everyone. Restoring from a 
backup is easy enough, but will a recent backup be available when disaster strikes? Apple per- 
forms a backup to the iCloud or the computer running iTunes that the iOS device syncs with. 

Apple imposes cooling-off time-out periods of increasing duration, even if the Erase 
Data feature is disabled and you or someone else repeatedly enters the wrong code over 
multiple lockouts. The final penalty with the Erase Data feature disabled is that you cannot 
unlock the device until it is connected to the computer with which it was last synced. 

When a passcode is set, Android devices have a similar approach to failed login attempts 
as their Apple counterparts. A factory reset will occur after 10 failed attempts. 
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The difference is that if waiting the time-out period won’t help because you’ve forgotten 
the pattern or code, this device can tie your access back to the Google account you used 
when setting it up. This is also the account where you receive purchase notifications from 
Google Play, and it does not have to be a Gmail account (one of the benefits of the open- 
source nature of Android). If you remember how to log into that account, you can still get 
into your phone. Or at least you can investigate the credentials to that account on a stan- 
dard computer and return to the device to enter those credentials. 


Viruses and Malware on Mobile Devices 


For the most part, mobile devices have been left alone with viruses and malware, as com- 
pared with the Windows platform. However, this is not a reason to let your guard down 
and not worry about viruses and malware on mobile devices. Mobile devices can contract a 
viruses and malware through the installation of a malicious app. 

Most malware installed on mobile devices will spam your device with ads from the Internet. 
However, some malware can expose your personal information and even allow your device to 
become under the control of a malicious individual. Viruses, on the other hand, will use your 
email application to send copies of itself or turn your device into a zombie. 

The extent of the damage from malware or a virus is hard to estimate, but one thing 
is for sure: Protection goes a long way. Antivirus and anti-malware software should be 
installed on your mobile device to thwart malicious attempts to infiltrate your device. All 
the leading vendors, such as AVG, Norton, and Avast (just to name a few), have offerings of 
antivirus and anti-malware. Most installs of these apps are free, and other services or fea- 
tures can be purchased within the apps. 


Trusted Sources vs. Untrusted Sources 


You can limit your exposure to malicious apps by only installing apps from trusted sources, 
such as the Apple’s App Store or Google Play. In most cases, the mobile operating sys- 

tem must specifically be configured to accept installations from untrusted sources. So, 

it’s not likely that you will mistakenly install an app from an untrusted source. Examples 
of untrusted sources include manual installs of Android .apk (Android Package Kit) or 
untrusted Apple .ipa (IOS App Store Package) files. These files can be distributed outside 
of the Google Play and Apple’s App Store ecosystems. When files are distributed outside of 
these ecosystems, they are to be considered untrusted. 


Operating System Updates 


It’s easy to forget that these tiny yet powerful mobile devices we’ve been talking about are 
running operating systems that play the same role as the operating systems of their larger 
brethren. As such, users must be careful not to let the operating systems go too long with- 
out updates. Occasionally, mobile devices will notify the user of an important update to 
the operating system. Too often, however, these notifications never come. Therefore, users 
should develop the habit of checking for updates on a regular basis. 
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Not keeping up with software updates creates an environment of known weaknesses and 
unfixed bugs. Mobile devices operate on a very tight tolerance of hardware and software 
performance. Not maintaining the device for performance at the top of its game will tend 
to have more pronounced repercussions than those seen in larger systems. 

For the iPhone, iPod Touch, and iPad, you can check for the most important level of 
updates by tapping Settings > General > Software Update. For the Android operating 
system, there are multiple updates that can be checked for manually. All of them are 
accessible by following Menu > Settings > System Updates. 


Full Device Encryption 


As discussed previously, BitLocker and BitLocker to Go greatly enhance security by 
encrypting the data on drives (installed and removable, respectively) and helping to secure 
it from prying eyes. At a minimum, the same level of protection that you would apply to a 
desktop machine should be applied to a mobile device, as it can contain confidential and 
personally identifiable information (PII), which could cause great harm in the wrong hands. 

Full device encryption should be done on laptops and mobile devices, and you should 
back up regularly to be able to access a version of your files should something happen to 
the device itself. When full device encryption is turned on, both the device and the external 
storage (SD card) are encrypted. The only way to view the information on the SD card is 
from the encrypting mobile device. 


Android devices do not automatically turn on device encryption and 
P encrypt files upon setting a passcode on the device, like iOS devices. 


Multifactor Authentication 


Multifactor authentication, mentioned previously in Chapter 22, involves using more 
than one item (factor) to authenticate. An example of this would be configuring a 
BitLocker to Go-encrypted flash drive so that when it is inserted into your laptop, 

a password and smart card value must be given before the data is decrypted and 
available. 


Authenticator Applications 


An authenticator app works with mobile devices to generate security codes that can keep 
accounts secure by requiring 2 factor authentication (2FA). Once this is setup, your account 
will require a code from the app in addition to your account password. Authenticator appli- 
cations are available for download with Apple, Android, and other mobile device operating 
systems, as well as desktop operating system. An account is usually added to the authen- 
ticator application by entering a secret key or scanning a QR barcode; this creates the 
account in the authenticator application. Several different authenticator apps can be down- 
loaded; they vary depending on the mobile operating system. 
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Firewalls 


Mobile devices have the same inherit vulnerabilities as desktop operating systems. 
However, mobile devices are generally not targeted the same as desktop operating systems. 
When a mobile device starts up, it is configured with an IP address via either the internal 
cellular radio or the Wi-Fi radio, so the device can be exploited via the network. Therefore, 
a firewall should be installed and turned on to protect the mobile device. 

However, inbound communication is not the only aspect of security you need to 
be concerned about on mobile devices. Outbound communication also is a primary 
concern. A mobile device firewall app will allow you to monitor both the inbound 
and outbound communications on your mobile device. Several third-party firewall 
apps (both free and for purchase) can be downloaded from either Apple’s App Store 
or Google Play. 


Policies and Procedures 


With the explosive growth of mobile devices in the workplace, there are many different 
policies and procedures that may be required for your organization to minimize data loss. 
This section focuses on the policies and procedures specific to mobile devices that you may 
have in your organization. 

As employees are hired in your organization, a certain amount of initial interaction 
with the information technology (IT) is required. This interaction, called the onboarding 
procedure, is often coordinated with the Human Resources (HR) department. During the 
onboarding procedure, the IT representative will help the user log in for the first time and 
set their password. The password policy is often the first policy discussed with the user. 
Other policies—such as bring your own device (BYOD), acceptable use policy (AUP), and 
information assurance—should also be discussed during the onboarding procedure. The 
use of email and file storage and policies should also be covered with the user during the 
onboarding process. Each organization will have a different set of criteria that make up 
the onboarding procedures. 

Eventually, employees will leave your organization. The offboarding procedure ensures 
that information access is terminated when the employment of the user is terminated. The 
offboarding procedure will be initiated by the HR department and should be immediately 
performed by the IT department. This process can be automated via the organization’s 
employee-management system. This procedure can also be performed manually if the 
employee-management system is not automated. However, the procedure must be per- 
formed promptly, since the access to the company’s information systems is the responsibil- 
ity of the IT department. 

During the offboarding procedure, email access is removed via the mobile device management 
(MDM) software, the user account is disabled, and IT should make sure that the user is 
not connected to the IT systems remotely. The off-boarding procedure may also specify 
that the user assume ownership of the terminated employee’s voicemail, email, and files. 
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BYOD vs. Corporate-Owned 


The traditional workforce is becoming a mobile workforce, with employees working from 
home, on the go, and in the office. These employees use laptops, tablets, and smartphones 
to connect their companies’ cloud resources. Organizations have embraced BYOD initia- 
tives as a strategy to alleviate the capital expense of equipment, by allowing employees to 
use devices they already own. 

Because employees are supplying their own devices, a formal document called the 
BYOD policy should be drafted. The BYOD policy defines a set of minimum requirements 
for the devices, such as size and type, operating system, connectivity, antivirus, patches, 
and many other requirements the organization will deem necessary, as well as the level of 
service your IT department will support for personally owned equipment. 

Many organizations use MDM software, which helps enforce the requirements for the 
BYOD policy. MDM software helps organizations protect their data on devices that are 
personally owned by the employees. When employees are terminated or a device is lost, 
the MDM software allows a secure remote wipe of the company’s data on the device. 

The MDM software can also set policies requiring passwords on the device. All of these 
requirements should be defined in the organization’s BYOD policy. 

Corporate-owned mobile devices are also of paramount concern when it comes to secu- 
rity. The equipment is mobile, so these devices sometimes travel and can disappear com- 
pletely. Luckily, MDM software allows you to not only control the data on these devices, 
but in many instances even track it via a built-in Global Positioning System (GPS) sensor (if 
the device supports this functionality). When MDM software is implemented in the capac- 
ity of tracing assets, consideration must be given to privacy. Although it may be acceptable 
to track a corporate-owned mobile device, the end user must be made aware of this policy. 


Profile Security Requirements 


When you implement an MDM solution to manage mobile devices, part of your imple- 
mentation is the creation of profile security requirements for the mobile devices you will 
manage. The profile security requirements allow the management of the mobile devices 

in a uniform fashion. As an administrator, you can choose settings for mobile devices 
under your purview and enforce profiles security requirements in various ways. In a given 
scenario, you may want to enforce settings for the entire organization, whereas in other 
scenarios you may want to differ the settings based on organizational unit, role, or other 
group type. Among the settings you may want to enforce are those requiring the encryption 
of drives and the use of complex passwords. 


Summary 


In this chapter, you learned some best practices related to operating system security. We 
then focused on Windows operating system security settings, such as sensitive accounts and 
filesystem permissions. We concluded with mobile device security for both Apple i-devices 
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and Google Android. The mobile device operating systems are changing rapidly, as both 
consumer and enterprise needs change. However, the objectives on the A+ 220-1002 exam 
are general enough that a mastery of them will enable you to secure a mobile device today 
and into the future. 

Security, as you’ve already guessed, is a large part of the CompTIA A+ certification. 
CompTIA expects everyone who is A+ certified to understand security-related best prac- 
tices and be able to secure both Windows operating systems and mobile devices. 


Exam Essentials 


Know the various best practices to securing operating systems. You should know how 

to implement security best practices, such as the use of secure passwords (including 

length, complexity, and frequency of change). You should also know the various settings 
for account management that strengthen security, such as time restrictions, failed login 
attempts, and screensaver passwords. In addition, you should know the various methods to 
strengthen security, such as disabling autorun, encrypting data, and keeping the operating 
system up-to-date. 


Understand Windows operating system security concepts. You should be able to compare 
and contrast Microsoft Windows operating system security settings. This should include 
knowing the various accounts that are created by default and why you need to disable or 
rename these accounts. You should also have an in-depth understanding of NTFS permis- 
sions and share permissions, and their interaction to form the effective permissions the user 
has when accessing a share remotely. In addition, you should have a good understanding of 
authentication and the options to encrypt both the operating system and removable drives. 


Understand mobile device security concepts. You should understand how screen locks 
operate. Why we need remote wipe in the event of a device is missing or lost. Understand 
the risks of viruses and malware on mobile devices, as well as measures that can be taken 
to mitigate these risks. In addition, you should have a good understanding of the impor- 
tance of full device encryption, authentication applications, firewalls, and policies that sur- 
round mobile devices. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. Which policy would you create to define the minimum specification if an employee wanted 
to use their own device for email? 


A. MDM 
B. AUP 
C. BYOD 
D. NDA 


2. Which term refers to copying data between a mobile device and a computer system in order 
to mirror such things as contacts, programs, pictures, and music? 


A. Calibration 
B. Remote wipe 
C. Pairing 
D. Synchronization 
3. You want to follow the rules of good security administration as set by CompTIA and ven- 


dors. To do so, which account should be disabled on most Windows operating systems for 
security reasons? 


A. Guest 
B. Print Operators 
C. Power Users 
D. Userone 
4. What kind of mobile app is being used when the owner’s phone displays a message on the 
screen and emits an extremely loud tone? 
A. Failed login restriction 
B. Antivirus 
C. Locator 
D. Remote wipe 
5. Asa best practice, after a set period of inactivity on a Windows workstation, what should 
happen? 
A. The system should shut down. 
B. The system should restart. 
C. A password-enabled screensaver should automatically start. 


D. The system should log out the user. 


10. 


11. 
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A new app developed for the Android platform has which extension? 


A. .sdk 
B. .apk 
C. .ipa 
D. .exe 


Which of the following has the goal of allowing a username/password combination to be 
entered once, and then allowing claims to be used for consecutive logins? (Choose the best 
answer.) 


A. Tokens 
B. Kerberos 
C. Single sign-on 


D. Multifactor authentication 


Which of the following passwords is a secure password? (Choose the best answer.) 

A. serverpasswordOne 

B. $erVer1 

C. *erverP%ssw#rd 

D. serverpassword1 

What should be implemented to mitigate the risk of a password from being shoulder surfed 
or keylogged? 

A. Antivirus 

B. Privacy screens 

C. Password complexity 

D. Password expiration 

What is a best practice for mitigating the risk of a contractor account that is forgotten 
about? (Choose the best answer.) 

A. Time restrictions 

B. Password complexity 

C. Account expiration 

D. Password expiration 

Your boss is concerned that USB drives could infect the workstation. What can you do to 
mitigate this risk? 

A. Install current updates to the operating system. 

B. Disable autorun for all media. 

C. Enable BitLocker. 

D. Enable BitLocker to Go. 


1278 Chapter 23 = Securing Operating Systems 


12. What is normally performed when an employee is offboarded? 
A. Their user account is deleted. 
B. Their user account is unlocked. 
C. Their user account is created. 
D. Their user account’s password is reset. 
13. By default, when setting up an Android device, what is the relevance to the Google account 
required? 
A. The device requires email setup. 
B. The account is used for cloud synchronizations. 
C. The account is used for desktop backups. 
D. The device requires registration. 
14. You need to secure your mobile device’s lock screen with the highest level of protection. 
Which of the following should you use? (Choose the best answer.) 
A. Fingerprint lock 
B. Face lock 
C. Passcode lock 
D. Swipe lock 


15. You need to encrypt a single file on a Windows Desktop. Which technology should you use? 
A. EFS 
B. BitLocker 
C. NTFS 
D. BitLocker to Go 

16. A user is in both the Sales group and the Marketing group. The Sales group has full permis- 
sion at the share level, and the Marketing group has read-only permissions. The files on 


NTFS are secured with the Modify permission for the Sales group and the Read & Execute 
permission for the Marketing group. Which permissions with the user have? 


A. Full 

B. Modify 

C. Read-only 

D. Read & Execute 


17. 


18. 


19. 


20. 
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James just moved a folder on the same partition. What will happen with the permissions for 
the folder? 


A. The permissions will be the same as they were before the move. 

B. The permissions will be inherited from the new parent folder. 

C. The permissions will be configured as the root folder for the drive letter. 

D. The permissions will be blank until configured. 

A user is in the Sales group. The Sales group has no permissions at the share level. The files 


on NTFS are secured with the Modify permission for the Sales group. What permissions 
with the user have? 


A. The user will have the Modify permission when connecting from the network. 

B. The user will have the Modify permission when logged in locally to the computer. 

C. The user will have no access when logged in locally to the computer. 

D. The user will have read-only permissions when connecting from the network. 

You are trying to delete a file on the local filesystem, but the operating system will not let 
you. What could be the problem? (Choose the best answer.) 

A. The NTFS Modify permission is applied to the file. 

B. The share permissions are not set to Full Control. 

C. The file attributes are set to Read-only. 

D. The file attributes are set to System. 

You need to enforce profile security requirements on mobile devices. Which should you use 
to achieve this goal? 

A. AUP 

B. NDA 
C. BYOD 
D. MDM 
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Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 

exam require you to perform a specific task, and you will be graded on whether you were 
able to complete the task. The following requires you to think creatively in order to mea- 
sure how well you understand this chapter’s topics. You may or may not see similar ques- 
tions on the actual A+ exams. To see how your answers compare to the authors’, refer to 

Appendix B. 

You have been asked to create a working structure for your organization’s network. You 
have three groups, Sales, Marketing, and R&D. You need to set up a network share and 
NTFS to allow: Sales to access Marketing material but not modify it in any way. R&D 
must be able to write to marketing files and read sales information. Marketing must only 
have read access to R&D and sales. Each group should have the Modify permission to their 
respective folder. All permissions should be controlled with share permissions. How will 
you set up the folders for access, NTFS permissions, and share permissions? 
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THE FOLLOWING COMPTIA A+ 220-1002 
EXAM OBJECTIVES ARE COVERED IN 
THIS CHAPTER: 


y 3.1 Given a scenario, troubleshoot Microsoft Windows 
OS problems. 


=» Common symptoms: Slow performance, Limited 
connectivity, Failure to boot, No OS found, Application 
crashes, Blue screens, Black screens, Printing issues, 
Services fail to start, Slow bootup, Slow profile load 


a» Common solutions: Defragment the hard drive, Reboot, Kill 
tasks, Restart services, Update network settings, Reimage/ 
reload OS, Roll back updates, Roll back devices drivers, 
Apply updates, Repair application, Update boot order, 
Disable Windows services/applications, Disable application 
startup, Safe boot, Rebuild Windows profiles 


vZ 3.2 Given a scenario, troubleshoot and resolve PC 
security issues. 


= Common symptoms: Pop-ups, Browser redirection, Security 

alerts, Slow performance, Internet connectivity issues, PC/ 
OS lockup, Application crash, OS updates failures, Rogue 
antivirus, Spam, Renamed system files, Disappearing files, 
File permission changes, Hijacked email (Responses from 
users regarding email), (Automated replies from unknown 
sent email), Access denied, Invalid certificate (trusted root 
CA), System/application log errors 


y 3.3 Given a scenario, use best practice procedures for 
malware removal. 


a 
= 


. Identify and research malware symptoms. 
2. Quarantine the infected systems. 
a 3. Disable System Restore (in Windows). 
4. Remediate the infected systems. 
= a. Update the anti-malware software. 


= b. Scan and use removal techniques (safe mode, 
pre-installation environment). 


= 5. Schedule scans and run updates. 


= 6. Enable System Restore and create a restore point 
(in Windows). 


= 7. Educate the end user. 


vy 3.4 Given a scenario, troubleshoot mobile OS and 
application issues. 


a Common symptoms: Dim display, Intermittent wireless, 
No wireless connectivity, No Bluetooth connectivity, Cannot 
broadcast to external monitor, Touch screen non-responsive, 
Apps not loading, Slow performance, Unable to decrypt 
email, Extremely short battery life, Overheating, Frozen 
system, No sound from speakers, Inaccurate touch screen 
response, System lockout, App log errors 


y 3.5 Given a scenario, troubleshoot mobile OS and 
application security issues. 


= Common symptoms: Signal drop/weak signal, Power 
drain, Slow data speeds, Unintended WiFi connection, 
Unintended Bluetooth pairing, Leaked personal files/data, 
Data transmission over limit, Unauthorized account access, 
Unauthorized location tracking, Unauthorized camera/ 
microphone activation, High resource utilization 





Troubleshooting is a major responsibility of an A+ techni- 
cian’s daily job. It may not be as glamorous as we'd like it 
to be, but it does make up a good percentage of our daily 
workload. Applying a systematic approach to software troubleshooting is the key to 
solving all problems. A systematic solution also works well in preventing problems in 
the first place. 

Many of the common software problems that you will expend time solving can be pre- 
vented with proper preventive maintenance. Preventive maintenance tends to get neglected 
at many companies because technicians are too busy fixing problems. Spending some 
time on keeping those problems from occurring in the first place is a good investment of 
resources. 

In Chapter 13, “Troubleshooting Methodology and Resolving Core Hardware 
Problems,” you learned how to apply troubleshooting procedures to hardware problems. 
In this chapter, we will look at applying the same troubleshooting methodology to com- 
mon software problems. We will also apply similar troubleshooting to security issues. 
First, we’ll look at some of the common symptoms of problems and their associated solu- 
tions. We will then follow up with ways to deal with security-related issues and prevent 
them in the future. 





Troubleshooting Microsoft 
Windows OS Problems 


Windows is mind-bogglingly complex. Other operating systems are complex too, but the 
mere fact that the Windows operating system has nearly 60 million lines of code (and thou- 
sands of developers worked on it!) makes you pause and shake your head. 

Fortunately, you just need to take a systematic approach to solving software-related 
issues. The steps you learned in Chapter 13 are still relevant to software issues. 

Windows-based issues can be grouped into several categories based on their cause, 
such as boot problems, missing files (such as system files), configuration files, and virtual 
memory. If you’re troubleshooting a boot problem, it’s imperative that you understand the 
Windows boot process. Some common Windows problems don’t fall into any category 
other than “common Windows problems.” We cover those in the following sections, 
followed by a discussion of the tools that can be used to fix them. 
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Common Symptoms 


There are numerous “common symptoms” that CompTIA asks you be familiar with for the 
exam. They range from the dreaded Blue Screen of Death (BSOD) to spontaneous restarts 
and everything in between. They are discussed here in the order in which they appear in the 
objective list. 


Slow Performance 


The performance of your systems will inevitably slow down over time. This could be due 
to a multitude of causes, ranging from bad Windows Update patches to malware. Slow per- 
formance is one of the hardest problems to solve on a Windows operating system, because 
many of the symptoms are related to each other. 

The first step to solving the problem is identifying the component that is impacted by 
the performance issue. The following is a list of critical components that can be affected by 
slow performance: 


CPU A symptom of poor CPU performance is the slow execution of applications. The 
operating system GUI will be unresponsive and sluggish. You may also hear your CPU fan 
is running higher than normal, if overheating starts to occur. CPU problems can be caused 
by an application that requires high CPU usage, such as movie rendering. 


RAM A symptom of the operating system running out of RAM is high disk activity. As 
physical memory is used up, the less active pages of memory are swapped out to the hard 
disk drive (HDD). The symptoms of performance will closely resemble CPU-related issues, 
where applications are slow in loading. RAM problems can be caused by too many appli- 
cations being open at once or an application that has high RAM requirements, such as a 
database. 


Disk A symptom of poor hard disk drive performance is the thrashing of the drive heads 
on the platters of the drive. Thrashing occurs when there is excessive movement of the drive 
arm to locate information on the drive. Disk problems can be caused by excessive fragmen- 
tation, high RAM usage, or a high volume of drive usage by applications, such as a video 
capture. 


Network Symptoms of poor network performance are slow loading web pages, network 
applications that load slowly, and even timeouts. If you are using wireless, network issues 
can be caused by poor signal strength. If you are connected through Ethernet, poor net- 
work performance can be directly related to the local area network (LAN). The problems 
can also be outside of your network. 


Graphics Symptoms of poor graphics (GPU) performance are usually related to slow-run- 
ning video games and playback of videos. The frames per seconds (FPS) will be excessively 
low as the computer tries to render the screen. It is not common to have graphics-related 
issues unless you just downloaded the latest shoot-em-up game. Graphics-related problems 
are usually the hardest to solve because they require third-party tools by the graphics card 
vendor. 
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As you can see from the list of possibly affected components, many of the symptoms are 
closely related, such as RAM, CPU, and disk. The excessive usage of RAM can create per- 
formance symptoms with your hard disk drive. If left for a long period of time, these can 
both lead to an increase in CPU activity. 

There are several tools that you can use to identify the problem area, so that you can 
focus your attention closer to narrow down the problem. The first tool you should start up 
is the Task Manager, as shown in Figure 24.1. You can launch Task Manger several differ- 
ent ways, such as right-clicking the Start menu and selecting Task Manager, right-clicking 
the taskbar and selecting Task Manager, or (my personal favorite) pressing Ctrl+Shift+Esc 
at the same time. The Performance tab will show you four of the five critical areas (detailed 
previously) on the left side. In this example, you can see that the processor is spiked out at 
almost 100% and all other systems are within tolerance. 


FIGURE 24.1 The Performance tab in Task Manager 
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Now that you’ve isolated the problem to the critical area of CPU, you can narrow it 
down further by looking at the Processes tab, as shown in Figure 24.2. You can see that 
VMware Tools Core Service is using 40.3% of the CPU. The other 59.7% is most likely dis- 
tributed among other processes. By clicking the core area headings of CPU, Memory, Disk, 
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and Network, you can sort usage from high to low or from low to high. In this particular 
instance, the operating system was caught booting up, so that particular process was dis- 
playing high CPU. 


FIGURE 24.2 The Processes tab in Task Manager 
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Starting in Windows 8, the Task Manager gained a few tabs. One tab 

TE in particular is called Details. The Details tab allows you to see the 
details of the processes, such as the user that executed the process, the 
process ID (PID), and the name of the process executable. You can sort 
by any of the headings by clicking them, as shown in Figure 24.3, just 
like the Processes tab. You can even right-click the headings and add 
columns, such as peak memory usage and the exact command line, just 
to name a few. 


FIG 


URE 24.3 
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The Details tab in Task Manager 
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Using Resource Monitor, you can get a much more detailed view than what is displayed 
in Task Manager. You can open Resource Monitor with the shortcut on the lower left 


of the Performance tab in Task Manager, as shown in Figure 24.4. This tool allows you 
to read real-time performance data on every process on the operating system. Resource 


Monitor also allows you to sort details, the same as Task Manager. You can click each 
critical area and drill down to the performance issue. 


A unique feature of Resource Monitor is the visualization of data. When you select a 


process on the upper view, Resource Monitor automatically filters the activity of the critical 
area, as shown in Figure 24.5. As you can see in this example, the Edge browser processes 
have been selected and then the Network tab can be chosen to display the network activity 
and connections. The result is the isolation of network activity for this process. This can be 


done for any of the critical areas. 
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FIGURE 24.4 Resource Monitor 
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FIGURE 24.5 Selective isolation in Resource Monitor 
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Now that you’ve isolated the problem to an action or process in the operating system, 
you need to do the following: 


a Formulate a theory of probable cause. 
= Test the theory to determine the cause. 
a Establish a plan of action to resolve the problem and implement the solution. 


= Verify the full-system functionality and, if applicable, implement preventative 
measures. 


= Document findings, actions, and outcomes. 


If this all sounds familiar, these are the steps from Chapter 13. The theory of probable 
cause may be a hardware upgrade is required due to a new version of the application that 
demands more resources. Or it could be as simple as the job the application is running is 
higher than normal in load. Remember to question the obvious and do the simple things, 
such as rebooting, to see if the problem goes away. It is often joked about that problems 
always go away after a reboot. It’s not too far from the truth. Sometimes a process is hung 
up and is affecting another process. A reboot sometimes fixes them both and the symptoms 
go away. More likely than not, the problem will still be there. This is where you need to 
start testing your theory of probable cause to determine the cause. 

You might find that after running a large query the hard drive is extremely stressed. 
Your action plan might be to upgrade the hard drive or move the workload to a faster 
machine. In either case, you need to verify that the process for the user is functioning the 
way they expect it to. 

If you determine that it’s a certain report in the database, educate the user that the 
report takes time and maybe schedule it when the computer is not immediately needed. Or 
schedule the system for an upgrade of hardware to prevent these problems in the future. 

Ultimately, you should document your finding so that other technicians do not waste 
time with the same issue. The more intricate the problem, the more time that is wasted 
when you forget you’ve solved it already but don’t remember the answer. Always docu- 
ment the actions taken, such as upgrades or changes to the process for the user. You should 
also note the outcomes of whether it was successful or showed no immediate performance 
increase, so that if another technician is working on the same or similar issue, they can 
gauge if the solution is effective. 


Limited Connectivity 


When you have limited connectivity issues, the Windows operating system will display a 
yellow triangle on the icon for the network in the lower-right corner of the screen. If you 
hover over the network icon, it will display the error of No Internet Access. Clicking the 
icon will bring up the wireless connectivity settings, as shown in Figure 24.6. Here, a wire- 
less icon is displayed, but limited connectivity such as this is not exclusive to wireless con- 
nections. Limited connectivity problems can also happen with wired Ethernet connections, 
although the icon will be different to reflect the connection. 
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FIGURE 24.6 No Internet access 
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Let’s look deeper at what is happening in the operating system to make the connectivity 
status work the way it does. 


1. When a connection (either wireless or wired) is detected, the built-in firewall will try to 
set the location by asking the default gateway for its MAC address. 


2. After a network location is established, the firewall will then check to see if the 
Internet is accessible via the Network Connection Status Indicator (NCSI). 


3. It performs this check by sending a simple web request to http: //www.msftncsi.com/ 
ncsi.txt. 


Troubleshooting Microsoft Windows OS Problems 1291 


4. Ifthe text Microsoft NCSI is received back, then you have Internet connectivity. If the 
text does not come back, you have limited connectivity. 


This means that although you have a network connection or wireless association, you 
do not have Internet access. 


PP The Network Connection Status Indicator (NCSI) can also detect cap- 
‘Qo tive portals. During the process of Internet connectivity, if something is 
received in lieu of the text Microsoft NCSI, this means you are behind a 
captive portal. You will be prompted to click a balloon that pops up by the 
network icon. This will take you to the captive portal page. Depending on 
the version of Windows, the web browser may automatically start and take 
you to the login page for the captive portal. 


The first step to solving this problem is to identify the problem. When you see the No 
Internet access message in the notifications area, it’s because you have a network connec- 
tion, but you don’t have a connection to the public Internet. The first thing you should do 
is sketch out the network, as shown in Figure 24.7. Here, you can see the laptop on which 
the message was received. First, identify whether you are actually connected to the local 
network. You can do this by opening a command prompt and typing ipconfig, as shown 
in Figure 24.8. After identifying the network connection, verify that a valid IP address 
is configured on the interface. Also verify that a correct default gateway is configured. 
Remember, the problem could be as simple as the user connected to the wrong network 
security set identifier (SSID). 


FIGURE 24.7 Diagram of the problem network 
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Assuming the problem is not simple, you can use the information to fill out your net- 
work map that will be used to identify the problem, as shown in Figure 24.9. Put as much 
detail as possible on this drawing. You should also add the information for a known con- 
nected host so that you have something to test against. Don’t worry about neatness; just 
make sure that you understand the drawing. An issue can even be scratched out on a piece 
of lined notepad. The goal is to have something you can use to visualize the problem. 


))))))) 
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FIGURE 24.8 Output of the ipconfig command 
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FIGURE 24.9 Diagram with details of the problem 
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Now you can use the ping command to check the local host by pinging the IP address 
of 192.168.8.100 and checking for a reply, as shown in Figure 24.10. If that succeeds, then 
ping the router (default gateway) at the IP address of 192.168.8.1. If that succeeds, 
then ping the known good host at the IP address of 192.168.8.101. If everything suc- 
ceeds, then you can conclude that you are connected to the local network. 
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FIGURE 24.10 Testing connectivity with the ping command 
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The next step is to ping a host on the Internet that is known to respond to ping. You should, 
however, do this by its IP address, to avoid name resolution problems. The Google DNS address 
of 8.8.8.8 can be used as a test, since it’s easy to remember. If the test fails, the problem may 
be your router or external to your network. Don’t discount testing from a known good host. If 
that host fails a simple ping to the Internet, then the problem is bigger than one host. 

The idea of this example is to show you how to systematically collect information to 
begin solving the problem of limited connectivity. There can be many different causes. The 
following are some common causes you should be aware of: 


Wrong SSID The problem client may be connected to the wrong SSID. Connecting to 
the wrong SSID would place the client in possibly the wrong network, and it may not have 
access to the Internet. 
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Static IP Address Configured A static IP address may be configured that is preventing the 
client from communicating on the local network and the Internet. 


Internet Router Problems If all clients are having issues getting to the Internet, then the 
Internet router may be at fault. It can sometimes be a firewall rule for outbound traffic. 
Comparing the nonworking host to a working host can help diagnose this cause. 


External Internet Problems Tools such as ping and tracert can help to verify a prob- 
lem on the external network. These tools were covered in Chapter 16, “Operating System 
Administration.” 


DNS Resolution Problems Name resolution can sometimes be the cause of limited con- 
nectivity issues. You need DNS to resolve fully qualified domain names (FQDNs) to IP 
addresses. The nslookup tool can be used to test name resolution. 


Third-Party Software Third-party software, such as antivirus and anti-malware prod- 
ucts, has been known to interfere with network connectivity. These programs should be 
temporally disabled to see if the symptoms go away. If they do, then the vendor should be 
contacted for support of the product. 


Failure to Boot 


With the introduction of Windows Vista, the boot process had changed from prior oper- 
ating systems of Windows XP, 2000, and NT 4.0. We’ve used this current boot process 
introduced with Windows Vista, all the way to today with Windows 10. The current boot 
process allows for the adoption of UEFI firmware. 

In order to troubleshoot a failure to boot, you need to understand the complete boot 
process, starting with either the BIOS or UEFI. The process will be slightly different 
depending on which firmware you have on the motherboard. However, the outcome is 
the same: The hardware hands control over to the operating system so that the operating 
system can boot. 


BIOS Legacy BIOS systems perform a power on self-test (POST), and then the BIOS 
bootstrap routine looks at the master boot record (MBR) at the beginning of the disk. The 
MBR then reads the boot sector on the first primary partition found. This boot sector then 
instructs the bootmgr to load. 


UEFI UEFI firmware will perform a similar power on self-test (POST). Then the UEFI 
bootstrap begins by loading drivers for the hardware. One of the differences is that UEFI 
can contain drivers that allow it to boot across a network or other non-standard devices. 
Just like the legacy BIOS, the UEFI firmware looks at the MBR in the GUID Partition Table 
(GPT). The GPT defines a globally unique identifier (GUID) that points to a partition con- 
taining the BOOTMGR. Therefore, UEFI firmware requires a partitioning scheme of GPT 
and cannot use the standard MBR partitioning scheme. 


The initial boot sequence from hardware control to software control is almost identi- 
cal between BIOS and UEFI firmware. UEFI firmware does give you many more options, 
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because UEFI drivers can be loaded before control is handed over to the software. This 
allows UEFI to treat all locations containing an operating system the same. Up to the point 
the hardware hands control over to the software, there is no difference between a network 
boot and a hardware boot. 

After control is handed over to the software, several files are used to complete the oper- 
ating system bootup. The most important files are as follows: 


Windows Boot Manager The Windows Boot Manager (BOOTMGR) bootstraps the system. 
In other words, this file starts the loading of an operating system on the computer. 


BCD The Boot Configuration Data (BCD) holds information about operating systems 
installed on the computer, such as the location of the operating system files. 


winload.exe Winload.exe is the program used to boot Windows. It loads the operating 
system kernel (ntoskrnl.exe). 


winresume.exe If the system is not starting fresh but resuming a previous session, then 
winresume.exe is called by the BOOTMGR. 


ntoskrnl.exe The Windows OS kernel is the heart of the operating system. The kernel 
is responsible for allowing applications shared access to the hardware through drivers. 


ntbtlog.txt The Windows boot log stores a log of boot-time events. It is not enabled 
by default. 


System Files In addition to the previously listed files, Windows needs a number of files 
from its system folders (for example, SYSTEM and SYSTEM32), such as the hardware abstrac- 
tion layer (hal.d11), the session manager (smss.exe), the user session (winlogon.exe), and 
the security subsystem (lsass.exe). 


Numerous other dynamic link library (DLL) files are also required, but usually the lack 
or corruption of one of them produces a noncritical error, whereas the absence of hal. dll 
causes the system to be nonfunctional. 

We’ll now look at the complete Windows boot process. It’s a long and complicated pro- 
cess, but keep in mind that these are complex operating systems, providing you with a lot 
more functionality than older versions of Windows: 


1. The system self-checks and enumerates hardware resources. Each machine has a dif- 
ferent startup routine, called the POST (power-on self-test), which is executed by 
the commands written to the motherboard of the computer. Newer PnP boards not 
only check memory and processors, but also poll the systems for other devices and 
peripherals. 


2. The master boot record (MBR) loads and finds the boot sector. Once the system has 
finished its housekeeping, the MBR is located on the first hard drive and loaded into 
memory. The MBR finds the bootable partition and searches it for the boot sector of 
that partition. 
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3. The MBR determines the filesystem and loads the BOOTMGR. Information in the boot 
sector allows the system to locate the system partition and to find and load into mem- 
ory the file located there. 


4. The BOOTMGR reads the boot configuration data (BCD) to get a list of boot options for 
the next step. The BCD contains multi-boot information or options on how the boot 
process should continue. 


5. The BOOTMGR then executes winload.exe. This switches the system from real mode 
(which lacks multitasking, memory protection, and those things that make Windows 
so great) to protected mode (which offers memory protection, multitasking, and so 
on) and enables paging. Protected mode enables the system to address all the available 
physical memory. 


6. If Windows is returning from a hibernated (suspended) state, winresume. exe is respon- 
sible for reading the hiberfil.sys file into memory and passes control to the kernel 
after this file is loaded. 


7. The OS kernel loads the executive subsystems. Executive subsystems are software com- 
ponents that parse the Registry for configuration information and start needed services 
and drivers. 


8. The HKEY_LOCAL_MACHINE\SYSTEM Registry hive and device drivers are loaded. The 
drivers that load at this time serve as boot drivers, using an initial value called a start 
value. 


9. Control is passed to the kernel, which initializes loaded drivers. The kernel loads the 
Session Manager, which then loads the Windows subsystem and completes the boot 
process. 


10. Winlogon.exe loads. At this point, you are presented with the login screen. After you 
enter a username and password, you’re taken to the Windows Desktop. 


Now that you understand the boot process, let’s look at how you can collect information 
to identify the problem. We’ll consider this in two parts: hardware and software. The hard- 
ware process begins with the POST, and the software portion of the bootstrap begins with 
the BOOTMGR. 

You can collect information from the BIOS/UEFI firmware boot with third-party system 
event log (SEL) viewers. However, it is very unlikely that you have a failure to boot because 
of a BIOS/UEFI firmware issue. It’s not impossible, but it is highly unlikely. 

To collect information on the software portion of the boot process loads, you can use 
boot logging. The ntbtlog.txt file is located at the base of the C:\Windows folder, as 
shown in Figure 24.11. Boot logging is off by default and needs to be turned on. To enable 
boot logging, issue the command bcdedit /set {current} bootlog Yes. You can also use 
the System Configuration utility (msconfig.exe), by selecting the Boot Log option from the 
Boot tab, as shown in Figure 24.12. Because the BCD is read by the BOOTMGR, this point 
of the boot process is where logging would begin and the first entries would be the loading 
of the kernel. 
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FIGURE 24.11 Thentbtlog.txt file 





| ntbtlog - Notepad = o x 


File Edit Format View Help 

Microsoft (R) Windows (R) Version 10.0 (Build 17134) a 
11 21 2018 14:37:08.500 

BOOTLOG_LOADED \SystemRoot\system32\ntoskrnl.exe 

BOOTLOG_ LOADED \SystemRoot\system32\hal.d1l1 

BOOTLOG_LOADED \SystemRoot\system32\kd.d11l 

BOOTLOG_LOADED \SystemRoot\system32\mcupdate_AuthenticAMD.d1l 
BOOTLOG_LOADED \SystemRoot\System32\drivers\msrpc.sys 
BOOTLOG_LOADED \SystemRoot\System32\drivers\ksecdd.sys 
BOOTLOG_LOADED \SystemRoot\System32\drivers\werkernel.sys 
BOOTLOG_LOADED \SystemRoot\System32\drivers\CLFS.SYS 
BOOTLOG_LOADED \SystemRoot\System32\drivers\tm. sys 
BOOTLOG_LOADED \SystemRoot\system32\PSHED.d1l 

BOOTLOG_LOADED \SystemRoot\system32\BOOTVID.d1l 

BOOTLOG_LOADED \SystemRoot\System32\drivers\FLTMGR.SYS 
BOOTLOG_LOADED \SystemRoot\System32\drivers\clipsp.sys 
BOOTLOG_LOADED \SystemRoot\System32\drivers\cmimcext.sys 
BOOTLOG_LOADED \SystemRoot\System32\drivers\ntosext.sys 
BOOTLOG_LOADED \SystemRoot\system32\CI.d11l 

BOOTLOG_LOADED \SystemRoot\System32\drivers\cng.sys 
BOOTLOG_LOADED \SystemRoot\system32\drivers\Wdf01000. sys 
BOOTLOG_LOADED \SystemRoot\system32\drivers\WDFLDR. SYS 
BOOTLOG_LOADED \SystemRoot\system32\drivers\WppRecorder.sys 
BOOTLOG_LOADED \SystemRoot\system32\drivers\SleepStudyHelper.sys 
BOOTLOG_LOADED \SystemRoot\System32\Drivers\acpiex.sys 
BOOTLOG_LOADED \SystemRoot\system32\drivers\mssecflt.sys 
BOOTLOG_LOADED \SystemRoot\system32\drivers\SgrmAgent.sys 
BOOTLOG_LOADED \SystemRoot\System32\drivers\ACPI.sys 
BOOTLOG_LOADED \SystemRoot\System32\drivers\WMILIB.SYS 
BOOTLOG_LOADED \SystemRoot\system32\drivers\wd\WdBoot.sys 
BOOTLOG_LOADED \SystemRoot\System32\drivers\intelpep. sys 
BOOTLOG_LOADED \SystemRoot\system32\drivers\WindowsTrustedRT.sys 
BOOTLOG_LOADED \SystemRoot\System32\drivers\WindowsTrustedRTProxy.sys 
BOOTLOG_LOADED \SystemRoot\System32\drivers\pcw.sys 
BOOTLOG_LOADED \SystemRoot\System32\drivers\msisadrv.sys 
BOOTLOG_LOADED \SystemRoot\System32\drivers\pci.sys 
BOOTLOG_LOADED \SystemRoot\System32\drivers\vdrvroot. sys 








FIGURE 24.12 System Configuration options for boot logging 
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Windows 10 (C:\Windows) : Current OS; Default OS 
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Chances are, if you’re having trouble booting into Windows, you won’t be able to access 
the command prompt to issue bcdedit commands, nor will you able to access msconfig.exe. 
Not to worry. You can still access logging by allowing the operating system to fail two times 
in a row. The third time, the computer will boot into the recovery console. From there, click 
Troubleshooting > Advanced Options > See More Recovery Options > Startup Settings > 
Restart. When the computer restarts, it will boot into the Startup Settings menu, as shown in 
Figure 24.13. Of course, you won’t be able to boot the computer to retrieve the files, but you 
can use the command prompt in the Windows Recovery Environment. 


FIGURE 24.13 Startup Settings menu 


Startup Settings 


Press a number to choose from the options below: 


Use numbe! or functions keys F1-F9. 


1) Enable debugging 

2) Enable boot logging 

3) Enable low-resolution video 

4) Enable Safe Mode 

5) Enable Safe Mode with Networking 

6) Enable Safe Mode with Command Prompt 
7) Disable driver signature enforcement 

8) Disable early launch anti-malware protection 
9) Disable automatic restart after failure 


Press F10 for more options 
Press Enter to return to your operating system 





The idea is to collect information to identify the problem and, above all, to fix the 
problem. Sometimes you need to let Windows repair itself. The Windows Recovery 
Environment contains a Startup Repair option. Using the Startup Repair option is similar 
to issuing bootrec /REBUILDBCD at the command prompt, which will rebuild the BCD. 

If that fails, the ultimate solution might be to use the Reset This PC option in the Windows 
Recovery Environment or to install the operating system from scratch. 








Operating System Not Found 


When it’s reported that an operating system is missing, the first thing to check is that no 
media is in the machine (DVD, CD, and so on). The system may be reading this media during 
boot before accessing the hard drive. If that is the case, remove the media and reboot. (Down 
the road, change the BIOS/UEFI settings to boot from the hard drive before any other media.) 
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Application Crashes 


When an application crashes, you want to isolate the cause of the crash and solve it. 
The cause could be a compatibility issue, a hardware issue, or a host of other prob- 
lems. One step to take early on is to look for updates/patches/fixes to the application 
released by the vendor. Be sure to try these updates on a test machine before rolling 
them out to all machines, and verify that they address the problem and not introduce 
new problems. 

One tool that is extremely helpful in identifying software problems is Reliability 
Monitor, as shown in Figure 24.14. Reliability Monitor allows you to see application 
crashes and the times and dates they occurred. It also allows you to see which updates were 
installed before and after the crashes. Reliability Monitor allows you to narrow down if 
other software is causing the issues and what led up to the crashes. 


FIGURE 24.14 Windows Reliability Monitor 





© Reliability Monitor 


4 > ControlPanel > System and Security > Security and Maintenance > Reliability Monitor v © | Search Control Panel 


Review your computer's reliability and problem history 
The stability index assesses your system's overall stability on a scale from 1 to 10. By selecting a specific period in time, you may review the specific hardware and software problems that have impacted your system, 


View by: Days | Weeks 
10) 


Last updated: 11/21/2018 5:00 PM 





p | Application failures 
Windows failures 
| Miscellaneous failures 
Warnings 


(O | (J © © iy 0 ci) | Information 








o o © [J o ọ [i] o o ọ CJ 


m J 7 7 7 3 7 7 } 7 
CN taa N aa “oy, "ey, “yy, Ve, on ey, 
Reliability details for: 11/13/2018 
Source Summary Date Action A 
Å Wamings a 
E]Adobe Acrobat Reader DC Unsuccessful application reconfiguration 11/13/201810:22PM_ View technical d. 
@ informational events (45) > 
E] Definition Update for Windows De.. Successful Windows Update 11/13/2018839PM_ View technical d. 
[Adobe Acrobat Reader DC Successful application update 11/13/201810:22PM_ View technical d. 


E]Adobe Acrobat Reader DC Successful application reconfiguration  11/13/201810:22PM_ View technical d. 
]Microsoft Excel MUI (English) 2016 Successful application reconfiguration  11/13/201811:02PM_ View technical d... 





J Microsoft Excel MUI (English) 2016 Successful application update 11/13/2018 11:02PM View technical d... 
[E] Microsoft PowerPoint MUI (Englis.. Successful application reconfiguration  11/13/201811:02PM_ View technical d.. 
E Microsoft PowerPoint MUI (Englis... Successful application update 11/13/201811:02PM__ View technical d... 
E Microsoft Office Professional Plus... Successful application reconfiguration  11/13/201811:11PM_ View technical du. 
[E_] Microsoft Office Professional Plus... Successful application update 11/13/2018 11:11PM_——_View technical d. 
[©] Microsoft Word MUI (English) 2016 Successful application update 11/13/2018 11:11PM View technical d. 
[=] Microsoft Word MUI (English) 2016 Successful application reconfiguration  11/13/201811:11PM_ View technical d. 
(Security Update for Microsoft Exce... Successful Windows Update 11/13/2018 11:11 PM View technical d. 
E Microsoft Office Professional Plus... Successful application update 11/13/2018 11:11 PM View technical d... 


[E] Microsoft Office Professional Plus... Successful application reconfiguration 11/13/2018 11:11PM _—_—_View technical d... 








Gy Save reliability history... View all problem reports 





K 








In addition to Reliability Monitor, you can also access the Windows event logs in 
Event Viewer for information about Microsoft-based application problems, as shown 
in Figure 24.15. All third-party vendors should log errors to the Windows event logs, 
but generally you will only find Microsoft products using these logs. In either case, you 
might find more information about why an application is crashing by looking at the 
Application log. 
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FIGURE 24.15 Windows event logs in Event Viewer 
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& Application = Open Saved Log... 
& security Al | Create Custom Vie... 
E Setup To view events that have occurred on your computer, select the appropriate source, log or custom view node in the console eet cry 
[E] System tree. The Administrative Events custom view contains all the administrative events, regardless of source. An aggregate view of 
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Windows Logs\System N/A 11/14/2018 11:2250AM_ 5/28/2018 6:06:58 PM 

Windows Logs\Applicati... N/A 11/16/2018 3:23:40 PM 5/28/2018 6:06:59 PM 

Windows Logs\Security N/A 11/14/2018 11:13:40 AM = 5/28/2018 6:06:59 PM 

bes Suey, i 

Log Name Size (Curr... Modified Enabled Retention Policy a 
Application 8.07 MB/2... 11/16/2018 3:23:40 PM Enabled Overwrite events as nec... 

Hardware Events 68 KB/20... 5/28/2018 6:15:19 PM Enabled Overwrite events as nec... 

Internet Explorer 68 KB/1.0... 5/28/2018 6:15:19 PM Enabled Overwrite events as nec... 


68 KB/20... 
1.00 MB/1... 


5/28/2018 6:15:19 PM 
11/14/2018 1:25:10 PM 


Enabled 
Enabled 


Overwrite events as nec... 
Overwrite events as nec... v 


Key Management Service 
Microsoft Office Alerts 


























Blue Screen of Death 


The Blue Screen of Death (BSOD)—not a technical term, by the way—is another way of 
describing the blue-screen error condition that occurs when Windows fails to boot properly 
or quits unexpectedly, as shown in Figure 24.16. If this happens during a boot, it is at this 
stage that the device drivers for the various pieces of hardware are installed/loaded. If your 
Windows GUI fails to start properly, more likely than not the problem is related to a mis- 
configured driver or misconfigured hardware. 

You can try a few things if you believe that a driver is causing the problem. One is to 
try booting Windows into Safe Mode, which you can access via the Startup Settings in the 
Windows Recovery Environment. In Safe Mode, Windows loads only basic drivers, such as 
a standard VGA video driver and the keyboard and mouse. After you’ve booted into Safe 
Mode, you can uninstall the driver that you think is causing the problem. 

Another option is to boot into the Windows Recovery Environment and use System 
Restore, which will revert the system drivers back to the state they were in when the restore 
point was created. Bear in mind that a System Restore will not affect personal files, but it 
will remove applications, updates, and drivers. 

In Windows 7 and prior operating systems, you can enter into the Advanced Boot 
Options during system startup with the F8 command. The Advanced Boot Options menu 
contains an option called Last Known Good Configuration. This option will allow you 
to boot to the last time you had successfully started up and logged in. This option was 
removed in Windows 8/8.1 and Windows 10. You should now be using System Restore. 
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FIGURE 24.16 Blue Screen of Death 





Black Screen 


A black screen is a common problem when the operating system resolution is higher than 

the monitor can handle. This can happen if you have replaced the original monitor with 

a new monitor. Windows might not recognize the various resolution modes that the new 

monitor can display. If you are using Windows 8/8.1 or Windows 10 and this happens, 

it’s advisable to reconnect the original monitor and lower the resolution. Windows 8/8.1 

and Windows 10 do not have a key sequence to enter the Windows Recovery Environment 

during boot up. You can always boot up the Windows Recovery Environment from a USB 
drive or DVD and enter Startup Settings from there. 
If your screen has gone black and nothing has changed, perform the following steps: 

1. Check all your physical connections to make sure that nothing has come loose or dis- 
connected. 

2. If everything is connected, the first troubleshooting step is to press the Windows 
key+Shift+Ctrl+B at the same time. This key sequence will send a wake signal to the 
display. 

3. If that key sequence does not work, then pressing Ctrl+Alt+Delete and signing out or 
rebooting is the next step to take. 


4. If none of the preceding tricks work, it’s time to hard power the system down by press- 
ing the power button for 5 to 10 seconds. 
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If the screen is a second screen or a projector, the video card driver might not be sending 
a signal to the device. The second screen’s mode can be selected with the following steps: 


1. Start by duplicating the primary screen to the secondary device by pressing the 
Windows key+P. 


A pop-out menu will appear from the right side of the screen, as shown in Figure 24.17. 


FIGURE 24.17 Secondary screen settings 


PROJECT 


(AE cee en 


EALA ees 
EADY sven 


(Wa! Second screen oni 





Eis O Type here to search 


Cycle through the options with the same key combination. 


If the key combination does not work, ensure that the proper driver for multiple dis- 
plays is loaded. 


Printing Issues 


Outside of the printer problems you learned about in Chapter 14, “Hardware and Network 
Troubleshooting,” printers should just print from the aspect of the operating system. 
Unfortunately, printing issues at the software level are very common and sometimes diffi- 
cult to fix. Again, collecting the information to identify the problem is the first step to solv- 
ing the problem with printing in the operating system. 

The first step is to check the most obvious stuff, such as: 
a Is the printer on? 


a Is anything unplugged? 


Troubleshooting Microsoft Windows OS Problems 


= Are there errors on the printer? 


=a ‘Toner out 
= Paper out 
a Offline 


= Does the operating system see the printer? 
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Assuming the problem isn’t something as simple as being out of paper, the next step is to 
send a test page with the Printers & Scanners settings app, as shown in Figure 24.18. You 
can view the status of the printers installed on the operating system. To print a test page, 
select the printer and choose Manage. 


FIGURE 24.18 Printers & Scanners 
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Remove device 


Find and manage devices 


If you've installed a new printer or 
scanner, but can't get it to work, try 
searching the Internet for device 
drivers. 


Get help with your printer 


Related settings 


Print server properties 


Have a question? 
Get help 


Make Windows better 
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If the test page prints, then the problem might be the application printing to the printer. 


A common problem with applications (such as Word) is that they expect a specific paper 


size when printing a document, and the document might be misconfigured for the wrong 


paper size. 


If a simple test fails, such as sending a test page, then the driver might need to be 
upgraded or reinstalled. Record the information about the printer, such as model and 


accessories, and visit the vendor’s website to download the latest driver. You should also 
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check to see if newer firmware exists for the printer. If so, follow the vendor’s directions for 
installation. 

The Print Management MMC is a second way to manage printers. It provides detailed 
information, such as the printer driver version, as shown in Figure 24.19. To open the Print 
Management MMC, click the Start menu, type Administrative Tools, and then select Print 
Management from the results. The Print Management MMC allows you to manage printers 
on the local computer as well as remote servers. You can perform all the same functionality 
in the MMC as you would in the Settings app. 


FIGURE 24.19 Print Management MMC 
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Services Fail to Start 


A service’s failure to start is directly related either to another application installed with 
conflicting resources or to a misconfiguration of the service. In either case, the first place to 
start is the Event Viewer, as shown in Figure 24.20. The System log will display an Event 
ID of 7000 from the source of the Service Control Manager. The reason for the failure will 
vary, depending on the problem. 

If a service is conflicting with another resource, we recommend that you reinstall the 
software that installed the service that is failing. Although this might break the conflicting 
application, it is probably the quickest way to find a conflicting resource. 

If the service fails to start because of a misconfiguration, the most likely cause is the 
user account the service is configured to start with. If a misconfigured user account 
is the problem, you will see an Event ID of 7000 in Event Viewer, and the description 
will read that the service failed due to a login failure. You can verify the user con- 
figured to start the service in the Services properties, as shown in Figure 24.21. You 
open the properties of the service by right-clicking the Start Menu, selecting Computer 
Management, then Services, right-clicking the service, selecting Properties, and finally 
the Log On tab. 
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FIGURE 24.20 Service Control Manager events 
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FIGURE 24.21 


Services properties 
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Make sure that the password for the user account has not changed and the user account 
is not locked out. You can manually reset the password for the user and re-enter the 
password in the Services properties. Also make sure that the account has the Log on as a 
Service right. 








A Real World Scenario 


Did You Reboot Your Computer? 


Quick quiz: You just got an error in Windows, and it appears that you are on the verge of a 
crash (of your application or the whole system). What do you do? 


The first thing is to write down any error messages that appear. Then save your work (if 
possible) and reboot your computer. 


Anyone who has called tech support, or who has been a tech support person, knows 
how demeaning the question, “Did you restart your computer?” can seem. Most people 
respond with an indignant, “Of course!” In reality, they might or might not have actually 
done it. 


Whenever there’s a software problem, always, always reboot the computer before trying 
to troubleshoot. Often, the problem will disappear, and you'll have just saved yourself 
half an hour of frustration. If the same problem reappears, then you know that you have 
work to do. 


Why does rebooting help? When an application is running, it creates one or more tempo- 
rary files that it uses to store information. It also stores information in memory (RAM). If a 
temporary file or information in RAM becomes corrupted (such as by application A writ- 
ing its information into application B’s memory space), the original application can have 
problems. Rebooting will clear the memory registers and most often remove problematic 
temporary files, thus eliminating the issue. 


It might sound trite, but the first axiom in troubleshooting software really is to reboot. 
Even if the user says they did, ask them to reboot again. (Tell them you want to see the 
opening screen for any possible error messages, or make up another good excuse.) If the 
problem doesn’t come back, it’s not a problem. If it does, then you can use your software 
skills to fix it. 





Slow Bootup 


Performance problems at bootup can be identified with methods detailed earlier in this 
chapter. By enabling boot logging and examining the ntbtlog. txt file, you can identify 
what is slowing down bootup performance. 
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You can also use the System Configuration (msconfig.exe) utility to identify slow 
bootup problems. By selecting the Selective Startup option in the System Configuration util- 
ity, you can choose not to start system services and load startup items; only critical services 
will load, as shown in Figure 24.22. After choosing Selective Startup and applying it, you 
can switch to the Services tab to see the services that won’t be started on the next reboot, 
as shown in Figure 24.23. 


FIGURE 24.22 Selective Startup selection 
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FIGURE 24.23 Selective Services 
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Using the process of elimination, you can add services back and reboot to time performance 
of bootup, which will allow you to identify the bootup slowdown. Usually Microsoft services 
will not slow down the boot process. Third-party services—usually antivirus or anti-malware 
software—will most likely be the culprits. 


Slow-Loading Profiles 


A local profile is a group of settings for the user as well as their personal files. Local profiles 
can be slow to load because of items set to start, when the profile is loaded. You can use 
Task Manager to selectively disable startup items, as shown in Figure 24.24. By the process 
of elimination and after several logouts and logins, you can narrow down the performance 
problem caused by slow-loading local profiles. 


FIGURE 24.24 Startup items in Task Manager 





{5 Task Manager = o x 
File Options View 
Processes Performance App history Startup Users Details Services 
Name Publisher Status Startup impact 

@ Microsoft OneDrive Microsoft Corporation Enabled High 

@ VMware Tools Core Service VMware, Inc. Enabled High 

EH Windows Defender notificati.. Microsoft Corporation Enabled Medium 

Fewer details Disable 








Typically discuss slow-loading profiles in respect to network-based roaming profiles, 
not local profiles. The fundamental difference is that local profiles don’t need to traverse a 
network during login. Roaming profiles, on the other hand, need to traverse the network 
during login (load from the server) and logout (write back to the server). 

There are some things you can do to alleviate the stress on the network and speed up 
the load time of network profiles. For example, you can save space by deleting temporary 
Internet files in both Edge and Internet Explorer. You can also save a tremendous amount 
of space—sometimes gigabytes—by deleting downloaded files. 


Common Solutions 


Now that we’ve covered some common symptoms to Microsoft Windows OS problems, 
let’s look at some common solutions that you can implement to solve problems. 
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Defragmenting the Hard Drive 


Workstations with a conventional magnetic hard disk drive (HDD) eventually slow down 
because the filesystem is fragmented. Defragmenting the hard drive can speed up perfor- 
mance because the head needs to travel less to read the data. The defragmentation tool 
speeds up drive access by rewriting files, so the data appears contiguously on the drive 
platters. 

Starting with Windows 8, the operating system automatically defragments the disks. 
It is set to run on a weekly schedule, as shown in Figure 24.25. To change the schedule, 
click the Start menu, type defrag, and then select Defragmentation and Optimize Drives. 
Click Change Settings to change the frequency and to select the drives to defragment. 


You can manually run a defragmentation on a drive by selecting the drive and clicking 
Optimize. 


FIGURE 24.25 Optimize Drives utility 





B) Optimize Drives = x 


You can optimize your drives to help your computer run more efficiently, or analyze them to find out if they need to be 
optimized. Only drives on or connected to your computer are shown. 


Status 














Drive Media type Last run Current status 
Hard disk drive 11/21/2018 6:42PM OK (0% fragmented) 
= Storage (D:) Hard disk drive 11/21/2018 7:15PM OK (0% fragmented) 
wa Fast VM Storage (E:) Solid state drive 10/28/2018 11:21 A... OK (24 days since last run) 
Analyze Optimize 


Scheduled optimization 


On Change settings 
Drives are being optimized automatically. 


Frequency: Weekly 


Close 





Although deleting files on the operating system will not defragment the hard drive, it 
will help speed up defragmentation. You should always run the Disk Cleanup utility prior 
to a disk defragmentation (optimization of drives) so that the defragmentation utility has 
free space for the defragmentation process. The Disk Cleanup utility allows you to delete 
temporary Internet files and other unneeded files. 
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Disk Cleanup is a utility that can be used to free up space on the 

OTE operating system, by deleting temporary files, thumbnails, and 
temporary Internet files, just to name a few. You can access Disk 
Utility by clicking the Start menu, typing Disk Cleanup, and then 
selecting it from the results. You can also right-click a root drive, 
like the C: drive, under This PC, choose Properties, and then click 
Disk Cleanup on the General tab. 


Rebooting 


Rebooting a system often takes care of problems, for a multitude of reasons. One of the top 
reasons is that it allows the operating system to terminate hung processes gracefully. After 
the operating system reboots, the processes are normally restarted. An added bonus is that 
only the applications the user requires are re-launched. The goal is to fix the user’s problem 
with minimal disruption. A reboot can’t be done every time, especially if the user could lose 
work as a result. 

Depending on the circumstance, when reproducing a problem, one of the first things 
to do is reboot. It serves an important purpose of isolating the problem so that you can 
reproduce it. For example, if you’ve isolated the problem to Excel not scrolling properly 
when a web browser is open, you should reboot and try to replicate the problem. If you 
discover the reboot fixed the problem, then you’ve solved the problem. However, if the 
problem still exists, you’ve now isolated the problem further by eliminating other pro- 
grams that could have been hung in the background affecting this problem. The steps 
of rebooting and then opening Excel can also be used to verify when you’ve solved the 
problem. 


Killing Processes 


Depending on the situation, sometimes a process must be terminated because it is frozen 
and non-responsive. Terminating a process should be considered a last resort because the 
potential for loss of work is high, especially if it’s a Microsoft Office application. Killing 
the process of Excel with a spreadsheet that hasn’t been saved will certainly lose work. 
However, if Excel is non-responsive, then it is also causing a work stoppage and is equally 
disruptive. As a technician, you must evaluate when loss of work due to force closing the 
application with unsaved work is necessary. It’s a tough position to be in, but over your 
career you will find yourself in that very position. 

You can kill processes in the GUI through either Task Manager or Resource Manager. 
In Task Manager, simply right-click the process and select End Task, as shown in 
Figure 24.26. In Resource Manager, you can use the same process to kill a process. In 
Exercise 24.1 you’ll get some practice killing processes through the GUI. 
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FIGURE 24.26 Killing a non-responsive process 
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You can also kill processes at the command prompt with the taskkill.exe utility. You 
can kill processes either with the process name using the /IM switch or by the process ID 
(PID). For example, if you wanted to kill all Notepad processes on the operating system, 
you would use taskkill /IM notepad*. You can also use tasklist.exe to see if the pro- 
cess was terminated. A useful feature of the taskkill utility is its ability to remotely kill a 
process. You can use the /S switch to specify the destination system. For example, to kill 
Notepad on client1, you would use the command taskkill /S client1 /IM notepad*. 
Tasklist is a utility to view running tasks. You can use it with the /S switch to verify that 
a process was killed remotely. 


Killing Processes 
1. Open Task Manager by pressing Ctrl+Shift+Esc. 


2. Click the Details tab and then the heading Name (this will sort the column). 
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EXERCISE 24.1 (continued) 


Verify that there is no entry for Notepad. exe. 


“no GO PF Ww 


Restarting Services 


Services normally don’t need to be restarted. On occasion, however, a change is made 

that requires a service be restarted to reflect. Services should be restarted if they crash, of 
course. Although this is rare, it still happens from time to time. If a service crashes, you can 
restart the service in the Computer Management MMC by selecting Services, then right- 
click Service and choose Start, as shown in Figure 24.7. You can use the same method to 


restart a running service. 


Click the Start menu and type Notepad. 


Select Notepad from the results. 


Notice that the Notepad instance you opened is now closed. 


FIGURE 24.27 Manually starting a service 
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Right-click the entry for Notepad.exe in the Name column, and then select End Task. 
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Services can be configured to automatically start in the event of failure on the Recovery 
tab of the Services properties, as shown in Figure 24.28. For example, by default the Print 
Spooler service is set to restart on the first and second failure, but after that it will remain 
stopped. The reset counter can be set for a number of days, and the service can be started 
after a specific number of minutes after its failure. You can even have the computer restart 
or run a program in the event a service fails. 


FIGURE 24.28 Service recovery 
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Updating Network Settings 


When you experience network-related issues with a Windows operating system, the first 
step to diagnosing the problem is to view the network settings. You can view the current 
network settings by opening a command prompt, typing ipconfig /ALL, and recording 
the settings, as shown in Figure 24.29. You can also obtain similar information by right- 
clicking the Start menu, then Network Connections, then clicking View Your Network 
properties. 
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FIGURE 24.29 Output from ipconfig /ALL 


EW C:\Windows\system32\cmd.exe 








You can tell a lot from the information that ipconfig /ALL provides. For example, you 
can see the DNS suffix that will be appended to client DNS requests. You can also see that 
the IP address was derived from a DHCP server and the DHCP server the IP address was 
configured from. The most important information is the IP address, subnet mask, and 
default gateway. You can also see a wealth of other information, including the lease time 
and expiration of the IP address. 

A common solution for network issues is to update network settings to match other cli- 
ents on the network that are operating normally. If a network change to DHCP was made 
recently and all you need to do is refresh the setting, you can issue an ipcofig /RELEASE 
and then an ipconfig /RENEW. 

You can manually change settings in the Internet Protocol Version 4 (TCP/IPv4) 
Properties for the network card, as shown in Figure 24.30. You can access these set- 
tings by right-clicking the Start menu, then Network Connections, then Network 
and Sharing Center, then Change adapter settings, finally right-click the adapter 
and select Properties. To update the gateway and DNS settings, click Advanced (see 
Figure 24.31). 
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FIGURE 24.30 |Pv4 Properties 
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FIGURE 24.31 _ |IPv4 Advanced Properties 
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Reimaging/Reloading the Operating System 


In certain situations, a problem may require you to reinstall software. The time to uninstall 
and reinstall the software can sometimes exceed the time it takes to reimage the operating 
system with the software preinstalled. Reimaging the computer will depend on whether you 
use operating system images or load each computer by hand. 

If your organization does not use a standardized image for its computers, you can use 
the Windows Recovery Environment and select the Reset This PC option. If the comput- 
ers have a preinstalled image, you can use the System Image Recovery option to reload the 
operating system. You can select this option by holding down the Shift key as you reboot 
the operating system, then choose Advanced Options after the reboot, then System Image 
Recovery. You can also reset the computer by opening the Settings app, then Update & 
Security, then Recovery, then Reset This PC (Get started), and finally choose Remove 
Everything. Depending on the type of computer you have, it may have a proprietary process 
for recovering system images. 


Rolling Back Updates 


Very rarely you will find that a Microsoft or third-party update has created a problem on 
the operating system. When this happens, it’s pretty easy to roll back updates by unin- 
stalling them. Simply open the Settings app, then Update & Security, then View Update 
History, then Uninstall Updates, and finally select the update and choose Uninstall, as 
shown in Figure 24.32 


FIGURE 24.32 Uninstalling an Update 
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On the left of the Installed Updates screen, you can select Uninstall a Program. This 
will take you to the Programs and Features - Uninstall or Change a Program screen. From 
here, you can uninstall third-party updates. After uninstalling an update, it’s a good idea to 
reboot before testing to see if it fixed the issue. 


P An alternative to uninstalling an update is to use System Restore to revert 
A: to an earlier time before the update. However, System Protection must 
have been turned on before the update was installed. System Protection 
in Windows 10 is turned off by default. You can turn it on by clicking the 
Start menu, then type Recovery and select it, then clcik Configure System 
Restore, Select the System drive, then Configure, Select Turn on System 
Protection, and finally click OK. 


Rolling Back Device Drivers 


When you isolate a hardware problem to a faulty device driver, it is sometimes necessary to 
roll back the current driver to a prior version. This action will roll back the driver to the orig- 
inal version detected by Windows, also called the out-of-box driver. In some cases, it may roll 
back to a generic driver, which reduces functionality until a proper driver is installed. 

This process can be completed by right-clicking the Start menu, selecting Device 
Manager, select the device, right-click and select Properties, choose the Driver tab, then 
Roll Back Driver, answer the reason for rolling back the driver, and finally click Yes, as 
shown in Figure 24.33. When the roll back is complete, you should reboot the computer 
before testing to see if it fixed the issue. 


FIGURE 24.33 Rolling back a driver 
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Applying Updates 

Occasionally, applying an update will fix a problem, mainly because that is what updates 
do: They fix problems. Once you’ve identified that applying an update is the solution, you 
need to download, distribute, and install the update. Luckily, by default Windows 10 
automatically installs updates for the operating system to keep you up-to-date and 
problem-free. 

In large-scale networks, the organization may employ a corporate patch-management 
solution. Microsoft offers a free patch-management solution called Windows Server 
Update Services (WSUS). Microsoft also sells a licensed solution called System Center 
Configuration Manager (SCCM), which performs many other functions in addition to 
patch management. If an update is required and your organization uses one of these 
products, the patch must be approved, downloaded, and deployed. Third-party patch- 
management solutions may also be used in your organization. Third-party solutions are 
usually specific to an application or suite of applications, such as Adobe or Autodesk. 

In small office, home office (SOHO) environments and small network environments, 
the update may be a one-off installation for a specific application. In this case, the update 
just needs to be downloaded and installed, per the vendor instructions. Always make sure 
to have a plan to roll back from a bad update. Turning on System Protection is a good idea 
before the update. If an update fails, you can simply use System Restore to restore the oper- 
ating system to a prior point in time. 


Repairing Applications 

If an application is crashing and acting erratically, it may be due to another application 
that has overwritten critical files used by the application, or the files may have become cor- 
rupted. In either case, choosing to repair an application will validate it is installed properly 
and the process will replace any missing critical files for the application. Data files and con- 
figuration files will not be touched while the application is being repaired; only critical files 
(such as DLLs) will be checked and repaired. 

You can repair an application by right-clicking the Start menu, selecting Apps and 
Features, then Programs and Features (under the Related Settings heading), right-click the 
application, and then select Repair, as shown in Figure 24.34. The application’s installer 
will launch and start to repair the application. 
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FIGURE 24.34 Repairing an application 
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ng the Boot Order 


When you have a multi-boot installation and the wrong operating system is loading, the boot 
order must be updated to reflect the proper default. The boot order can be updated a variety 

of ways. The first way is to use the System Configuration utility (msconfig.exe) and the Boot 
tab, as shown in Figure 24.35. You can access the utility by clicking the Start menu, then type 
System Configuration and select it from the results, select the Boot tab, select the operating 
system, then choose Set as Default. You can tell which operating system is the default and 

which operating system is currently booted by looking at their descriptions on the Boot tab. 


FIGURE 24.35 Updating the boot order in System Configuration 
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The second way to update the boot order is through the System Properties on the 
Advanced tab (Startup and Recovery), as shown in Figure 24.36. You can access the 
Startup and Recovery dialog box by clicking the Start menu, then typing System, and select 
System under the Settings heading, then Advanced System Settings, then the Advanced tab, 
then Settings... (Startup and Recovery), select the operating system from the drop-down as 
the Default Operating System, as shown in Figure 24.36. 


FIGURE 24.36 Startup and Recovery in System Properties 
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There are a variety of other ways to change the boot order, including using the bcdedit 
.exe utility. You would first use the bcdedit /ENUM command (to see the various options), 
and then use the bcdedit /DEFAULT {GUID-ID} command, replacing GUID-ID with the 
identifier for the operating system you want to boot as default—for example, bcdedit / 
DEFAULT {cel0a3ba-801f-1le8-be04-ae230169ca59}. 


P The bcdedit utility is a very versatile tool for changing boot attributes. To 
Pn learn more about bcdedit, visit: 


https://docs.microsoft.com/en-us/windows-hardware/drivers/ 
devtest/editing-boot-options 
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Disabling Services 


Once you’ve identified a problem with a service at boot up, you can disable the 
service by accessing the System Configuration (msconfig.exe) utility. Most of the 
services that are displayed in the Service tab are Microsoft services related to the 
operating system and can be ignored. You can filter out Microsoft services by click- 
ing the Hide All Microsoft Services check box, as shown in Figure 24.37. You can 
temporarily disable a service by clicking the Start menu, type System Configuration 
and select it from the results, then select the Service tab, then deselect the appropriate 
service, and click reboot. 


FIGURE 24.37 Disabling a service in System Configuration 
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An alternate way to disable a Windows service is to use the Services snap-in under 
Computer Management, as shown in Figure 24.38. This method will allow you to remotely 
disable a Windows service. You can disable a service with this method by right-clicking the 
Start menu, select Computer Management, then Services, then right-click the service, select 
Properties, and then change the Startup Type to Disable in the drop-down box, select OK 
and reboot. 
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FIGURE 24.38 Disabling a service in Computer Management 
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Disabling Applications at Startup 


After you have identified that a particular program at startup is slowing down the login 
process, you need to disable the application to fix the performance issue. Applications are 
automatically started upon login, as the operating system uses a variety of mechanisms, 
such as reading the Registry as well as the Startup folders for both the system and the user. 
The Registry keys and the path of the Startup folders read, are as followed: 


Registry 


= HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run 
n HKLM\ \SOFTWARE \WOW6432Node\Microsoft\windows\CurrentVersion\Run 
=  HKCU\Software\Microsoft\Windows\CurrentVersion\Run 


Startup Folders 


= C:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp 


a C:\Users\{Username}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ 
Startup 


Fortunately, the Startup tab in Task Manager allows you to disable applications 
that are in all these locations, as shown in Figure 24.39. You can even see the impact 
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they pose to the startup/login process. You can disable an application by pressing 
Ctrl+Shift+Esc, selecting the Startup tab , then right-clicking the application, and finally 
selecting Disable. 


FIGURE 24.39 Disabling applications in Task Manager 
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As an alternative, you can visit each location and either delete the entry (Registry) or 
delete the file. However, restoring the entry/file is not as simple as re-enabling it, as the Task 
Manager allows you to perform. 


Booting into Safe Boot 


If Windows won’t load completely (it hangs or is otherwise corrupted) when you boot, 
you can often solve the problem by booting into Safe Mode, also known as Safe Boot. Safe 
Mode is a concept borrowed from the original Windows 95 product wherein you can bring 
up part of the operating system by bypassing the settings, drivers, or parameters that may 
be causing it trouble during a normal boot. The goal of Safe Mode (Safe Boot) is to provide 
an interface with which you’re able to fix the problems that occur during a normal boot 
and then reboot in normal mode. 

To access Safe Mode, you must boot into the Windows Recovery Environment. This 
can be achieved a number of ways, but the prior method in Windows 7 of pressing 
F8 when the operating system is booting to access Advanced boot options no longer 
works in Windows 8/8.1 and Windows 10. To access the Startup Settings (as shown in 
Figure 24.40), select Reboot while holding the Shift key, once the computer reboots select 
Troubleshoot, then Advanced Options, then See More Recovery Options, then Startup 
Settings, and finally Restart. 
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FIGURE 24.40 Startup Settings 


The Windows Recovery Environment will reboot into the Startup Settings. You can then 
choose option 4, Enable Safe Mode. The operating system will boot into Safe Mode, as 
shown in Figure 24.41. Safe Mode will display the words “Safe Mode” in all four corners 
while you are booted into this mode. The Windows build and release information will also 
be displayed at the top of the screen. 


FIGURE 24.41 Safe Mode 


Microsoft (R) Windows (R) (Build 17134.rs4_release.180410-1804) Safe Mode 


Recycle Bin 


Microsoft 
Edge 


Safe Mode Safe Mode 


; 11:51 AM 
O Type here to search È aw 11/23/2018 ma 
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From the Startup Settings, you can access a number of other boot modes that can assist 
in troubleshooting and solving issues, as shown in Table 24.1. 


TABLE 24.1 Startup Settings boot options 


Choice 


Loaded 





Enable Debugging 


Enable Boot Logging 


Enable Low-Resolution Video 


Enable Safe Mode 


Enable Safe Mode with 
Networking 


Enable Safe Mode with 
Command Prompt 


Disable Driver Signature 
Enforcement 


Disable Early Launch Anti- 
malware Protection 


Disable Automatic Restart 
After System Failure 


F10 


Enter 


Launch Recovery Environment 


A mode in which the Windows installation will pass 
information to a debugger. Used only by Windows 
developers and driver developers 


Creates ntbtlog.txt in the C:\Windows directory 
during boot 


Normal boot with only basic video drivers. It is used 
when the resolution of the monitor is lower than the 
resolution set in Windows. 


Provides the VGA monitor, Microsoft mouse drivers, and 
basic drivers for the keyboard (storage system services, 
no networking) 


Same as Safe Mode but with networking 


Same as Safe Mode but without the GUI interface 
and drivers/services associated with it. It provides a 
command prompt only. 


Allows Windows to load drivers not digitally signed 


Disables the anti-malware protection for early loading 
of drivers 


Disables automatic restarting and is helpful when 
troubleshooting 


More options 


Returns to the operating system with no modifications 
to the boot 


Launches the Windows Recovery Environment. Press 
F10 to make this option appear. 
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Alternately, you can boot directly into Safe Mode by choosing Safe boot from the Boot 
tab in System Configuration, as shown in Figure 24.42. You can access the Safe Boot 
options by clicking the Start menu, then typing System Configuration and select it from the 
results, then select the Boot tab, select Safe boot, then OK, and finally select Restart. 


FIGURE 24.42 Safe boot options in System Configuration 
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Selecting Safe Boot enables you to choose several other options. They are worded dif- 
ferently, but they are the same as the Startup Settings. Table 24.2 shows the Safe Mode 
options that can be selected with Safe Boot. In Exercise 24.2 you will boot into Safe Mode 
using the Safe Boot checkbox in this dialog box. 


TABLE 24.2 Safe Boot options 





Safe Boot Option Safe Mode Option 

Minimal Safe Mode 

Alternate Shell Safe Mode with Command Prompt 

Active Directory Repair Only Used for Active Directory Domain Controllers 
Network Safe Mode with Networking 


Another way to boot into Safe Mode is by using the bcdedit.exe utility. Opening 
a command prompt and entering bcdedit /SET {default} SAFEBOOT MINIMAL 
will set the next boot to enter Safe Mode. By adding the bcdedit / 
SET {default} SAFEBOOTALTERNATESHELL YES command, you can boot into Safe Mode 
with a command prompt. Using bcdedit /SET {default} SAFEBOOT NETWORK allows you 
to boot into Safe Mode with networking enabled. 
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Keep the following rules in mind when booting in different modes: 


a Ifthe problem doesn’t exist when you boot to Safe Mode but does exist when you boot 
to normal mode, the problem isn’t with basic services/drivers. 


= If the system hangs when you load drivers, the log file can show you the last driver it 
attempted to load, which is usually the cause of the problem. 


= If you can’t solve the problem with Safe Mode, try System Restore, System Image 
Recovery (if it is Windows 8/8.1, you can also try Refresh/Restore), or Reset This PC 
in Windows 10. 


Booting into Safe Mode 

1. Click the Start menu and type System Configuration. 
Select System Configuration from the results. 

Select the Boot tab. 

Select Safe Boot. 

Click OK. 


When prompted to Restart or Exit without Restart, select Restart. 


Noo FP © N 


Note which services and devices are available upon booting into Safe Mode. 


Your operating system will not reboot into Safe Mode. You can exit Safe Mode by 
clicking the Start menu and selecting Reboot. If the operating system reboots back into 
Safe Mode or you do not want it to reboot into Safe Mode, you can enter the command 
bcdedit /Deletevalue {current} SAFEBOOT. This will remove the entry in the BCD that 
notifies the operating system to boot into Safe Mode. 


Resetting Windows Profiles 


When a problem has been determined to be a profile-related issue, it is necessary to reset 
the Windows profile. When performing this action, ensure that the user’s data is backed up. 
It is best to keep an entire copy of the profile before resetting it. The following are the most 
common places data is kept by the operating system: 


=» Contacts 

= Desktop Items 
= Documents 

= Favorites 

= Links 

a Music 

= Pictures 

a Videos 
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= Saved Games (optionally) 
=a Downloads (optionally) 
= 3D Objects (optionally) 


To back up a local profile, log into an administrative account (other than the one you are 
backing up), and then copy the profile under C:\Users to a new location. Do not move the 
profile, because the operating system references it in the Registry. 

You can then reset a local profile through the Advanced tab of System Properties, as 
shown in Figure 24.43. You can access the User Profiles dialog box by clicking the Start 
menu, then typing System, select System under Settings, then Advanced System Settings, 
then the Advanced tab, then Settings... (User Profiles), select the profile to reset, click 
Delete, then answer Yes to confirm the deletion. Then log in as the user. Windows will cre- 
ate a new profile. The user’s files can then be manually copied over. 


FIGURE 24.43 Deleting a local user profile 
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You can also use the preceding procedure to delete a roaming user profile that has been 
left on the Windows operating system. However, performing the preceding procedure on 
a roaming profile will not reset the profile. The procedure will only remove the profile, to 
clear space. To reset a network-based roaming profile, perform the following steps: 


Ensure the user is logged out completely. 

Delete all local copies of the user’s profile left on any machine. 

Navigate to the network location containing the user’s profile and rename the folder. 
Log the user into the machine on which you have deleted the locally cached copy. 


Copy any useful items back to the user’s profile. 


OF ew Ns 


Log the user out to ensure the roaming profile is saved back. 
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User profile management can become complicated, depending on how it 
OTE is implemented. For the CompTIA A+ exam, you will need to have a basic 
understanding. For more information, visit: 


https: //msdn.microsoft.com/en-us/library/windows/desktop/ 
bb776892 (v=vs.85) .aspx 


Troubleshooting Security Issues 


Many viruses will announce that your system is infected as soon as they gain access to it. 
They may take control of your system, flash annoying messages on your screen, or destroy 
your hard disk. When this occurs, you’ll know that you’re a victim. Other viruses will 
cause your system to slow down, cause files to disappear from your computer, or take over 
your drive space. The Windows Defender Security Center can show you what security mea- 
sures are set on your system (see Figure 24.44). 


FIGURE 24.44 The Windows Defender Security Center 
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Viruses are the most common type of malware. In this section, we use the 
OTE term virus to refer to many types of malware. 


There are a number of common symptoms CompTIA expects you to know for the 
220-1002 exam when it comes to security issues. Many of these issues also appear in other 
CompTIA certification exams—namely, Security+. Rest assured that for the 220-1002 
exam, you do not need to know the content as well as you would if you were preparing for 
the Security+ exam. In particular, you should look for some of the following symptoms 
when determining if a virus infection has occurred: 


= The programs on your system start to load more slowly. This happens because the 
virus is spreading to other files in your system or is taking over system resources. 


= Unusual files appear on your hard drive, or files start to disappear from your system. 
Many viruses delete key files in your system to render it inoperable. 


= Program sizes change from the installed versions. This occurs because the virus is 
attaching itself to these programs on your hard drive. 


=a Your browser, word-processing application, or other software begins to exhibit 
unusual operating characteristics. Screens or menus may change. 


= The system mysteriously shuts itself down or starts itself up, and a great deal of unan- 
ticipated disk activity occurs. 


«You mysteriously lose access to a hard drive or other system resources. The virus has 
changed the settings on a device to make it unusable. 


= Your system suddenly doesn’t reboot or gives unexpected error messages during 
startup. 


=a You notice an X in the notification area over the icon for your virus scanner, or the 
icon for the scanner disappears from the system tray altogether. 


This list is by no means exhaustive. What is an absolute, however, is the fact that you 
should immediately quarantine the infected system. It is imperative that you do all that 
you can to contain the virus and keep it from spreading to other systems within your net- 
work and beyond. Some enterprises have a no-tolerance (zero tolerance) policy for infected 
systems, and they are always physically destroyed, although this is an extreme. In many 
organizations, the hard drive will be sanitized, and the operating system will be reimaged 
or reloaded from scratch. 

The following sections describe some of the common systems in detail. 


It cannot be overstated that establishing security policies and procedures, 

Po TE updating your operating systems, updating your applications, and 
updating your network devices are all good measures to help to eliminate 
potential security problems. 
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Pop-Ups 


Pop-ups (also commonly known as popups) are both frustrating and chancy. When a user 
visits a website and another instance (either another tab or another browser window) opens 
in the foreground, it is called a pop-up; if it opens in the background, it is called a pop- 
under. Both pop-ups and pop-unders are pages or sites that you did not specifically request 
and may only display ads or bring up applets that should be avoided. 

Pop-up blockers are used to prevent both pop-ups and pop-unders from appearing. 
While older browsers did not incorporate an option to block pop-ups, most current 
browsers, including the latest versions of Internet Explorer and Edge, have that 
capability built in. 

Overlays are the next generation of pop-ups. In an overlay, JavaScript is written to over- 
lay a screen on top of the desired page. This screen requests a signup, is an ad, or tries to 
redirect you (as discussed next). The only way to avoid overlays is to use JavaScript toggle 
plug-ins, which enable you to turn off JavaScript on a web page. However, JavaScript tog- 
gles also break the web page if it requires JavaScript in order to be displayed. 


Browser Redirection 


Pharming is a form of redirection in which traffic intended for one host is sent to another. 
This can be accomplished on a small scale by changing entries in the hosts file and on 

a large scale by changing entries in a DNS server (poisoning). In either case, when a 

user attempts to go to a site, they are redirected to another site. For example, suppose 
Illegitimate Company ABC creates a site to look exactly like the site for Giant Bank XYZ. 
The pharming is done (using either redirect method) and users trying to reach Giant Bank 
XYZ are tricked into going to Illegitimate Company ABC’s site, which looks enough like 
what they are used to seeing that they give their username and password. 

As soon as Giant Bank XYZ realizes that the traffic is being redirected, it will immedi- 
ately move to stop it. But while Illegitimate Company ABC will be shut down, it was able 
to collect data for the length of time that the redirection occurred, which could vary from 
minutes to days. 

Another form of browser redirection is called affiliate redirection. This type of browser 
redirections can be very subtle. For example, when you search for a product and click the 
link in the results, the malware will redirect your browser to the intended site with an affili- 
ate link attached. Now anything you purchase will credit a commission to the person who 
redirected the browser with the affiliate link. This malware is usually related to an unscru- 
pulous plug-in in the browser. 

Because an attacker can use many different tactics to launch browser redirection, 
the mitigation is not straightforward. However, implementing end-user education, 
maintaining updates for browsers and operating systems, and ensuring that your anti- 
malware/antivirus software is up-to-date are best practices to protect against browser 
redirection. 


1332 Chapter 24 = Troubleshooting Operating Systems and Security 


Security Alerts 


Users have plenty of real viruses and other issues to worry about, yet some people find it 
entertaining to issue phony threats disguised as security alerts to keep people on their toes. 
Some of the more popular hoaxes that have been passed around are the Goodtimes and the 
Irina viruses. Millions of users received emails about these two viruses, and the symptoms 
sounded awful. The mention of these two hoaxes serves to outline the most well known 
hoaxes. Since these came out, there have been many different hoaxes, most of which were 
not as well known as these. 

Both of these warnings claimed that the viruses would do things that are impossible to 
accomplish with a virus. When you receive a virus warning, you can verify its authenticity 
by looking on the website of the antivirus software you use, or you can go to several public 
systems. One of the more helpful sites to visit to get the status of the latest viruses is that of 
the CERT organization (www.cert.org). CERT monitors and tracks viruses and provides 
regular reports on this site. 


Though the names are similar, there is a difference between 
A TE cert.org and us-cert.gov. While the latter is a government site for 
the United States Computer Emergency Readiness Team, the former 


is a federally funded research and development center at Carnegie 
Mellon University. 


When you receive an email that you suspect is a hoax, check the CERT site before for- 
warding the message to anyone else. The creator of the hoax wants to create widespread 
panic, and if you blindly forward the message to co-workers and acquaintances, you’re 
helping the creator accomplish this task. For example, any email that includes “forward 
to all your friends” is a candidate for research. Disregarding the hoax allows it to die a 
quick death and keeps users focused on productive tasks. Any concept that spreads quickly 
through the Internet is referred to as a meme. 








Identifying a Hoax 


Symantec and other vendors maintain pages devoted to bogus hoaxes. Symantec's site is 
located at: 


https: //www.symantec.com/security-center/risks/hoaxes 


You can always check there to verify whether an email you’ve received is indeed a hoax. 
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Slow Performance 


Slow performance was addressed previously in this chapter in relation to operating sys- 
tem issues. Viruses, worms, and other malware can slow performance because they rob 
resources from the other applications and services forced to share them. 

By using the tools previously discussed in this chapter, such as Task Manager and 
Resource Monitor, you can identify applications that are slowing performance of the oper- 
ating system. If the application identified is not a known program that you installed on 
the system and the program is robbing performance, it may be malicious and should be 
terminated. 


Internet Connectivity Issues 


If your computer is hooked up to a network, you need to know when your computer 

is not functioning properly on the network and what to do about it. In most cases, the 
problem can be attributed either to a malfunctioning network interface card (NIC) or 
improperly installed network software. The biggest indicator in Windows that some 
component of the network software is nonfunctional is that you can’t log in to the net- 
work or access any network service. To fix this problem, you must first fix the underly- 
ing hardware problem (if one exists) and then properly install or configure the network 
software. 

In some situations, Internet connectivity issues can be related to security threats. 
Although you might not seem to have Internet connectivity, the NIC might be working 
fine, while the real problem is a malicious program that has crashed or not operating as 
the malicious creator of the program intends. The malware will act as a proxy for the 
network traffic. This type of malware is usually intent on stealing credentials or banking 
information. However, it can also be used to inject ads and cause browser redirection, as 
previously discussed. 

Not all malware that causes Internet connectivity issues acts as a proxy. Some mal- 
ware changes network settings, such as your DNS servers. This type of malware will 
cause browser redirections by controlling what you resolve through their DNS. It is also 
common for malware to change your system proxy so that all requests go through their 
remote proxy. 


PC/OS Lock Up 


It is obvious when a system lockup occurs. The system simply stops responding to com- 
mands and stops processing completely. System lockups can occur when a computer is 
asked to process too many instructions at once with too little memory. The cure for a sys- 
tem lockup usually is to reboot. If the lockups are persistent, they may be hardware-related 
problems instead of software problems. 
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In rare cases, the lockup can be attributed to malware or a virus on your operating sys- 
tem. Malware and viruses are not normally well written and can cause memory leaks that 
rob resources and eventually lock up the operating system. If you suspect a malicious acting 
application is creating the lock up, you should run an antivirus scan to identify and remove 
the threat. 


Application Crash 


When an application crashes, you want to isolate the cause of the crash—it could be a com- 
patibility issue, a hardware issue, or a host of other problems—and solve it. One step to 
take early on is to look for updates/patches/fixes to the application released by the vendor, 
as previously discussed in this chapter. Be sure to try these updates on a test machine before 
rolling them out to all machines, and verify that they address the problem and not intro- 
duce new problems. 


M Remember that there are two universal solutions to Windows problems: 
P rebooting and obtaining an update from the software manufacturer. If 
neither of these solutions works, your hardware could be causing the 
problem. 


Application crashes can also be attributed to malware or viruses. When malware tries to 
hook into an application, such as a web browser, it can make the application crash expec- 
tantly. This is mainly because malware and viruses are not well written and can sometimes 
be compared to a hammer trying to open a can; itll work and won’t be pretty. If a mali- 
cious application is suspected, a complete virus scan should be completed on the operating 
system. 








tes) Real World Scenario 
Dr. Watson? 


Earlier versions of Windows included a special utility known as Dr. Watson that inter- 
cepted all error conditions and, instead of presenting the user with a cryptic Windows 
error, displayed a slew of information that could be used to troubleshoot the problem. 
Starting with Windows 7, Dr. Watson was removed for debugging. 


Windows now includes a feature called Problem Reports. To access Problem Reports, 
click the Start menu, type Problem Reports, and then select it from the results, as shown 
in Figure 24.45. The reports allow developers to identify problems with their applications. 
The reports can also tell you if malware or a virus is crashing the system. 
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FIGURE 24.45 _ Problem Reports 
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Review problem reports 


View problem reports that can be reported to Microsoft. When solutions are available, they will appear in Security and Maintenance. 





Source Summary Date i Status 

© Google Chrome a 
Google Chrome Stopped responding and was closed 10/1/2018 5:23 AM Report sent 

{i} Host Process for Windows Services (18) a 
Host Process for Windows Services Windows Update installation problem 5/31/2018 6:21 PM Report sent 
Host Process for Windows Services Windows Update installation problem 6/28/2018 7:45 PM Report sent 

More 

[7] Microsoft Malware Protection Signature Update Stub (2) a 
Microsoft Malware Protection Sig... MpTelemetry 5/31/2018 6:21 PM Report sent 
Microsoft Malware Protection Sig... MpTelemetry 10/22/2018 6:12 PM Report sent 

{=") Microsoft.Photos.exe a 
Microsoft.Photos.exe Stopped responding and was closed 5/31/2018 10:55 PM Report sent 

IN Windows Explorer a 
Windows Explorer Stopped working 7/27/2018 7:29 AM Report sent 


Clear all problem reports 











OS Update Failures 


Failed updates for Windows—assuming they aren’t caused by connectivity issues—can often 
be traced to misconfigured settings. These settings can also cause the operating system to 
report that an update needs to be installed when it has already been installed. The best solu- 
tion is to find the error code being reported in Windows Update Troubleshooter, solve the 
problem, and download the update. You can download the Windows Update Troubleshooter 
for Windows 7, Windows 8/8.1, and Windows 10 from https: //support.microsoft.com/ 
en-us/help/4027322/windows-update-troubleshooter. Recent versions of Windows 10 
now include a troubleshooting utility. To access the utility, click the Start menu and select 
the settings gear. Once the Setting app opens, select Update & Security, and then click 
Troubleshoot. 


Rogue Antivirus 


One of the cleverer ways of spreading a virus is to disguise it so that it looks like an antivi- 
rus program. When it alerts the user to a fictitious problem, the user then begins interact- 
ing with the program and allowing the rogue program to do all sorts of damage. One of 
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the trickier things for troublemakers to do is to make the program look as if it came from 
a trusted source—such as Microsoft—and mimic the Windows Action Center interface 
enough to fool an unsuspecting user. 

Microsoft offers a page on fake virus alerts that can be shared with employees to help 
educate them about rogue security software. You can visit it at www.microsoft.com/ 
security/pc-security/antivirus-rogue. aspx. 


Spam 


While spam is not truly a virus or a hoax, it is one of the most annoying things with which 
an administrator must contend. Spam is defined as any unwanted, unsolicited email. Not 
only can the sheer volume of it be irritating, it can often open the door to larger problems. 
For instance, some of the sites advertised in spam may be infected with viruses, worms, and 
other unwanted programs. If users begin to respond to spam by visiting those sites, then 
viruses and other problems will multiply in your system. 


Numerous antispam programs are available, and users as well as admin- 
A TE istrators can run them. One of the biggest problems with many of these 

applications is false positives: they will occasionally flag legitimate email 

as spam and stop it from being delivered. You should routinely check your 


spam folders and make sure that legitimate email is not being flagged and 
held there. 


Just as you can—and must—install good antivirus software, you should also consider 
similar measures for spam. Filtering the messages and preventing them from ever entering 
the network is the most effective method of dealing with the problem. Recently, the word 
“spam” has found its way into other forms of unwanted messaging beyond email, giving 
birth to the acronyms SPIM (spam over instant messaging) and SPIT (spam over Internet 
telephony). 


Renamed System Files/Disappearing Files/ 
Permission Changes/Access Denied 


Creators of malware have a number of methods by which they can wreak havoc on a sys- 
tem. One of the simplest ways is to delete key system files and replace them with malicious 
copies. When this occurs, the user can no longer perform the operation associated with the 
file, such as printing, saving, and so on. Just as harmful as deleting a file is to rename it or 
change the permissions associated with it so that the user can no longer access it or perform 
those operations. 
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Starting with Windows Vista, Microsoft enabled the User Account Control (UAC) by 
default. This change to the operating system greatly reduced the number of attempts to use 
elevated privileges and definitely made it more difficult to change system files. In addition 
to enabling the UAC, Microsoft removed the Modify NTFS permission from system files 
for the Administrator account. Only the Trusted Installer (Windows Update) has access to 
modify these files; even the System (operating system) permissions are Read and Execute. If 
that wasn’t enough, a self-healing service watches for files changed and replaces them with 
trusted versions. The System File Checker (SFC) is a user tool that can be used to manually 
heal missing or modified system files. Malware can maliciously modify files and, in some 
cases, cause them to go missing. The System File Checker was covered in Chapter 16. 


Hijacked Email 


One of the easiest ways to spread malware is to capture the email contacts of a user 
and send the malware as an attachment to everyone in their circle. The recipient is 
likely to open the attachment because it seemingly comes from a trusted source. It is 
important that you scan all email, both internal and external, and identify problems 
before they spread. 

Be wary of responses from users regarding email that they haven’t sent and watch for 
automated replies from unknown sent email. As good as your malware detection may be, 
one of the best things to do to prevent these types of attacks from being successful is to 
educate users of what to watch out for, how to respond, and how to get ahold of you as 
quickly as possible. 


Invalid Certificate 


Public key infrastructure (PKI), previously discussed in Chapter 22, “Security 
Concepts,” relies on digital certificates for security. An invalid certificate usually means 
that the certificate has expired or has another security-related problem. If you are visit- 
ing a website that is secured with SSL (HTTPS) and the web browser displays a message 
similar to the message in Figure 24.46, the site may not actually be the site you are trying 
to visit. 

Certificate errors can happen for a multitude of reasons. The most common reason 
is that your operating system’s time or date is off and should be adjusted. When you 
check this, make sure to verify that you are in the right time zone. If your operating 
system time and date are correct, then you should suspect another problem—usu- 
ally a security-related problem with the site you are trying to visit. Proceed with 
caution, especially if you are entering credentials, personal information, or banking 
information. 
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FIGURE 24.46 An invalid certificate 
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@ This site isn't secure 


This site is not secure 


This might mean that someone's trying to fool you or steal any info you send to the server. You should 
close this site immediately. 


@ Close this tab 


© More information 


The hostname in the website's security certificate differs from the website you are trying 
to visit. 


Error Code: DLG_FLAGS_SEC_CERT_CN_INVALID 


@ Goon to the webpage (not recommended) 











Event Viewer Log Errors 


Event Viewer (eventvwr .exe) can show a lot of detailed information about what is running 
on your operating system. Table 24.3 highlights the three main event logs that you should 
be concerned with. 


TABLE 24.3 Event Viewer logs 


Event Log Description 





Application Events generated by applications installed on the operating system 
Security Events generated by the Security Reference Monitor in the Executive kernel 


System Events generated by the operating system 


Although you might think that all the security-related information is in the Security 
log, you’re only half right. The Security log is used by the Security Reference Monitor 
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inside of the Executive kernel. It is responsible for reporting object audit attempts. 
Examples of object audit attempts include file access, group membership, and 
password changes. 

Most of the useful security-related information will be in the Application and System 
logs. From these logs, you can see errors and warnings that will alert you to potential 
security-related problems. When you suspect an issue with the operating system or an 
application that interacts with the operating system, you should check these logs for clues. 
The event log won’t tell you exactly what is wrong and how to fix it, but it will tell you 
there is an issue and that it needs to be investigated closer, as shown in Figure 24.47. 


FIGURE 24.47 Event Viewer logs 
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Best Practices for Malware Removal 


Best practices for malware removal is a key objective for the 220-1002 exam. The best way 
to think about this is as a seven-item list of what CompTIA wants you to consider when 
approaching a possible malware infestation. The following discussion presents the informa- 
tion that you need to know. 
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1. Identify and Research Malware Symptoms. 


Before doing anything major, it is imperative first to be sure that you are dealing with the 
right issue. If you suspect malware, try to identify the type (spyware, virus, and so on) and 
look for the proof needed to substantiate that it is indeed the culprit. 

Identifying malware is no different from the troubleshooting you learned about in 
Chapter 13. You first need to identify the problem. This can be done with a multitude of 
tools, but hopefully your antivirus/anti-malware software will be the first tool that helps to 
identify the problem. If the antivirus/anti-malware software fails to identify the problem, 
then other third-party tools must be used. 

Earlier in this chapter, in the section “Troubleshooting Microsoft Windows OS 
Problems,” we introduced you to Resource Monitor to isolate performance problems. A 
similar tool, called Process Explorer, can be downloaded from Microsoft Sysinternals. This 
tool allows a different visualization from what Resource Monitor provides, as shown in 
Figure 24.48. You can see the process list on the operating system; in this case, there is a 
process called regsvr32.exe. When you look closer, you can see that it is creating network 
traffic and is very active on the operating system. The process is actually a ransomware 
application calling out to command-and-control servers. It is sneakily disguising itself as 
the regsvr32.exe utility, which is normally used to register DLLs. 


FIGURE 24.48 Process Explorer 
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Unfortunately, this lone example will not give you the expertise of a professional 
virus/malware hunter. However, it provides just one of many examples of third-party 
software that can help you to detect and identify viruses and malware running on a 
computer. 

Many built-in tools, such as netstat.exe, can also provide assistance. For example, the 
netstat -nab command enables you to view all the processes on the operating system and 
their network connections. Using the netstat -nab command is how it was identified that 
something looked wrong with the regsvr32.exe process, otherwise the command would 
have looked like any other process on the operating system. 

In addition to applications that can identify viruses and malware, third-party web- 
sites can aid in detection. One such website is VirusTotal (https: //www.virustotal.com). 
VirusTotal allows users to upload potentially unsafe applications. Their service will scan 
the applications against more than 70 antivirus engines and report if the signature is 
found. It’s a valuable tool to validate that you’ve found an application on your operating 
system that is malicious. Many tools, such as Process Explorer, can even check against the 
VirusTotal database. 


2. Quarantine Infected Systems. 


Once you have confirmed that a virus or malware is at hand, then quarantine the infected 
system to prevent it from spreading the virus or malware to other systems. Bear in mind 
that the virus or malware can spread in any number of ways, including through a network 
connection, email, and so on. The quarantine needs to be complete enough to prevent any 
spread. 

Ransomware is probably the biggest risk, since it will spread through a network 
rapidly and encrypt files in its path. The ransom is usually equivalent to the number of 
files or the total size of files. In either case, over the past 5 years, it has made headline 
news, as it has taken down extremely large companies. In one instance, the Petya ran- 
somware even took down most of the computers in Ukraine, along with several other 
countries. 

If an infected system is discovered and needs further analysis, it should be quarantined 
from the network and put into an isolated network. This hot network is a place where it 
can be studied further, without repercussions to the operational network. 


3. Disable System Restore (in Windows). 


This is a necessary step because you do not want to have the infected system create a restore 
point—or return to one—where the infection exists. System Protection in Windows 10 is 
turned off by default. You can disable System Protection by clicking the Start menu, then 
typing Recovery and then select it, then choose Configure System Restore, select the system 
drive, then Configure, then Disable System Protection, then Delete (Disk Space Usage), 

then Continue (confirmation), then Close, then OK, then Yes (confirmation), as shown in 
Figure 24.49. 
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FIGURE 24.49 System Protection 
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4. Remediate the Infected Systems. 


The steps taken here need to depend on the type of virus or malware with which you’re 
dealing, but they should include updating antivirus and anti-malware software with the 
latest definitions and using the appropriate scan and removal techniques. You can update 
Windows Defender from the Windows Defender Security Center by clicking the task tray 
in the lower-right corner, then right-click the shield, and finally click Check for Updates, as 
shown in Figure 24.50. 

Depending on the type of virus or malware, you may need to boot into Safe Mode or 
the Windows Recovery Environment (as discussed previously in this chapter). However, 
the remediation of the virus or malware will be different for each situation. Windows 
Defender Security can automatically perform an offline scan. To perform an offline scan, 
click the task tray in the lower-right corner, then right-click the shield, then View Security 
Dashboard, then Virus & Threat Protection, then Virus & Threat Protection Settings, 
then Run a New Advanced Scan, and finally Windows Defender Offline Scan, as shown in 
Figure 24.51. 
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FIGURE 24.50 Windows Defender Security updates 
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© Protection updates 


View information about your threat definition version, and check for 
updates. 


Threat definitions 


Windows Defender Antivirus uses files called definitions to detect threats. 
We try to automatically download the most recent definitions, to help 
protect your device against the newest threats. You can also manually 
check for updates. 


Threat definition version: 1.281.767.0 
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FIGURE 24.51 


Windows Defender Offline scan 
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Windows Defender Security Center 


Home 

Virus & threat protection 
Account protection 

Firewall & network protection 
App & browser control 
Device security 

Device performance & health 


Family options 


Settings 


Advanced scans 


Run full, custom, or Windows Defender Offline scan. 


O Full scan 


Checks all files and running programs on your hard disk. This scan 
could take longer than one hour. 
O Custom scan 


Choose which files and locations you want to check. 


© Windows Defender Offline scan 


Some malicious software can be particularly difficult to remove from 
your device. Windows Defender Offline can help find and remove 
them using up-to-date threat definitions. This will restart your device 
and will take about 15 minutes. 


Scan now 





1344 Chapter 24 = Troubleshooting Operating Systems and Security 


After you confirm that you will save your work by clicking Scan on the confirmation 
dialog box, the UAC will prompt you to answer Yes, and then Windows will reboot. The 
Windows Recovery Environment will boot and Windows Defender Antivirus will run, as 
shown in Figure 24.52. 


FIGURE 24.52 An offline Windows Defender Antivirus scan 
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In some situations, such as in a ransomware attack, no remediation can be performed 
because the user files are encrypted. In these cases, the malware should be removed 
from the operating system, and then the user data must be restored from a backup. The 
unfortunate and terrifying fact when it comes to ransomware is that there will be loss of 
work. 

In many instances, remediating the virus or malware is impossible because no one 
knows for sure what the virus or malware actually does. Antivirus researchers can docu- 
ment the delivery system that a virus or malware uses to enter your system. You can then 
patch the vulnerability, which is part of the remediation process. What antivirus research 
cannot do most of the time is to document the payload of a virus or malware. This is 
because most of the time it is encrypted and is changed, depending on the need of its cre- 
ator. In these cases, the remediation might be to sanitize the drive and reinstall the operat- 
ing system from an image or manually install it. 
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5. Schedule Scans and Run Updates. 


The odds of the system never being confronted by malware again are slim. To reduce the 
chances of it being infected again, schedule scans and updates to run regularly. Most anti- 
malware programs can be configured to run automatically at specific intervals; however, 
should you encounter one that does not have such a feature, you can run it through Task 
Scheduler. 

Windows Defender Security is scheduled to automatically scan the operating system 
during idle times. However, if you want to schedule a scan, you can use Task Scheduler 
by clicking the Start menu, then typing Task Scheduler and then select Task Scheduler 
from the results, then open the Task Scheduler Library, then Microsoft, then Windows, 
then Windows Defender, then double-click Windows Defender Scheduled Scan, then the 
Triggers tab, then New... , then select Weekly, then choose the day of the week, and then 
finally select OK, as shown in Figure 24.53. You'll need to click OK again after the New 
Trigger dialog box closes. 


FIGURE 24.53 Creating a Windows Defender Security scheduled scan 
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Windows Defender Security is scheduled to automatically download updates during the 
Windows Update check, which is daily. If you require the latest updates, it is recommended 
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to either use the Check for Updates option in the Windows Update settings or the Check 
for Updates option in the Windows Defender Security Center. 


6. Enable System Restore and Create a Restore 
Point (in Windows). 


Once everything is working properly, it is important once again to create restore points, 
should a future problem occur and you need to revert back. You can enable System 
Protection by clicking the Start menu, then typing Recovery and select it from the results, 
then Configure System Restore, then select the System drive, then Configure, then Turn 
on System Protection, and finally select OK. You can then manually create a restore point 
by clicking Create..., then type a description (such as after remediation - date), then Close 
(confirmation dialog box), and finally select OK to close the System Properties. 


7. Educate the End User. 


Education should always be viewed as the final step. The end user needs to understand 
what led to the malware infestation and what to avoid, or look for, in the future to keep it 
from happening again. This training can be formal training in a classroom setting, or it can 
be an online training in which the user must participate and answer questions. 

It is common for large companies to require annual or bi-annual end-user training 
for threats. It is becoming more common for training to be done online, and a num- 
ber of companies offer this as a service. It is not uncommon for a company to send a 
phishing attempt to their employees. When an employee falls for the phishing attempt, 
they are automatically signed up for mandatory training. Incentives are also common, 
such as the first employee that notifies the IT department of the phishing attempt gets 
a gift card. 


Troubleshooting Mobile Issues 


As mobile devices have been rapidly replacing the desktop and laptop machines that used 
to rule the workplace, the equipment an administrator must maintain has now evolved to 
cover a plethora of options. This section focuses on common mobile OS and application 
issues and some of the tools that can be used to work with them. A subsequent section will 
look at the same topics with more of a focus on security. 

In the following sections, we will cover many common symptoms of problems that 
are common with mobile OSs and applications. In Chapter 14, you learned how to iden- 
tify the symptoms of hardware problems. In this section, we cover how to identify appli- 
cation symptoms as they appear in the objectives. 
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Dim Display 


The display backlight can quickly drain a mobile device’s battery; therefore, most 
devices include the ability to dim the display both manually and automatically after a 
period of inactivity. While you normally want these actions, if the settings are incor- 
rect, the screen can be too dim to work with. Check the settings on the device to see if 
it is possible to brighten the screen and/or keep it from automatically dimming within a 
short period of time. 

To double-check these settings on an Android device, tap Settings, then tap Display, and 
finally check the Brightness and Auto Brightness settings. On an Apple device, tap Settings, 
then Display & Brightness, and finally check the Brightness and the True Tone setting. The 
True Tone setting is similar to Android’s Auto Brightness setting; both use a front-facing 
ambient light sensor to adjust the brightness. 


Intermittent Wireless 


There are a number of causes why intermittent wireless connections can occur, but the two 
most common are lack of a good signal and interference. Increasing the number of wireless 
access points (WAPs) for coverage, or being closer to them, can address the lack of a good 
signal. 

Interference can be addressed by reducing the number of devices competing for the 
same channel. In many instances, however, the interference may be coming from an 
external source, such as a microwave oven or even a Bluetooth device on the 2.4 GHz 
band. To avoid common interference of this nature, it is recommended to use an SSID 
that is dedicated to the 5 GHz band. Using the 5 GHz band won’t guarantee you of an 
interference-free connection, but you will have better odds of selecting a channel without 
interference. 

Another common problem with intermittent wireless is the auto reconnection feature for 
the SSID. You phone normally goes into a sleep mode every so often. This is normal and 
saves battery life. One of the first devices to sleep for battery conservation is the wireless 
circuitry. When you power on your phone, the wireless circuitry needs to associate with 
your WAP, which will happen unless you do not tell it to automatically reconnect. You 
can verify your wireless SSID and the auto reconnection settings on Android by tapping 
Settings, then tap Connections, then tap Wi-Fi, then tap the current SSID, tap Edit, them 
make sure Auto Reconnect is selected. On an Apple device, tap Settings from your Home 
Screen, tap Wi-Fi, tap the blue circled I next to your current SSID, and finally make sure 
that Auto-Join is selected as on. 


No Wireless Connectivity 


A common cause for the lack of wireless connectivity is that the wireless radio has been 
turned off. It happens from time to time, when an application that controls the Wi-Fi 
doesn’t turn it back on. On an Android phone, swipe down from the status bar, then tap 
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the wireless icon to make sure it is lit up. On Apple devices tap Settings, then tap Wi-Fi, 
and make sure that the slider is turned to the right and lit up in green. 

Another common cause for lack of wireless connectivity is for a device to be in airplane 
mode. When a mobile device is in airplane mode, all the radios for the cellular network of 
the provider, Wi-Fi, Bluetooth, and near field communication (NFC) will be turned off. 
This function was created so that in one tap you could comply with the US-based Federal 
Aviation Administration (FAA) or European-based European Aviation Safety Agency 
(EASA). 

To make sure that your device is not in airplane mode, look on the upper status bar 
that displays your cellular strength. If a plane appears there, then your phone is in airplane 
mode. On Android, you can swipe down, then tap the icon of the airplane, so that it’s no 
longer lit up. On Apple devices tap Settings, then Airplane Mode, and then tap the slider 
so it is no longer lit up. On both Android and Apple devices, both the cellular service and 
wireless networks will be restored after airplane mode is disabled. 


No Bluetooth Connectivity 


The lack of Bluetooth connectivity can also be attributed to the use of airplane mode. Or 
Bluetooth can just be turned off. So, this setting should be checked in addition to airplane 
mode. On Android devices, you can swipe down, then tap the Bluetooth icon if it is not lit 
up. On Apple devices, go to Settings, then tap Bluetooth if it is not lit up. Depending on the 
phone and version of the operating system, the Bluetooth icons will be displayed on your 


upper status bar and will look similar to Figure 24.54. 
FIGURE 24.54 Bluetooth status icons 


Enabled Disabled 


Lack of Bluetooth connectivity can also be caused when a device is not turned on and/ 
or has an improper setting for pairing. A common pairing issue is not having the proper 
Bluetooth passcode entered for the device. Each device, when paired, has a specific code 
from the vendor. Most vendors use a common code, such as 1234, but the code could 
also be 0000, or any combination, so it’s best to check the vendor’s documentation for 
Bluetooth pairing information. 

To pair or re-pair a device, first ensure that the device is turned on and that it’s discover- 
able. (Consult the vendor’s documentation, as necessary.) On Android devices, tap Settings, 
then tap Connections, then tap Bluetooth (the phone will immediately start scanning for 
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discoverable devices), select the available device, then enter the passcode from the ven- 
dor’s documentation. On Apple devices, pairing can be performed by tapping Settings, 
then tap Bluetooth, tap the device name, and finally enter the passcode from the vendor’s 
documentation. 


Cannot Broadcast to an External Monitor 


Mobile devices can be broadcast to an external monitor or television using one of several 
different technologies. Android most commonly uses a technology called Chromecast. This 
technology is not exclusive to Android devices; the Chrome web browser and Chromebooks 
can also use this technology. Apple devices use a technology called AirPlay, which, again, is 
not exclusive to mobile devices; it can be used with any of Apple’s products. 

The biggest problem is often that the device that you are casting to does not support the 
technology. You will need to check the vendor’s documentation. In many cases, you can ret- 
rofit a monitor or television with a dongle. Google sells a dongle, simply called Chromecast, 
that can be plugged into any High-Definition Multimedia Interface (HDMI) port on the 
display. Apple also sells a device that performs AirPlay functions, called Apple TV. It also 
works with any HDMI port on the display. 

Assuming you have a device that is supported for the mobile device platform you are 
using, another common problem is connectivity. Both of these technologies work through 
wireless connectivity. So, you must be associated to the problem wireless network, and you 
need acceptable signal strength. This can be achieved as discussed previously in this chapter. 


Touch Screen Non-Responsive 


If your mobile device’s touch screen becomes non-responsive, it could be the symptom of 
a few common problems. The first problem could be that the device is frozen (locked up) 
and should be hard powered off and then back on. This can be performed on most Android 
phones by either removing the battery and then putting it back in or by following the 
vendor’s soft-reset procedure. 
A hard reset on a Samsung device is performed, as follows: 
1. Hold the power button and the volume down button for 12 seconds. 
This will power the phone down hard. 
2. Press the power button to start the device again. 
You will be prompted with a Maintenance Boot Mode message. 
3. From here, use the volume key to select from the following options: Normal Boot, 
Factory Reset, Safe Mode, or Power Down. 
4. Press the power key again to select the required mode. 
You can perform a hard reset on Apple devices by holding the power button and the 
volume down button for 10 seconds. After a few seconds, you should see the Apple logo, 
and the phone will boot per usual. 
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A hard reset means that the device’s power is removed from the phone via 

OTE external circuitry. This is similar to pulling the plug on your computer or 
holding the power button until it shuts off. A software reset (or soft reset) 
is a graceful shutdown of the operating system, such as with a desktop 
computer or mobile phone. 


Apps Not Loading 


If an application (app) does not load, it could be attributed to a multitude of reasons. One 
common reason is that the application is still running in the background and is not really 
loading; it is just becoming a foreground application and becoming the application in focus. 
When you close an application, it sometimes doesn’t close all the way down and free up 
memory. Instead, it gets moved to the background and is technically still running. 

The first thing you should try if an application is not loading is to force quit the appli- 
cation. To force quit an application on an Android device, press the tab view (usually the 
left-most soft button)and then swipe the application left or right to close. On Apple devices, 
double-tap the Home button or swipe up on the application you want to close. 

Another common problem related to applications not loading is that sometimes the 
cache associated with the application is corrupt. This usually happens right after an appli- 
cation upgrades itself, which is all the time on mobile devices. On an Android phone, you 
can clear the application’s cache by tapping Settings, then tap Apps, then choose the appli- 
cation, then tap Storage, and finally tap Clear cache. On Apple devices, tap Settings, then 
tap General, then tap iPhone Storage, choose the application, and finally tap Reset Cache 
on Next Launch. Clearing the cache will not affect the majority of the application’s storage. 

In many cases, an application will not allow you to clear its cache. If the option is not 
there or after you’ve cleared the cache and the application is still not loading, it is recom- 
mended to uninstall and reinstall the application. This option will (should) remove any data 
associated with the app. 

You can remove Android applications by tapping Settings, then tap Apps, then choose 
the application, and tap Uninstall. You can then visit the Google Play Store and reinstall 
the application. 

Apple is even simpler. All you need to do is tap and hold on an icon until all the icons 
dance back and forth. An X will be displayed in the upper-left corner of the application 
icon. Simply tap the X to uninstall the application. You can then visit the App Store and 
reinstall the application. 

If none of these solutions work, then it may be time to check the vendor’s site for any 
similar problems (and solutions) encountered by others. Support for applications on mobile 
devices is normally forum or community support. However, some paid mobile applications 
have email-based support. 


Slow Performance 


Slow performance is almost always related to RAM usage. Mobile operating systems oper- 
ate the same as conventional desktop or laptop operating systems. The only real difference 
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between traditional operating systems and mobile devices is the default action for an 
application is not to close it but to put it into the background. As programs are loaded into 
RAM, they allocate a percentage for their variables and inner workings. When RAM is 
filled up, the mobile device will swap background memory pages onto the built-in storage; 
this process is similar to the pagefile process. This slows down the device because now its 
focus is on clearing up memory for competing applications. 

Fortunately, most mobile devices allow you to see the RAM usage at a glance and over 
a longer period of time. On an Android device, tap Settings > Device Maintenance > 
Memory. You will see the memory usage for the device, along with each application and its 
own usage. You can also clear up memory from here, which basically just closes the appli- 
cations. Unfortunately, you cannot monitor RAM usage on an Apple mobile device, but a 
simple soft reset works just as well. 

It is uncommon to have a performance problem attributed to high CPU on a mobile 
device. That is not to say it doesn’t happen; it’s just uncommon. To narrow down problems 
with a particular application performing slowly, it is recommended to reboot the device and 
launch only that particular application, to isolate and monitor its performance. 


Unable to Decrypt Email 


Decryption of email is directly dependent on certificates used with the Secure/Multipurpose 
Internet Mail Extensions (S/MIME) protocol. Certificates were discussed in Chapter 22. 
The user’s private portion of the certificate key-pair is installed on the mobile device. The 
key-pair has an expiration or time period for which it is good. The first thing to check is 
that the key-pair has not expired and that the user does not require a new private key to be 
installed. 

Another, less common, problem is that the device’s time is off, and the key is not valid 
because the time is skewed. This is a simple thing to check. Just make sure that the date 
and time are within a few minutes of a reliable clock source, such as your home computer. 
If your device is not automatically adjusting the date and time, you should turn on the 
feature. On an Android phone, tap Settings > General Management > Date and Time > 
Automatic Date and Time. On an Apple device, tap Settings > General > Date & Time > 
Set Automatically. 


Extremely Short Battery Life 


Batteries never last as long as you would like. Apple defines battery life as the amount of 
time a device runs before it needs to be recharged (as opposed to battery life span, which 

is the amount of time a battery lasts before it needs to be replaced). Tips for increasing 
battery life include keeping OS updates applied (they may include energy-saving patches), 
avoiding ambient temperatures that are too high or too low, letting the screen automatically 
dim, and turning off location-based services. You should also disconnect peripherals and 
quit applications not in use. Wi-Fi, for example, uses power when enabled, even if you are 
not using it to connect to the network. 
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Outside of the preceding usage tips, sometimes battery life is attributed to a performance 
problem. High RAM usage can shorten battery life because power is expended on mov- 
ing pages of memory in and out of RAM. This is done to keep the foreground applications 
running. 


Overheating 


When most mobile devices get too warm, they will tell you that they need to cool down 
before they can continue to be used, and they will automatically take measures to protect 
themselves (turning off features, closing apps, and so on). 

One of the most concerning reasons is the lithium-ion (Li-ion) battery contained inside 
these devices. When a Li-ion battery gets too hot, you risk explosion or fire from a situation 
called thermal runaway. This is where the battery starts to get so hot that the separator 
inside the battery melts and causes a chain reaction. 

Luckily, mobile devices shut down when they get too hot from ambient temperatures 
or internal temperature from the CPU. One of the best ways to avoid overheating is to 
avoid ambient temperatures that are too hot. Avoid having the device in direct sunlight for 
extended time periods, in a hot car on a summer day, or on top of a heat source. When the 
device does overheat, you can often help it cool down quicker by removing any protective 
case that may be there—and putting it back on later. 








Mobile Device Overheating 


When a mobile device overheats, be sure to understand why it is overheating. Was the 
ambient temperature too hot? Was the CPU usage too high and indicative of another 
problem? Was it a combination of the two, or did you just leave it in the direct hot sun? 


When a lithium-ion battery is exposed to heat (even in small amounts), its useful life span 
will degrade. Most phones today have a built-in battery, which is not user-replaceable. 
When the battery goes bad, you are either tied to a charger every hour or it’s time for a 
new phone. 





Frozen System 


Frozen is a silly term that technicians use when something is not functioning or responding. 
It doesn’t really describe the temperature, just the functionality—a block of ice. 

If the system is frozen (not responding to a single thing), it will appear with the same 
symptoms as a non-responsive touch screen. One of the ways you can differentiate between 
a frozen system/lockup and a non-responsive touch screen is if the device will soft reset. If 
the device will not soft reset, then a hard reset (as explained in the section “Touch Screen 
Non-Responsive”) might need to be performed. 
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If the restart does not work, plug in the device, let it charge (an hour or more is 
recommended), and then try to restart it. The power level in the battery can sometimes 
be so low that performance is turned all the way down, and the device will appear 
unresponsive and frozen. 


No Sound from Speakers 


Occasionally, a device can be unknowingly put into silent mode, which will keep sound 
from being sent out of the speakers, headphones, or other connected devices. You can usu- 
ally raise the volume simply by clicking the up volume button. 

There are several different volume controls for sound. For example, Figure 24.55 shows 
a typical Android interface for sound controls. You can see that the Media sound is com- 
pletely off, whereas all the other volume controls are set to allow audio volume. 


FIGURE 24.55 Android audio volume controls 
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You can check the volume controls on an Android device by tapping Settings > Sounds 
and Vibration > Volume. On Apple devices, tap Settings > Sounds. An interesting thing 
with mobile devices and volume is that when a device is at the home screen, the volume 
keys will operate ringtone volume. When the device is playing media, the volume keys will 
switch to control media volume. When you are in a call, the buttons will switch again and 
control in-call volume. 

One setting that will override the volume controls is Do Not Disturb (DND) mode. Do 
Not Disturb mode is used during bedtime so that you are not awoken by an email notifica- 
tion in the middle of the night. You can check the status of Do Not Disturb mode in the 
status bar. On Android devices, it will display a circle with a slash. On Apple devices, it 
will display a half crescent moon. You can access the Do Not Disturb setting on Android 
devices by tapping Settings > Sounds and Vibrations > Do Not Disturb. On Apple devices, 
tap Settings > Do Not Disturb. 
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Inaccurate Touch Screen Response 


To solve problems with inaccurate touch screen responses, start by cleaning the screen and 
rebooting the device. Inaccurate touch screen responses are normally problems with the 
thin film above the LCD screen and under the protective glass, called the digitizer. The 
digitizer converts touches into digital signals the phone can understand and turn into taps 
and swipes. 

To test the digitizer on an Android device, you can use the built-in development 
tools. You can access these tools by tapping Settings, then About Phone, then Software 
Information, then tap the Build number seven times, then tap back twice, and finally tap 
Developer Options. From here, you can enable both Show Touches (to display where the 
display registered a touch) and Show Pointer Location (to register where your finger is 
detected). 

Apple devices do not have similar tools. You can download third-party applications to 
perform similar testing. 


If the digitizer is determined to be bad, sometimes the cost of a replace- 

A TE ment is as much as a new device. Although a digitizer can be replaced on 
its own from the LCD screen and protective glass, repair shops will only 
sell full replacements of all three components as one device. 


System Lockout 


Being locked out of a system can be a frustrating experience. The lockout can be the result 
of the device being disabled, a forgotten passcode, or any of a number of other possibilities. 
Apple outlines how to approach this for the iPhone, iPad, or iPod Touch at https: // 
support.apple.com/en-us/HT204306. Basically, you will need to do the following: 


1. Connect the device to the computer you originally synced with iTunes. 
2. Sync the device to make a complete backup. 
3. When the synchronization is complete, tap Restore on the device. 

You will be prompted with a Set Up screen. 


4. Tap Restore from iTunes Backup on the device, select your device, and choose the 
Backup option. 


This will restore the backup to the phone and allow you to set a new passcode. 
You can also enter into a recovery mode, as follows: 
Connect the device to your computer with iTunes. 


2. Perform a force restart on the phone by holding both volume up and down controls 
until you see the recover-mode screen. 


When you see the option to restore or update on the computer, choose Restore. 


Re-run the Set Up process. 
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Depending on the vendor and/or carrier of the phone, the steps for Android devices will 
vary significantly. The basics of recovering a lost password on Android are to factory reset 
the device and re-run the setup process. For example, a factory reset on a Samsung S8 will 
require you to do the following: 


1. Power down the device. 


2. Start the device by holding the power button, volume down button, and the Bixby but- 
ton at the same time. 


This will boot the device into an Android Recovery screen. 

Use the volume keys to select Wide Data/Factory Reset. 

Press the power button. 

Answer Yes to the confirmation prompt, and then press the power button again. 
The phone will reset, and you will need to run through the setup process. 


Data can be restored though a backup by the provider, by Samsung, or by Google. 








@) Real World Scenario 


Apple Device Crash Logs 


When an application crashes, the iOS on the Apple device keeps track of what happened 
leading to the application crash and stores it in a log. These crash logs are then automati- 
cally synchronized to iTunes. Reading these logs can help you determine why an applica- 
tion crashes on the device. 


Depending on the operating system you use, the application crash logs will be in 
various locations. On an Apple Mac, they will be in ~/Library/Logs/CrashReporter/ 
Mobi lLeDevice/. On a Windows operating system, they will be in C: \Users\username\ 
AppData\Roaming\Apple Computer\Logs\CrashReporter\Mobile Device\DeviceName. 
These files are text-readable files with detailed events leading to an application crash. 





Troubleshooting Mobile Security Issues 


While the preceding section—and its corresponding objectives—looked at mobile devices 
and focused on common OS and application issues, this section builds on that and focuses 
on security-related issues. Once again, it looks at common symptoms and tools, differ- 
ing only in that there is more of a focus on security. It needs to be pointed out, though, 
that CompTIA is stretching the definition of the word security to include more than many 
would. A fair number of the issues that appear in this section would easily have fit in the 
preceding section. 
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The following sections discuss common symptoms of problems with mobile operating 
systems and application-related security issues. As with so many issues involving trouble- 
shooting, common sense is most important. Using logic and a systematic approach, you can 
often identify and correct small problems before they become large ones. 


Signal Drop/Weak Signal 


Weak signals are a common culprit behind dropped signals. Obviously, as you move away 
from the source of the wireless signal, it will get weaker and weaker. In Chapter 22, we dis- 
cussed signal propagation outside of your organization. A malicious person will try to listen 
to wireless transmissions in an attempt to collect information. The ultimate goal is to try to 
compromise the network and gain private information. Of course, you want to make sure 
that this person can’t sit in the coffee shop or parking lot across the street and steal your 
information. Therefore, you need to keep signal strength low by the physical perimeter of 
the organization. This, of course, creates a weak signal and possible signal drop by clients. 

One strategy is to use a higher frequency, such as 5 GHz, and limit the usage of lower 
frequencies, such as 2.4 GHz. Remember, the lower the frequency, the farther the signal 
can travel. The higher the frequency, the less the signal will travel. Newer 802.11 protocols 
are being introduced at higher frequencies, such as 802.11ad and 802.11lay at a whopping 
60 GHz. These newer protocols will limit eavesdroppers and provider higher bandwidth. 
For now, however, you need to watch your placement of wireless access points (WAPs), 
limit power, and utilize 5 GHz frequencies for your SSIDs. 


Power Drain 


While applications, normal usage, and so on can contribute to power drain, another 
offender could be malware or a virus. Although we don’t want to think that a mobile device 
can contract a virus or malicious program (malware), it can! When you see power drain- 
ing quickly, you need to investigate the symptom by using the techniques discussed in the 
preceding section. Check RAM and CPU usage. If an application is out of control, it could 
be infected with malware. It is best to run an antivirus/anti-malware scan on the device to 
check it thoroughly. 

Not every problem is related to a possible security threat. The normal search for a cel- 
lular signal can be just as draining on power. However, if you are in the normal locations 
in your day-to-day travels, such as work and home, and the battery drains twice as fast 
as normal, you may have an application problem (out of memory) or a security threat. In 
either case, it needs to be checked out quickly—and not just to eliminate the anxiety of 
always looking for a charger. 


Slow Data Speeds 


Slow data speeds can be caused by too much interference, as pointed out earlier in this 
chapter. You should try changing the channel on Wi-Fi routers to less-used channels. You 
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should use 5 GHz channels wherever possible, since they are less susceptible to external 
interference sources, like microwave ovens. 

Specialized tools such as Wi-Fi Analyzer can help you to diagnosis the airspace for inter- 
ference and high utilization, as well as determine the strength and quality of the wireless 
signal. This tool can show you what is happening in the airspace, which you would nor- 
mally never see from a client. 

If a particular device is suffering from slow data speeds on wireless, then you should 
immediately look at the performance of the underlying hardware. However, if the prob- 
lem is strictly data speed, then you should have a closer look at the traffic on the device. 
Chapter 22 discussed the importance of mobile device firewalls. These applications 
don’t just keep traffic out of a device; they also keep traffic in a device. They achieve 
this by preventing application traffic from leaving the device unless it is previously 
authorized to do so. 


Unintended Wi-Fi Connection 


When autoconnect is enabled on a mobile device for a particular SSID, it opens the device 
to security threats. Unfortunately, we can live without autoconnect. If we had to connect 
our mobile devices to a wireless network everywhere we went, we would use up all our 
data just on our cellular plan. We have other things to remember, so autoconnect remains 
on for all of us. 

One exploit that is commonly used with autoconnect is the evil twin attack, as shown in 
Figure 24.56. With this attack, the threat agent sets up a WAP on the same SSID the victim 
is associated to. The threat agent then sends a deauthentication frame to the victim, which 
forces the victim to search for the SSID. Since the victim has autoconnect configured, the 
victim associates to the evil twin. The threat agent can now launch a man-in-the-middle 
(MitM) attack against the victim. 


FIGURE 24.56 An evil twin wireless attack 
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So, should you stop using autoconnect? No, not at all. You just need to educate your end 
users and instill vigilance. If a client consistently sees signal drops (during the deauthentica- 
tion), the issues should be investigated. Using wireless LAN controllers can also mitigate 
these issues, since they keep track of rogue access points. Wireless LAN controllers can 
shut down rogue access points by flooding them with deauthentication messages. 


Unintended Bluetooth Pairing 


When anonymous devices are allowed to connect to Bluetooth-enabled devices, this is 
known as unintended Bluetooth pairing, and it represents a security threat. When an 
unintended Bluetooth pairing occurs, the device paired can gain access to the information 
stored on the device. Bluetooth devices normally have access to our contacts, calendars, and 
sometimes even our credit cards. Mobile security policies should be created and enforced to 
prevent this from occurring. This can be achieved by restricting which devices can be paired 
with the mobile device and the level of access approved devices have access to. 


Leaked Personal Files/Data 


When authorized users access devices through unintended connections or unauthorized 
users access absconded devices, they can access the data on the device. Outside of these 
risks, there is always the risk of loss or theft of the device itself. 

Therefore, security related to mobile devices should be applied in a layered approach. 
Antivirus and anti-malware software should be installed on the device to protect it from 
malicious applications. In addition, a mobile firewall should be installed along with the 
antivirus and anti-malware software. Fortunately, there are third-party security suites that 
can protect you from all these threats. 

Mobile device management (MDM) software should also be employed. This software 
is like the Swiss Army knife of security for mobile devices. It can require passcodes, the 
installation of antivirus, anti-malware software, and/or mobile firewalls, current updates, 
and so much more. One of the most notable features is the ability to remotely wipe the 
device, in the event it is stolen or lost. 

In addition, there should be a firm policy that details the encryption of data in use, 
at rest, and in transit. A written policy should be drafted along with procedures on how 
to deal with leaks when they occur. These policies are usually drafted with an insurance 
company in order to protect an organization in the event there is a data leak of personal 
information. 


Data Transmission Over Limit 


Exceeding the limits on data plans can be symptomatic of a security problem. A malicious 
application running on the device could be used to send spam or malware, or conduct a 
multitude of other malicious activities. All of these activities can rob you of precious data in 
your data plan, pushing you over your contracted limits. 
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Excessive malicious use of data on a mobile device can be mitigated with two methods. 


= The first method is watching the normal usage of data from month to month. Identify- 
ing a normal baseline of usage can alert you when data usage is abnormal. 


= The second method is to use a mobile firewall, which limits the traffic leaving the 
mobile device. 


Unauthorized Account Access 


Unauthorized account access can give users access to personal files and data to which 
they should not have access. The most common unauthorized account access is email. A 
compromised email account can lead to further compromises, as password resets on other 
accounts often revolve around email. 

An audit log should be maintained and reviewed for abnormal activity. The idea with 
audit logs is to manage by exception. If a typical account is logging in during normal busi- 
ness hours, there is nothing interesting that should be reviewed. However, if the same 
account logs in at two difference places at the same time or outside of business hours, these 
are the security events that you want to see. Many different authentication systems allow 
for reports to be generated based on these exceptions. 


Unauthorized Location Tracking 


While location-based data can be very valuable when you are using maps and trying to 
find sites, it can also give away sensitive information if accessed by someone who should 
not have it. You can optimize your battery life and protect yourself by turning off Location 
Services. 

You can turn off Location Services on an Android device by tapping Settings, then 
Connections, then Location, and finally tap the switch to turn it off. On an Apple device, 
tap Settings > Privacy > Location Services. With both platforms, you will see each app 
listed along with its permission setting. Apps that recently used Location Services have an 
indicator next to the on/off switch, and you can configure them accordingly. 


Unauthorized Camera/Microphone Activation 


The camera and microphone can be activated remotely and allow a malicious individual to 
spy on you. When not in authorized use, the camera and microphone should be covered, to 
keep them from providing any data if they are remotely accessed. 

In many organizations, devices with cameras or microphones must be turned off com- 
pletely or checked into a locker during a visit. This is common practice for any sensitive 
government facility. This policy protects an organization in a few ways. It ensures infor- 
mation will not be photographed and conversations will not be recorded. These policies 
also safeguard the user in the event their phone is inadvertently compromised. If it’s not in 
the boardroom at the merger acquisition, then there is no potential for information to be 
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leaked. Lastly, it limits distractions. This is a tertiary benefit to limiting personal devices in 
the workplace. 

Many organizations that require employees to have mobile devices will employ MDM 
software. The MDM software can police the device to make sure that the camera is dis- 
abled, as well as the microphone. Certain MDM software packages can even create a 
geo-fence around the organization. When an employee enters in this area, it automatically 
disables these features. 


High Resource Utilization 


High resource utilization can be a telltale sign that a device is running more than you think 
it should be—perhaps the drives are being searched or the camera is recording your every 
move. Monitor for high resource usage. If you discover it, find out what is causing it and 
respond appropriately. 


Summary 


This chapter addressed systematic approaches to working with computer problems as well 
as troubleshooting operating systems and resolving security-related issues. In our discus- 
sion of troubleshooting theory, you learned that you need to take a systematic approach to 
problem solving. Both art and science are involved, and experience in troubleshooting is 
helpful but not a prerequisite to being a good troubleshooter. You learned that in trouble- 
shooting, the first objective is to identify the problem. Many times, this can be the most 
time-consuming task. 

Once you’ve identified the problem, you need to establish a theory of why the problem 
is happening, test your theory, establish a plan of action, verify full functionality, and then 
document your work. Documentation is frequently the most overlooked aspect of working 
with computers, but it’s an absolutely critical step. 

Next, we discussed operating system-—related troubleshooting issues. First, we looked at 
common symptoms, and then we discussed some tools that can be helpful in solving problems. 
Finally, we looked at security-related troubleshooting issues as well as best practices 
for removing malware. Again, we started by looking at common issues and then how to 

solve them. 


Exam Essentials 


Know the common symptoms and solutions for operating system problems. Be able to 
identify the five critical systems that interact with an operating system. Know the various 
symptoms that will lead to operating system problems. Also be able to identify the solutions 
to solve operating system problems. 
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Understand the various security issues related to operating systems. Be able to identify 
common security issues that you will see affecting operating systems. You should also 
understand the impact of these security issues on both the operating system and the organi- 
zation, as well as the common ways to mitigate and solve these security issues. 


Know the process to remove malware. Know the seven steps to remove malware. Be able 
to identify how to perform these seven steps during the malware-removal process. You 
should be familiar with the various tools used to identify and remove malware. 


Know how to troubleshoot mobile issues. Be able to identify the common symptoms of 
application-based issues for mobile devices. Know how to solve mobile issues for applica- 
tions on both Android and Apple devices. 


Understand mobile device security issues. You should have a good understanding of the 
various mobile device security symptoms, problems, and solutions. Be able to articulate 
how these issues pose a risk to the organization, as well as how these issues can be miti- 
gated and solved. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 
1. In Windows, which utility is responsible for finding, downloading, and installing 
Windows patches? 
A. Device Manager 
B. Microsoft Management Console 
C. Download Manager 
D. Windows Update 


2. Which Startup Setting option allows you to boot with basic drivers? 
A. Enable Debugging 
B. Enable Safe Mode 
C. Disable Driver Signature Enforcement 


D. Enable Low-resolution Video 


3. Which bootrec option can be used in Windows to rebuild the boot configuration file? 
A. /FIXBOOT 
B. /REBUILDBCD 
C. /SCANOS 
D. /FIXMBR 


4. What is the first step in the troubleshooting process for applications? 
A. Establish a theory. 
B. Identify the problem. 
C. Verify functionality. 


D. Document findings. 


5. Which tool do you use to create a restore point in Windows? 
A. Windows Backup 
B. Previous Version 
C. Windows Recovery Environment 
D. Windows Preinstallation Environment 
6. Which of the following components are only used to restore Windows from a suspended 
state? 
A. BCD 
B. ntoskrnl.exe 
C. winload.exe 
D 


winresume.exe 


10. 


11. 


12. 
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One of the users you support has a Windows 10 laptop that will not boot up. The user just 
installed brand new drivers for a graphics card. They need to access a tax application and 
their data files. What should you try first? 


A. 
B. 
C. 
D. 


System Restore 

Reset This PC. 

Reimage the laptop. 

Manually reinstall Windows 10. 


Which partitioning type is required when you have UEFI firmware? 


A. 
B. 
C. 
D. 


GPT 
MBR 
POST 


Boot Sector 


Which of the following are used to prevent pop-unders from appearing? 


A. 
B. 
C. 
D. 


Anti-malware utilities 
Pop-up blockers 
Phishing sites 


Antivirus software 


In general, how often should you update your antivirus definitions? 


A. 
B. 
C. 
D. 


Weekly 
Monthly 
Daily 


Antivirus definitions do not need to be updated. 


One of your users claims that their hard drive seems to be running slowly. Which tool can 
you use to check to see how fragmented the hard drive is? 


A. 
B. 
C. 
D. 


Disk Analyzer 
Disk Cleanup 
Optimize Drives 
chkdsk 


Which tool will allow you to diagnose why Windows Update keeps failing? 


A. 
B. 
C. 


ntbtlog.txt 

Windows Update Troubleshooter 
Windows Recovery Environment 
Safe Mode 
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13. 


14. 


15. 


16. 


17. 


18. 
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Which of the following programs could be considered anti-malware? 
A. Windows Defender Security 

B. MDM 

C. Windows Action Center 

D. VirusTotal 


Which of the following tools allows you to manually fix maliciously modified system files? 


A. regedit 
B. SFC 

C. bootrec 
D. UAC 


Which of the following can you do to help to eliminate security problems? (Select the best 
answer.) 


A. Establish security policies and procedures. 
B. Optimize drives. 
C. Prevent booting into Safe Mode. 


D. Prevent booting into Windows Recovery Environment. 


A mobile device is running out of RAM. What could be the most likely problem? 
A. The device is not charged to capacity. 

B. The digitizer is not functioning properly. 

C. The device is in DND mode. 

D. The device has background applications open. 


What is a risk of using the auto reconnect feature on a mobile device? 
A. The device will reconnect to any SSID. 

B. The device could be exploited by an evil twin attack. 

C. The device’s battery life could be shortened. 


D. You may exceed your cellular data plan’s limits. 


What is a potential security issue with WAPs running on full signal power? 
A. Client signal drops. 

B. Signals propagating past the physical organization’s perimeter 

C. Data transmission over limits 
D 


Unauthorized location tracking 
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19. Which is an example of possible unauthorized account access? (Choose the best answer.) 


20. 


A. 
B. 
C. 
D. 


A login during normal business hours 
A login to two different locations during normal hours 
A login outside of business hours 


A failed attempt at entering a password 


What is one consequence of an overheating mobile device? 


A. 


B. 
C. 
D 


Higher RAM usage 
Degraded battery life 
Inaccurate touch screen response 


Inability to decrypt emails 
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Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answers compare to the authors’, refer 
to Appendix B. 

List, in order, the seven best practice steps associated with malware removal. 


CompTIA® A+® Complete Study Guide, Fourth Edition 
By Quentin Docter and Jon Buhagiar 
Copyright © 2019 by John Wiley & Sons, Inc. 


Documentation and 
Professionalism 





THE FOLLOWING COMPTIA A+ 220-1002 
EXAM OBJECTIVES ARE COVERED IN 
THIS CHAPTER: 


vy 4.1 Compare and contrast best practices associated with 
types of documentation. 


= Network topology diagrams 
= Knowledge base/articles 
= Incident documentation 
=» Regulatory and compliance policy 
=» Acceptable use policy 
=» Password policy 
= Inventory management 
= Asset tags 


= Barcodes 


v 4.2 Given a scenario, implement basic change 
management best practices. 


= Documented business processes 
= Purpose of the change 
= Scope the change. 
= Risk analysis 
= Plan for change. 
a End-user acceptance 
a Change board 
= Approvals 
= Backout plan 


a Document changes. 





Y 4.3 Given a scenario, implement basic disaster 
prevention and recovery methods. 


= Backup and recovery 
= Image level 
= File level 
= Critical applications 
= Backup testing 
a UPS 
= Surge protector 
a Cloud storage vs. local storage backups 


=» Account recovery options 


vZ 4.7 Given a scenario, use proper communication 
techniques and professionalism. 


= Use proper language and avoid jargon, acronyms, and slang, 
when applicable. 


a Maintain a positive attitude/project confidence. 


a Actively listen (taking notes) and avoid interrupting 
the customer. 


= Beculturally sensitive. 
= Use appropriate professional titles, when applicable. 
a Be on time (if late, contact the customer). 
= Avoid distractions. 
a Personal calls 
= Texting/social media sites 
= Talking to coworkers while interacting with customers 
= Personal interruptions 
= Dealing with difficult customers or situations 
a Do not argue with customers and/or be defensive. 


= Avoid dismissing customer problems. 





= Avoid being judgmental. 


= Clarify customer statements (ask open-ended questions 
to narrow the scope of the problem, restate the issue, or 
question to verify understanding). 


= Do not disclose experiences via social media outlets. 


= Set and meet expectations/timeline and communicate status 
with the customer. 


= Offer different repair/replacement options, if applicable. 
a Provide proper documentation on the services provided. 


= Follow up with customer/user at a later date to verify 
satisfaction. 


= Deal appropriately with customers’ confidential and private 
materials. 


= Located on a computer, desktop, printer, etc. 





Every day at work, we do what it takes to get the job done. 

“= As IT professionals, we have millions of facts crammed into 
BEL: our heads about how various hardware components work and 
what software configuration settings work best for our systems. We know which servers 
or workstations give us constant trouble and which end users need more help than others. 
We are counted on to be experts in knowing what to do to keep computers and networks 
running smoothly. And even though we don’t tend to think about it overtly, we need to be 
experts in how we get things done as well. Even though the how might not be at the top of 
your mind every day (hopefully you don’t go to work every day thinking “Okay, don’t get 
killed by a monitor” or “Let’s see if I can be nice to someone today”), but it should be inte- 
grated into your work processes. Operational procedures define the how, and they provide 
guidance on the proper ways to get various tasks accomplished. 

In this chapter, we will start off by talking about documentation used to document the 
network and the policies that you will encounter and need to enforce. We will then look at 
change management practices used to make changes to the network that will affect other 
business units in your organization. 

We will also look at disaster prevention and the recovery. In the process, we will 
cover topics such as backup and recovery, power resiliency, and cloud storage versus 
local storage. 

In the final part of this chapter, we’ll switch to discussing professionalism and communi- 
cation and focus on topics that you need to know for your exam study. Applying the skills 
learned here will help you pass the exam, but on a more practical level, it will help you 
become a better technician and possibly further advance your career. 





Documentation and Change 
Management 


Creating documentation of the network and systems you work on is the last step to many 
projects. However, it is the most overlooked, or it is considered secondary to fixing new 
problems or upgrading to the next system. The documentation produced has positive effects 
on production and problem solving. It is used so that you don’t need to redo the step of 
discovery the next time you have a problem. Documentation also allows you to have others 
work on a problem with the same distinctive view you had at the time of documentation. 
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Some of the documentation you create will help to create policies and procedures that 
others will need to follow. Throughout this book, we have discussed the hard controls of 
these policies. For example, when you implement a password policy, you can dictate that a 
password be complex and of a certain length. A written policy is a soft control that might 
detail how to create a complex password. In this chapter, we will look at several different 
policies that you will come across as a technician. 

When you implement a new system or change an existing system, you affect a lot of 
people. You also affect business processes and other business units with these changes. 
Therefore, we will discuss change management and control processes in this chapter. 
Don’t underestimate the power of the documentation you will produce as a technician. It 
can and often will be used by change management groups to review the impact of your 
proposed changes. 


Network Topology Diagrams 


Documentation should be the last step of the work you perform. We can’t stress that 
enough. When you use documentation in respect to network troubleshooting, the docu- 
mentation allows you to understand a problem, and documentation is created as you collect 
information. You gain an understanding of the problem by synthesizing what you learn 
about a problem into a drawing on a page. This, in turn, allows you to understand how 
something works and why it works. This type of documentation is called a scratch diagram. 
It is not formal documentation; it’s just scratched out with a pen and paper, as shown in 
Figure 25.1. 


FIGURE 25.1 Scratch documentation 
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Although a scratch diagrams is great for diagnostics, it’s not meant to be the final formal 
documentation of a project or system. A finish diagram or documentation should be cre- 
ated in a program such as Microsoft Visio or SmartDraw. These are just a few examples of 
programs used for network documentation; there are many others out there. 

Regardless of which you program you choose, you should create all documentation in 
the program, and all your staff should have access for modifications. Figure 25.2 shows 
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the finish documentation that you might produce from the scratch documentation in 
Figure 25.1. This documentation is much more refined and would most likely be your final 
documentation at the end of a project, problem, or implementation of a network system. 


FIGURE 25. 


Client 1 


Client 2 


Client 3 


2 Finish documentation 





ft 


Switch 





Server 


Firewall 


Router 


There are some common symbols that you can use when creating either a scratch dia- 
gram or a finish diagram. The symbols shown in Figure 25.3 are universally recognized 
by network professionals. Although you can adapt your own symbols for variation, they 
should remain similar to those shown here so that someone does not have to ask you what 
something represents. 


FIGURE 25.3 Common networking symbols 
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Logical Diagrams 


1373 


Logical diagrams are useful for diagnostic purposes and for creating high-level docu- 
mentation. They allow you to see how a network works and represent the logical flow of 
information. In the logical diagram shown in Figure 25.4, you can see that Client 1 can 
communicate directly with the other computers on the same network segment. However, if 
Client 1 wants to communicate with Client 3, it must communicate through the router. 


FIGURE 25.4 A logical network diagram 
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Physical diagrams are also useful for diagnostic purposes and for creating precise documen- 
tation. Physical diagrams define a network’s physical connections. The physical documenta- 
tion details why a network works by detailing exactly how the information will flow. For 
example, in the physical diagram shown in Figure 25.5, you can see exactly how Client 1 is 
connected to the network and the devices it will traverse when it communicates with Client 3. 


FIGURE 25.5 A physical network diagram 
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Knowledge Base/Articles 


If an investment of time is spent on a problem, it’s worth documenting so that the same 
amount of time is not required by someone else or yourself in the future. A knowledge 
base is a collection of problems with solutions that both your internal customers (IT staff) 
and external customers (end users) can use to solve common problems. The Microsoft 
Knowledge Base is a great example of a knowledge base. It contains more than 200,000 
public articles and just as many that are private and accessible only by partners. Most help- 
desk software allows for the creation of a knowledge base article from the resolution of a 
problem. A knowledge base can become very large, so many knowledge bases allow key- 
word searches. 

Fortunately you don’t need fancy helpdesk software to create a knowledge base. You can 
simply have a collection of articles that are accessible to either your fellow technicians or 
end users. A knowledge base article should be clear and easy to understand. Make sure that 
you define any terms or jargon used within the article so that you don’t lose the audience it 
is intended for. Following are common elements of a typical knowledge base article: 


Title The title should represent the key symptom of the problem and be action-based. For 
example, if the problem were that the Num Lock key stays on after the system boots up, 
the title could be “Num Lock Enabled After Boot.” 


Introduction The introduction should explain, in plain language, what the rest of the 
article will cover. It should include the thesis of the problem as well as the systems affected 
by the problem. 


Symptom The symptoms section explains how to identify the symptoms of the problem. It 
assists the user in validating that the problem covered in the introduction is affecting their 
system. This section can include steps to reproduce the problem. For example, after a fresh 
bootup and login, your Num Lock key stays lit up. 


Solution The solution section contains the steps to fix the issue outlined in the introduc- 
tion. The solution should not be restricted to just one solution; many solutions can be 
detailed, as well as workarounds, if the primary solutions cannot be implemented. 


More Information The more information section contains a list of resources that were 
used to formulate the solution. This section is important because the symptoms might be 
similar to another problem or an unidentified problem. The resources listed will allow the 
technician to research the problem deeper. 


Date The date is important because it allows the reader to see if the problem is an old 
problem or newer problem, to gauge how relevant the solution is to the current problem. 


Author The author section allows for the technician reading the knowledge base to con- 
tact the original technician that created the knowledge base article. 


Although these are the most common elements for a knowledge base article, you are not 
constricted to only these elements. Whichever format you end up using for your knowledge 
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base articles, it is important to be consistent. A template should be drafted so that there 
is consistency. Consistency allows either the technician or end user to expect the elements 
when they review the article. 


Incident Documentation 


An incident is any event that is unusual or outside of the normal processes. You may 
encounter many different types of incidents as a technician: network security incidents, 
network outage incidents, and even customer service incidents. Regardless of which type of 
incident transpires, an incident document should be completed so that there is a record of 
the event. A record of the incident allows for further review after the incident has subsided 
so that it is not repeated. 

The incident document should be completed as soon as possible so that key details are 
not forgotten. This document is often used as an executive brief for key stakeholders in the 
company, such as C-level people—for example, the Chief Information Officer (CIO). The 
incident document can also be public-facing and used to inform customers of the incident. 
When used in this fashion, the incident document allows the organization to communicate 
with transparency for a major incident they may or may have not experienced. Chapter 26, 
“Safety and Environmental Concerns,” covers the processes and procedures for incident 
response in further detail. Following are some common elements of a network incident 
document: 


Date and Time The date and time of the incident is probably the most important, 
because several incidents could happen on the same day. The date and time allows you to 
distinguish between various incidents. The date and time should be referenced using the 
Universal Time Code (UTC) so that someone anywhere in the world does not need to cal- 
culate the time offset. 


Summary The incident summary is another important piece of information that should 
be documented. It will often be the first thing that is looked at because it describes the sum- 
mary of what happened during the incident. 


Root Cause The root cause is the ultimate reason the incident occurred. Every incident 
needs to have a root cause defined; otherwise, the incident could happen over and over 
again. The network team’s first responsibility is to identify the root cause. 


Actions Taken The actions taken are the actions that transpired during the incident to 
rectify the situation. Most of the time, they are temporary actions so that business can 
resume. 


Remediation The remediation is the ultimate fix that will repair the root cause of the inci- 
dent. This could be as simple as installing a patch, or it could be as complex as redesigning 
a network component. 


Services Impacted The services impacted section details all the network systems and busi- 
ness units that were impacted during the incident. This section defines the severity of the 
incident. 
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Recommendations The recommendations section details the next steps to take to remedi- 
ate the issue. It also details how to avoid similar incidents in the future. 


Although these are the most common elements to an incident document, the incident 
document is not limited to these elements. Each organization will have different needs for 
the process of reviewing network incidents. A template should be created so that there is 
consistency in the reporting of incidents. 


Regulatory and Compliance Policy 


You may wonder why it’s necessary to follow a certain procedure. The answer sometimes 
is that the procedure is an outcome of a law, otherwise known as a regulation. Laws are 
created at the federal, state, and local levels. The laws that are externally controlled and 
imposed on an organization are called regulations. Following are various regulations you 
may encounter while working in IT: 


Sarbanes-Oxley Act The Sarbanes-Oxley Act (SOX) affects publicly traded companies. It 
regulates how companies maintain financial records and how they protect sensitive finan- 
cial data. The Securities and Exchange Commission (SEC) enforces SOX compliance. 


Health Insurance Portability and Accountability Act The Health Insurance Portability 
and Accountability Act (HIPAA) affects health-care providers and providers that process 
health records. It regulates how a patient’s information is secured and processed dur- 

ing the patient’s care. HIPPA regulations are imposed on health-care providers to ensure 
patient privacy. The Department of Health & Human Services (HHS) enforces HIPAA 
compliance. 


Family Educational Rights and Privacy Act The Family Educational Rights and Privacy 
Act (FERPA) affects education providers and organizations that process student records. 
FERPA regulates the handling of student records, such as grades, report cards, and dis- 
ciplinary records, just to name a few. It was created to protect the rights of both students 
and parents for educational privacy. The Department of Education enforces FERPA 
compliance. 


Gramm-Leach-Bliley Act The Gramm-Leach-Bliley Act (GLBA) affects providers of 
financial services. GLBA requires financial institutions that offer products and services, 
such as loans, investment advice, or insurance, to safeguard customer information and 
detail the practices for sharing consumer information. It was created to protect consumer’s 
information and loss of consumer information. The Federal Trade Commission (FTC) 
enforces GLBA compliance. 


Your organization must comply with these regulations, or you could risk fines or, in 
some cases, even jail time. Your organization can comply with regulations by creating 
internal policies. These policies will have a major influence on processes and ultimately 
procedures that your business unit in the organization will need to follow, as shown in 
Figure 25.6. So, to answer the question of why you need to follow a procedure, it’s often 
the result of regulations imposed on the organization. 
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FIGURE 25.6 Regulations, compliance, and policies 
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The overall execution of policies, processes, and procedures when driven by regulations 
is known as compliance. Ensuring compliance to regulations is often the responsibility of 
the compliance officer in the organization. This person is responsible for reading the regu- 
lations (laws) and interpreting how they affect the organization and business units inside 
of the organization. The compliance officer will then work with the business unit direc- 
tors to create a policy to internally enforce these regulations so that there is compliance. 
An audit process often is created so that adherence to the policy can be reported upon for 
compliance. 

Once the policy is created, the process can then be defined or modified. A process com- 
prises numerous procedures, or direct instructions for employees to follow. Figure 25.7 
shows a typical policy for disposing of hazardous waste. 





FIGURE 25.7 Policy, process, and procedure 
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The process of decommissioning network equipment might be one of the processes 
affected by the policy. Procedures are steps inside of a process, and these, too, are 
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affected (indirectly) by the policy. As the example shows, a regulation might have been 
created that affects the handling of hazardous waste. To adhere to compliance, a hazard- 
ous waste policy was created. The process of decommissioning equipment was affected 
by the policy. As a result, the procedures (steps) to decommission equipment have been 
affected as well. 


Acceptable Use Policy 


An acceptable use policy (AUP) is an internal policy used to protect an organization’s 
resources from employee abuse. Employees use a number of resources to conduct an organi- 
zation’s business. Email is one such example. It is generally not acceptable for an employee 
to use an organization’s email for religious, political, or personal causes, illegal activities, 
or commercial use outside of the organization’s interest. 

An organization’s legal counsel, human resources department, and IT department are 
responsible for developing the AUP. The systems that should be included in the AUP are 
telephone, Internet, email, and subscription services that the organization retains. The AUP 
might not be exclusive to electronic resources; the organization might also include postage 
and other non-electronic resources that could be abused. 


Password Policy 


As a network administrator, you are familiar with the hard controls of a password policy. 
Users can be required to change their password every 90 days, to make their password 
complex, and not to reuse a password. However, the more cumbersome the password 
policy, the more likely users will resort to lax security practices, such as writing down their 
password. 

The soft controls of a password policy should be drafted between the human resources 
department and the IT department. The document should detail the expected conduct by 
employees regarding their passwords. The document should outline various expectations, 
including the following: 


a Passwords should never be shared among employees, for accountability reasons. 


= Passwords should never be disclosed to others, including IT personnel, for privacy 
reasons. 


a Passwords should never be written down. 
= Passwords should not be guessable, such as using the date it was changed (Password-04019). 


An organization’s password policy should consider the sensitivity of the information 
users are exposed to. The sensitivity of the information should dictate the requirements for 
how often passwords should be changed, their length, and their complexity. For example, 
a user who handles accounts payables should adhere to a stricter password policy than a 
laborer. 
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Inventory Management 


Inventory management has two specific purposes: to trace assets and to allow IT to inter- 
nally account for replacement and upgrades. 

Every company has fixed tangible assets, such as land, furniture, and equipment. The 
management of the computer and network equipment is (obviously) the responsibility of 
the IT department. When equipment is initially purchased, the accounting department will 
record it as an asset on the company’s general ledger, because it adds to the value of the 
company. Over time, however, the asset will lose its initial value. The accounting depart- 
ment will depreciate the value of the asset based on its perceived lifespan. The IT depart- 
ment should work directly with the accounting department when assets are destroyed or no 
longer function, as they will no longer be assets. 

All computer and network equipment should be tracked, from the cradle to the grave, by 
the IT department. When equipment enters the company, it should be labeled with an asset 
tag, as shown in Figure 25.8. The asset tag is often a permanent metallic sticker or metal- 
lic plate that is riveted to the equipment. The asset tag will often have a barcode, which 
defines the numeric number that identifies the asset. This asset tag should then be entered into 
the asset management software, by either typing in the number or scanning the bar code. The 
asset management software is often a module of the accounting package used by the company. 
This software allows an asset (equipment) to be tracked by associating a number on the 
asset tag with the condition, business unit, and perceived value of the equipment. 


FIGURE 25.8 Anassettag 
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The IT department also uses inventory management to assess upgrades and the replace- 
ment of assets. Inventory management is used when a patch or update to firmware needs 
to be installed. An inventory management system will create a report of how many systems 
are affected. Another example is a report of all client systems with their installed amount 
of RAM, for the purposes of software upgrade evaluations. This type of inventory manage- 
ment is more detailed than a purchasing record. These applications are often internal IT 
systems that collect data from the operating system through the use of an agent. 


Change Management Documentation 


Change management is a process often found in large corporations, publicly held corpora- 
tions, and industries such as financial services that have regulatory requirements. However, 
change management is not exclusive to these types of organizations. The main purpose of 
change management is to standardize the methods and procedures used to handle changes 
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in the company. These changes can be soft changes of personnel or processes, or hard 
changes of network services and systems. 

When changes are proposed to a process or set of processes, a document is drafted 
called the change management plan document. This document is used throughout the 
change management process to evaluate the impact to the business continuity of the organi- 
zation. In the following section, we will discuss the elements of a change management plan 
document. 


Documented Business Processes 


The documented business process is incorporated into the change management plan docu- 
ment. It allows an overview of the business process in which the changes are proposed to 
affect. It allows everyone involved in the process both directly and indirectly to understand 
the entire process. 

The documentation specifically defines who interacts with the business process, how 
they interact with the process, why they interact with the process, and when they interact 
with the process. For example, if your company created widgets, your documentation might 
detail the process of manufacturing the widget. The document would detail the following: 


= How the raw components enter the production line 

= Who delivers the raw materials 

=a When they deliver the raw materials 

= Who assembles the raw materials to create a finished product 
= Who inspects the finished product 

=a When and how the product is shipped 


Purpose of Change 


The purpose of change is the reason the change management process starts. Either your 
business unit requires a change that will affect others, or another business unit requires a 
change that can affect your business unit indirectly. A change to any part of the process, 
such as the intake of raw materials, could affect the end result. Change is an essential com- 
ponent of a business, and it should be expected. If your company only created widgets and 
never evolved, you would eventually be out of business. 

Unfortunately, not all changes support the company’s product line directly. Some 
changes are imposed on the company, because IT systems are constantly changing. As 
a technician, you are constantly upgrading and patching systems and equipment. These 
upgrades and patches are considered changes that can affect the entire business process. 

This section of the change management plan document should explain why the change 
is necessary. It should include any vendor documentation explaining the change to the 
product. For example, if the proposed change were to install a Microsoft Windows secu- 
rity patch, the purpose of the change would be the security of the Windows operating sys- 
tem. The vendor documentation in this example would be the knowledge base article that 
normally accompanies Windows security patches. Other examples of purposes of change 
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might be legal, marketing, performance, capacity, a software bug, or a process problem 
that requires a change. 


Scope of Change 


The scope of change details how many systems the proposed change will affect. The scope could 
involve only one system, or it could be all the systems in an entire enterprise. The scope of change 
is not limited to the number of systems that will be changed. The scope of change can also 
describe how many people a proposed change will affect. For example, if you propose to change 
lines of code in an ordering system, the change could affect your sales people, the customers, 

and the delivery of the products. The scope of this change could impact the business continuity 
directly, if something goes wrong during the change. 

When creating this section of the change management plan documentation, be sure to 
document which systems the proposed change will affect, the number of systems the pro- 
posed change will affect, the number of people the proposed change will affect, as well as 
whether anyone will be directly or indirectly affected. Keep in mind that this section allows 
the change management team to evaluate how big the proposed change is. The scope of 
change should answer the following questions: 


a Who will the change affect? 
= IT resources 
a Other departments 
= Business units 
= Partners 
= Customers 
a What will the change affect? 
= IT systems 
= — Sites/locations 
a  Processes/procedures 
a Availability of systems 
=a Outage duration 
a What will be impacted? 
= Other proposed changes 
= System performance 
=a System capacity 


a Other resources (manpower, security, etc.) 


Risk Analysis 


Whenever a change is made to a system or equipment, there is the potential for the system 
or equipment to fail. The change could even cause another system or piece of equipment 
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to fail. In some circumstances, the change might be successful but inadvertently cause 
problems elsewhere in the business process. For example, if a change to an ordering system 
causes confusion in the ordering process, sales might be inadvertently lost. 

Risk analysis is the process of analyzing the proposed changes for the possibility of 
failure or undesirable consequences. Although you will include this section in the initial 
change management plan document, your sole risk analysis will be narrow in perspective, 
because you will focus on the process from the IT aspect. A change advisory board will 
perform a much larger risk analysis. This team will have a much larger perspective, since 
they come from various business units in the organization. 


Plan for Change 


The plan for change section of the change management plan document details how the pro- 
posed change will be executed. Steps should be detailed on the changes and the order of the 
changes. If changes were to be made in configuration files, switches, or routers, you would 
document the changes to the configuration and why each part of the configuration is being 
changed. Firmware changes would list the version being upgraded from and the version 
being upgraded to. The idea is to provide as much detail about the documented changes to 
be made to the systems or equipment. 

When a change is implemented or planned, there is always the potential for problems or 
you may identify a consideration in the execution of the plan. The plan for change section 
should detail those considerations. It’s common for a primary plan to be drafted as well 
as an alternate plan, in the event the primary plan cannot be executed. For example, if the 
primary plan were to move a server from one rack to another so that it can be connected to 
a particular switch, the alternate plan could be to leave it in the rack and use longer cables. 
Be sure to have multiple plans; once the change is approved, the plan(s) outlined in this 
document must be executed closely. 

You should also document why the primary plan will succeed. The changes should be 
tested in a lab environment closest to the production environment (if possible) and docu- 
mented in this section as well. When creating the plan, you should outline specific, objec- 
tive goals, along with the metrics with which they can be measured. For example, if you 
are planning to make a change because there is a high error rate on an interface, then the 
metric measure to be compared would be the error rate on the interface. You would docu- 
ment what you expect the error rate to be after the change is made so that you can measure 
the success of change. 


Change Rollback Plan (Backout Plan) 


The rollback plan, also called the backout plan, describes the steps to roll back from a 
failed primary plan. If it were determined that the primary plan could not be completed, 
you would either implement an alternate (secondary) plan or a rollback plan, depending 
on the changes proposed in the change management plan document. Like the primary 
and alternate plans, the rollback plan should contain the steps to be taken in the event the 
rollback plan must be executed. The rollback plan should also document any changes to 
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configuration, so that it can be reverted back. Most of the rollback plan will consist of the 
original configuration, with any additional steps to revert it back. 


End-User Acceptance 


Although the CompTIA A+ exam does not focus on application development testing and 
approval, end-user acceptance is an objective on the exam as it pertains to the change 
management process. It should be noted that end-user acceptance is not solely used for 
application development; it is also used when there is a significant update to an interface or 
a process, such as a service pack or upgrade to an operating system. 

When a change is to be made in which the user’s interaction will be impacted, it is com- 
mon practice to beta-test the change. This is also known as end-user testing or just plain 
application testing. You can achieve end-user acceptance two different ways: 


In-Person Testing The person responsible for testing dedicates time and performs testing 
in person with the developer. 


Self-Paced Testing This has its advantages, since the user will be relaxed within their own 
environment during testing. 


Regardless of which method of testing you choose; a strict time frame must be commu- 
nicated to the user testing the change. 

Once end-user acceptance is obtained, it should be documented in the end-user accep- 
tance section of the change management documentation. The Methods of testing, the users 
and groups involved in testing, and the time invested in testing should be included in this 
section as well. Remember that the goal is the approval and successful implementation of 
the changes, so it is important that you are convincing, and more importantly convinced, 
that the change would succeed without repercussions. 


Change Board 


The change board, also known as the change advisory board, is the body of users that will 
ultimately evaluate and then approve or deny the change you propose. This group of people 
often meets weekly to discuss the changes detailed in the change management plan docu- 
ments. The goal of the change advisory board is to evaluate the proposed changes in order 
to reduce the impact on day-to-day operations of the organization. 

It is common practice for the meetings of the change advisory board to be held via a 
conference call at a set time every week. This allows key stakeholders in an organization to 
be available regardless of where they are in the world. Because it’s at a set time every week, 
there are no excuses for not being available during the change control meetings. 

It is likely that if you are the technician proposing the change, you will be on the call 
for questions or clarification. The key to getting a change approved is to know your audi- 
ence and communicate clearly in the change control plan document. Remember, the change 
advisory board is often composed of various stakeholders from the entire organization, not 
just IT. You should not assume that the change you are proposing is as clear to them as it is 
to you. Some change advisory boards are made up strictly of IT stakeholders, so you must 
understand who will review the proposed changes and choose your wording appropriately. 
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The change management document must be approved by the majority of change advi- 
sory board members or by specific board members. The approval of the proposed change 
should be documented in the change control policy for the organization. Only approved 
changes can be executed. If other changes need to be made, outside of the original submis- 
sion, additional approvals must be acquired. 


PP Each organization is different, and each change management documenta- 
A: tion process will be slightly different. However, the sections described here 
are the most common elements found on these documents. 


Disaster Prevention and Recovery 


As a technician you’re responsible for preventing disasters that could impact the organiza- 
tion. You’re also responsible for recovering from uncontrolled disasters. Luckily, you can 
prevent disasters by taking the proper precautions, as we will discuss in the following 
sections. 

When you take steps to prevent disaster, you’ll find that you’re prepared when disaster 
strikes and can restore business continuity that much quicker. This section discusses the 
following types of disasters: 


a Data loss 
a Power-related issue 


Both of these types of disasters have the potential for data loss and work stoppage. 


Data Backups 


When we think of data backups, we usually relate them to disasters. However, data backups 
are not just used to restore from disaster; we often use data backups when a user inadver- 
tently deletes files they shouldn’t have deleted. Data backups are also used when users over- 
write files or just plain forget where they put them in the first place. Regardless of how the 
data was lost, the underlying reason we create data backups is to recover from data loss. 

Because you can’t choose the disaster or situation that causes the loss of data, you should 
adopt a layered strategy, starting with the user and expanding outward to the infrastruc- 
ture. The following sections cover several different types of strategies that can protect you 
from data loss. 


File Level Backups 


Most of the time, your users will need to restore a single file or perhaps a few files, but defi- 
nitely not the entire server or server farm. Therefore, you should make sure that one of the 
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layers of protection allows for the restoration of individual files. You can implement this type 
of strategy several different ways. Depending on your resources, you should use them all. 


Volume Shadow Copy 


Volume Shadow Copy, also known as the Volume Snapshot Service (VSS), has been an 
integral part of the Windows server operating system since the release of Windows 2000. 
Volume Shadow Copy can be enabled on a volume-by-volume basis. Once it’s turned on, 
all the shares on the volume are protected. You can access Volume Shadow Copy by right- 
clicking a volume and selecting Properties. You can then configure it by using the Shadow 
Copies tab, as shown in Figure 25.9. 


FIGURE 25.9 The Shadow Copies tab 
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Volume Shadow Copy has one amazing advantage: It empowers the user to restore their 
own files. All the end user needs to do is right-click the file or empty space in the shared 
folder, then select Properties and Previous Version tab. This will open a list of snapshots, 
as shown in Figure 25.10. The user can then double-click the snapshots to open them as if 
they were currently on the filesystem. This allows the user to evaluate what they are look- 
ing for. Once they find what they are looking for, they can either click the Restore button 
or drag the files over to the current folder. 
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FIGURE 25.10 The Previous Versions tab 
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One limitation to Volume Shadow Copies is the number of snapshots that can be active. 
Only 64 snapshots can be active at one time. The oldest snapshot is deleted when a new 
snapshot is created, to maintain a running total of 64 snapshots. By default, Volume 
Shadow Copy is not enabled. When it is enabled, the default schedule creates a snapshot 
twice a day, at 7 a.m. and 12 p.m. It’s advisable to set a schedule that creates a snapshot 
every hour during normal business hours. This will give the user the last 64 hours of work, 
which could be well over a week and a half, if you were open 9-5. 


File-Based Backups 


File-based backups are a common type of backup in organizations today and have been 
since the introduction of backup software. The Windows server operating system includes a 
backup program capable of protecting the local server, as shown in Figure 25.11. It is some- 
what limited, because it only supports a file-based destination and does not offer options 
for data tapes. It also only allows for the management of the local server. However, the 
product is free and is included with the server operating system, so there is no reason not to 
have some type of backup. 
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FIGURE 25.11 Windows Server Backup 
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Advanced backup software, such as Veeam Backup & Replication and Veritas Backup 
Exec, allows for the centralized management of all backups. Multiple backup jobs can be 
created for various groups of servers and can be directed to various destinations. For exam- 
ple, the accounting servers might back up to a tape library unit, whereas the sales servers 
back up to a disk storage unit. We’ll discuss media type later in this chapter, but the key 
take-away is that multiple jobs can be created and executed at the same time. 

Advanced backup software often requires a licensed agent to be installed on each server. 
Depending on the type of agent purchased, the agent might just allow for a simple backup 
of files, or it might allow for open files to be backed up while they are in use. Some agents 
even allow for the snapshot of all files, so that a point-in-time image can be made of the 
filesystem. The backup is then created from the snapshot. This type of backup is common 
in financial institutions, where an end-of-day cutoff needs to be created. 

Advanced backup software normally performs a pull of files from the selected source 
server and directs the information to the selected media. This is called the pull backup 
method, and it is probably the most common type of backup you will encounter. 
However, there are also push backup methods, in which the backup software directs the 
selected source server to push the files to the destination media using the backup server. 
This reduces the utilization on the backup server and speeds up the backup process, also 
known as the backup window. 


Image-Based Backups 


Image-based backups allow for a complete server to be backed up. This type of backup is 
also called a bare-metal backup. It’s called a bare-metal backup because if the server hard- 
ware were to fail, you would restore the backup to a new server (bare-metal) and restore 

it completely. The inherent problem with these types of restorations is that they require 
administrator intervention. However, the technology is impressive and spares you from 
reinstalling the server from scratch. 
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Virtualized environments are where image-based backups really add value. 
Virtualization is changing the landscape of IT, and the area of backups is no different. 
When a server is virtualized, the guest virtual machine consists of configuration files, a 
virtual filesystem file, and other supporting files. When access is given to the underlying 
filesystem where the files can be directly accessed, they can be backed up. This allows for 
an image to be created for the current state of an operating system—files and all. 

Most enterprise backup software supports image-based backups for an additional 
license fee. It normally requires an agent to be installed on the host operating system, such 
as Microsoft Hyper-V. In VMware environments, a VMware Consolidated Backup (VCB) 
proxy is required. This application proxy allows the backup software to create snapshots 
for the guest virtual machines and assists in backing up the virtual machine files. 


Critical Applications 


So far, we’ve discussed how to use file server backups to protect an organization. However, 
an organization does not rely solely on file servers; there are many other types of servers in 
an organization. Examples include Microsoft SQL, for databases, and Microsoft Exchange, 
for email. In addition, there are several other types of applications that might be custom to 
an organization. 

Just like file servers, Microsoft SQL and Microsoft Exchange have custom agents that 
are licensed. These agents allow for the data contained in the proprietary data stores to be 
backed up to your backup media. In addition to the backup of data, the agent will start a 
maintenance process at the end of a backup. This maintenance process will check the con- 
sistency of the current data store by replaying transaction logs, also called tlogs. 

Critical applications for an organization do not have to be on-site. As organizations 
adopt a cloud-based approach to IT, they push critical applications out of the network 
and into the cloud. Providers such as Amazon Web Service (AWS) and Microsoft Azure 
can provide not only the critical applications but also backup services that are contained 
in the cloud. 


Data Restoration Characteristics 


When discussing the restoration of data, two characteristics dictate when you back up and 
how you back up. The concept of the recovery point objective (RPO) defines the point in 
time that you can restore to in the event of a disaster. The RPO is often the night before, 
since backup windows are often scheduled at night. The concept of the recovery time 
objective (RTO) defines how fast you can restore the data. 


Backup Media 


When creating a backup job, you choose what you want to back up (source) and a destina- 
tion where it is to be stored. Depending on the backup software, you may have several dif- 
ferent destinations to select from. Examples include iSCSI storage area networks (SANs), 
network-attached storage (NAS), tape library units (TLUs), or even cloud-based storage, 
such as Amazon S3. These are just some examples; there are many different media options 
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for storing backups. Each backup media option uses a specific media type, and each media 
type has unique advantages and disadvantages. Following are the three media types com- 
monly used for backups: 


Disk-to-Tape Disk-to-tape backups have evolved quite a bit throughout the years. Today, 

Linear Tape-Open (LTO) technology has become the successor for backups. LTO can pro- 
vide 6 TB of raw capacity per tape, with plans for 48 TB per tape in the near future. Tapes 

are portable enough to rotate off-site for safekeeping. However, they require time to record 
the data, resulting in lengthy overall backup time. Restore requires time to tension the tape, 
locate the data, and restore the data, making the RTO a lengthy process. 


Disk-to-Disk Disk-to-disk backups have become a standard in datacenters as well because 
of the short RTO. They can record the data quicker than traditional tape, thus shortening 
overall backup time. They also do not require tensioning and seeking for the data, like a 
tape requires. 


The capacity of a disk, however, is much smaller than a tape because the drives remain 

in the backup unit. Data deduplication can provide a nominal 10:1 compression ratio, 
depending on the data. This means that 10 TB of data can be compressed on 1 TB of disk 
storage. So, a 10 TB storage unit could potentially back up 100 TB of data. Again, this 
depends on the types of files you are backing up. The more similar the data, the better the 
compression ratio. 


Disk-to-Cloud Disk-to-cloud is another popular and emerging backup technology. It 

is often used with disk-to-disk backups to provide an off-site storage location for end-of- 
week backups or monthly backups. The two disadvantages of a disk-to-cloud backup is the 
ongoing cost and the lengthy RTO. Anytime you want to restore data, you must download 
the data from the cloud. Depending on your Internet connection speeds, this could require 
some time. The advantage is that expensive backup equipment does not need to be pur- 
chased along with the ongoing purchase of tapes. 


Backup Methods 


There are several options for creating file-based backup jobs. Each backup method has 
advantages and disadvantages, depending on the media you are using and the amount of 
time in your backup window. Following are several of the backup methods you will find 
primarily with file-based backups: 


Full A full backup is just that: a full backup of the entire dataset. A full backup requires 
the longest backup window of all the methods, because it is the slowest. Therefore, full 
backups are generally performed on weekends, when you have a lengthy window. All files 
are backed up, regardless of the state of the archive bit. The archive bit is an attribute of 
each file; when a file is created or modified, the archive bit is turned on. When a full backup 
is performed, all the archive bits are reset on the files in the dataset. A full backup is not 
sustainable through the week because it backs up all the files, regardless of whether they 
have been modified. 
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Incremental An incremental backup is used to speed up backups through the week when 
backup windows are short. An incremental backup will back up all files with the archive bit 
set. After the files are backed up, the archive bit will be reset. Only the files that were cre- 
ated and modified from the last full or prior incremental backup are backed up, so backups 
are small. If you need to restore from an incremental, however, you will need to restore the 
full backup as well as all of the incremental backup files up to the RPO required. This type 
of restore will create a longer RTO because of the multiple backups that are required. 


Differential A differential backup is also used to speed up backups through the week. It 
will back up all the files with the archive bit set as well, but it will not reset the archive bit 
after it has done so. A differential will create a gradually larger backup until a full backup 
is completed and the archive bits are reset again. This type of backup will have a shorter 
RTO than incremental backups, because only the full and the last differential are needed to 
restore to the RPO required. 


Copy A copy backup is used when you want to make an exact copy of the server. This 
backup method is identical to a full backup, with the exception that it does not reset 
archive bits. This backup method is often used when you want to make a copy of a server 
before a major upgrade. This backup method allows you to create a backup without affect- 
ing an ongoing nightly backup. 


Backup Testing 


Over the years, we’ve seen fellow administrators rely on their backups, up to the point 
they try to restore them. It’s a very different story when they fail during a critical moment. 
Fortunately, this only happens to you once, and then you adopt testing strategies. You 
should not consider data on a backup to be safe until you have proven that it has been 
restored successfully. There are so many things that can go wrong with a restore, with the 
most common being media failure. 

We recommend that you perform a restore of your backup at least once a month. 
This will allow you to verify that you actually have data that is restorable, in the event 
of an emergency. Many backup products will allow you to schedule a test restore. The 
test restore will actually restore the data and compare it to what is on the backup media. 
When it’s done testing the restore, it will delete the restored data and notify you of any 
discrepancies. 


Battery Backup/UPS 


An uninterruptable power supply (UPS) is a battery backup system that allows for power 
conditioning during power sags, power surges, and power outages. A UPS should be used 
only until a power generator can start supplying a steady source of power. For workstations 
and server installations where backup generators are not available, the UPS allows enough 
time for systems to shut down gracefully. 

UPSs are most often used incorrectly as a source of power generation during a power 
outage. The problem with this scenario is that there is a finite amount of power in the 
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battery system. It may allow you some time to stay running, but if the power is out for too 
long, the UPS will shut down when its batteries are depleted. 

UPS systems should be used to supply power while a power generator is starting up. This 
protects the equipment during the power sag that a generator creates during its startup 
after a power outage has triggered it. 

There are several types of UPS systems. The main types are as follows: 


Standby UPS This is the most common UPS that you find under a desk protecting a personal 
computer. It operates by transferring the load from the AC line to the battery-supplied inverter. 
Capacitors in the unit help to keep the power sag to a minimum. These units work well, but 
they are not generally found in server rooms. 


Line-Interactive UPS This is commonly used for small server rooms and racks of net- 
working equipment. It operates by supplying power from the AC line to the inverter. When 
a power failure occurs, the line signals the inverter to draw power from the batteries. This 
might seem similar to a standby UPS, but the difference is that the load is not shifted. In a 
standby UPS, the load must shift from AC to a completely different circuit (the inverter), 
whereas on a line-interactive UPS, the inverter is always wired to the load, but only during 
the power outage is the inverter running on batteries. This shift in power allows for a much 
smoother transition of power. 


Online UPS An online UPS is the standard for datacenters. It operates by supplying AC 
power to a rectifier/charging circuit, which maintains a charge for the batteries. The batter- 
ies then supply the inverter with a constant DC power source. The inverter converts the DC 
power source back into an AC power circuit again, which supplies the load. The benefit of 
an online UPS is that the power is constantly supplied from the batteries. When there is a 
power loss, the unit maintains a constant supply of power to the load. The other benefit is 
that the online UPS always supplies a perfect AC signal. 


Power Generators 


Although power generators are not an objective on the 220-1002 exam, for completeness, 
we want to discuss them in contrast to UPSs. Power generators supply a constant source 
of power during a power outage. Power generators consist of three major components: 
fuel, an engine, and a generator. The engine burns the fuel to turn the generator and cre- 
ate power. The three common sources of fuel are natural gas, gasoline, and diesel. Diesel 
fuel generators are the most common type of generator supplying datacenters around 

the world. However, natural gas generators are common for small businesses and home 
installation. 

As mentioned in the previous section, generators require a startup period before they 
can supply a constant source of electricity. In addition to the startup period, there is also a 
switchover lag. When a power outage occurs, the transfer switch moves the load from the 
street power to the generator circuit. UPSs help to bridge both the lag and sag in electricity 
supply during the switchover and startup periods. 
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Surge Protection 


The power specification in North America is around 120 volts 60 Hz alternating current 
(AC). Normally, your voltage will be plus or minus 10 volts from 120 volts. Most equip- 
ment is rated for this variance in electricity. A power surge, however, can be upward of 
500 volts for a split second, which is where damage to your equipment occurs. 

A power surge can happen for a number of reasons. Two common reasons are lightning 
strikes and power company grid switches. A lightning strike is probably the most common 
reason for power surges during a storm. When the lightning hits near an electrical line, it 
will induce a higher voltage, which causes the surge. After a storm is over, you are still not 
safe from power surges. When the electrical company transfers a load back on with the 
power grid switches, a brief surge can sometimes be seen. 

Luckily, you can protect yourself from power surges with surge protection. Surge protec- 
tion can be implemented two different ways: point-of-use and service entrance surge pro- 
tection. Surge protectors, UPSs, and power conditioners are all point-of-use devices, with 
surge protectors being the most common and obvious point-of-use device used for protec- 
tion. Surge protectors look like common power strips but have protection circuits built in 
that can suppress up to 600 joules of energy. Many of them have coaxial protection for 
cable modems and telephone jacks, as shown in Figure 25.12. Some surge protectors even 
have RJ-45 network jacks, to protect your network equipment. 


FIGURE 25.12 Acommon surge protector 





Service entrance surge protection, also called a transient voltage surge suppressor 
(TVSS), is normally installed by your electric company. It is commonly installed between 
the electrical meter and the circuit breaker box, to protect you from any surges from the 
power grid. Most of these devices can handle over 1,000 joules of surge. These devices 
often come with a type of insurance from the electric company. In the event you suffer a 
power surge and your electronics are damaged in the process, you can submit a claim for 
reimbursement of the damaged equipment. Every electric company is different, so you 
should check before you contract these services. Figure 25.13 shows an example of a large, 
industrial service entrance surge protection unit. 
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FIGURE 25.13 An industrial service entrance surge protection unit 
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A single joule is equal to the energy required to produce 1 watt of electric- 


OTE ity continuously for 1 second. Ohm’s law states that a watt is equal to volt- 
age multiplied by amperage. During a power surge, voltage can exceed 
700 joules. 


Account Recovery Options 


Disaster can strike in several different ways and is not limited to data loss or power prob- 
lems. A critical admin or user account can be inadvertently deleted or you may simply for- 
get the password. Fortunately, there are several different options, depending on the type of 
account involved. 


Online Accounts 


Starting with Windows 8, the push to use Microsoft accounts as your primary login has 
been emphasized by Microsoft. When you set up Windows for the first time, the default is 
to use a Microsoft online account. A Microsoft account allows you to download content 
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and applications from the Microsoft Store. It also allows you to recover your account by 
using Microsoft services. When you sign up for a Microsoft account, you’re asked for 
backup email accounts and even your cell phone number for text messages. All these alter- 
nate methods of contact make it easier to recover your account if you lose your password. 


Local Accounts 


If you are using a local account to log into the operating system, your options will be 
slightly limited. Fortunately, starting with Windows 10 version 1803, there is a built-in 
option to recover a password for a local account. During the setup of the administrator 
account, the operating system will ask you three security questions. If the password is ever 
forgotten, you simply need answer the security questions you provided during setup to reset 
the password, as shown in Figure 25.14. 


FIGURE 25.14 Windows 10 security questions 
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If the local account is deleted or the password is forgotten and you are not running 
Windows 10 version 1803 or later, then your only option is to perform a System Restore 
on the operating system to restore the affected account. Unfortunately, if the user account 
is completely deleted, a System Restore will not bring back the user files. It will, however, 
restore the local user account, after which a traditional restore from it can be performed. 


Domain Accounts 


You have several options with domain accounts versus local accounts. The first and most 
obvious option is that with domain accounts you have other privileged accounts. These 
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other privileged accounts can reset passwords if they are forgotten or locked out after too 
many unsuccessful attempts. 

If an account is deleted, you have several options as well, but they require that you’ve 
taken preventative measures before the account is deleted. The first option for account 
recovery with domains is the use of the Active Directory Recycle Bin. The Recycle Bin 
feature first appeared in Windows Server 2008 R2, so you must be running this version of 
Windows Server or later. A second requirement is having the Recycle Bin enabled, since it is 
not enabled by default. Once the Recycle Bin is enabled, if an Active Directory user account 
is deleted, it will show up in the Deleted Objects container. All you need to do is right-click 
the object and choose Restore. 

Another way to restore Active Directory objects is from backup. Almost all Windows 
backup utilities have a provision for the backup of Active Directory. Even the Windows 
Backup utility allows for the backup of Active Directory, by selecting the backup of the 
System State data on the domain controller. In the event that an object is deleted, most 
backup products will allow you to restore the individual user account with a few clicks. 

If you are using the Windows Backup utility, you must perform an authoritative restore, 
which is a little more complicated than a few clicks. The following is an overview of the steps 
to perform an authoritative restore with a backup program that supports only the restore of 
System State, such as the Windows Backup utility: 


1. Stop the Active Directory Domain service by using the command net stop ntds. 
2. Restore the latest System State backup. 

3. Use the ntdsutil utility to update the object you need to restore. 

4 


Reboot the server. 


Demonstrating Professionalism 


As a professional technician, you need to possess a certain level of technical competence, or 
you'll quickly find yourself looking for work. Technical ability alone isn’t enough, though; 
there are many people out there with skills similar to yours. One thing that can set you 
apart is acting like a true professional and building a solid reputation. As the noted investor 
Warren Buffet said, “It takes 20 years to build a reputation and 5 minutes to ruin it. If you 
think about that, you'll do things differently.” 

You could probably break down professionalism a hundred different ways. For the A+ 
220-1002 exam, and for the purposes of this chapter, we’re going to break it down into two 
critical parts: communication and behavior. 

Good communication includes listening to what the user or manager or developer is 
telling you and making certain that you understand completely. Approximately half of 
all communication should be listening. That a user or customer may not fully understand 
the terminology or concepts doesn’t mean they don’t have a real problem that needs to be 
addressed. Therefore, you must be skilled not only at listening but also at translating. 
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Professional behavior encompasses politeness, guidance, punctuality, and accountability. 
Always treat the customer with the same respect and empathy that you would expect if the 
situation were reversed. Likewise, guide the customer through the problem and the expla- 
nation. Tell them what has caused the problem they are currently experiencing and the best 
solution for preventing it from reoccurring in the future. 


Communicating with Customers 


The act of diagnosis starts with the art of customer relations. Go to the customer with an 
attitude of trust. Believe what the customer is saying. At the same time, retain an attitude 
of hidden skepticism; don’t believe that the customer has told you everything. This attitude 
of hidden skepticism is not the same as distrust. Just remember that what you hear isn’t 
always the whole story; customers may inadvertently forget to provide some crucial details. 


One of the best ways to become proficient in communicating with 
P customers is to put yourself in the shoes of the novice user. None of us 


are experts in every field, so think of an area where you are weak—auto 
repair or home repair, for example—and imagine how you would want a 
professional in that area to communicate with you. 


For example, a customer may complain that their CD-ROM drive doesn’t work. What 
they fail to mention is that it has never worked and that they installed it. On examining the 
machine, you realize that they mounted it with screws that are too long, preventing the tray 
from ejecting properly. 

Here are a few suggestions for making your communication with the customer easier: 


Use proper language. End users are likely to be less computer literate than you—that’s 
why you are there to fix the problem. Therefore, they might not know computer acronyms, 
slang, or jargon. In fact, the excessive use of computer terms might make them feel stupid 
(and make the situation uncomfortable) or make you seem aloof. It’s always best to start 
off with basic terms, such as “Where does it plug into?” If the user answers, “Oh, it’s an 
eSATA SSD,” then you know you have the freedom to use more technical terms. Users with 
computer knowledge will often let you know. Users with little knowledge may be afraid to 
tell you that they don’t understand something because they don’t want to look dumb. 


Have the customer reproduce the error. The most important part of this step is to have 
the customer show you what the problem is. The best method we’ve seen of doing this is 

to ask, “Show me what ‘not working’ looks like.” That way, you see the conditions and 
methods under which the problem occurs. The problem may be a simple matter of doing an 
operation incorrectly or performing the operation in the wrong order. During this step, you 
have the opportunity to observe how the problem occurs, so pay attention. 


Identify recent changes. The user can give you vital information. The most important 
question is, “What changed?” Problems don’t usually come out of nowhere. Was a new 
piece of hardware or software added? Did the user drop some equipment? Was there a 

power outage or a storm? These are the types of questions that you can ask a user when 
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trying to find out what is different. If nothing changed, at least outwardly, then what was 
going on at the time of the failure? Can the problem be reproduced? Is there a workaround? 
The point here is to raise as many questions as you need to ask in order to pinpoint the 
source of the trouble. 


Use the collected information. Once the problem or problems have been clearly identified, 
your next step is to isolate possible causes. If the problem cannot be clearly identified, then 
further tests will be necessary. A common technique for hardware and software problems 
alike is to strip the system down to bare-bones basics. In a hardware situation, this could 
mean removing all interface cards except those absolutely required for the system to oper- 
ate. In a software situation, this may mean disabling elements within Device Manager. 


Generally, then you can gradually rebuild the system toward the point where the trouble 
started. When you reintroduce a component and the problem reappears, you know that 
component is the one causing the problem. 


Customer satisfaction goes a long way toward generating repeat business. If you can 
meet the customer’s expectations, you will most likely hear from them again when another 
problem arises. However, if you can exceed the customer’s expectations, you can almost 
guarantee that they will call you the next time a problem arises. 





A Real World Scenario 


Communication Is Key 


Marriages disintegrate when couples do not communicate effectively—or so many 
experts proclaim. Communication is ranked as one of the most important skills needed to 
make a marriage work. The same can be said for business partnerships. It is important to 
make certain that you are listening to your customers, whether they are truly customers 
in the traditional sense of the word or internal users that you support. You also need to 
listen carefully to managers and vendors and make sure that you understand them before 
beginning a project. 


Similarly, you need to make certain that the parties in question understand what you are 
saying to them. It isn’t acceptable to resort to the “But | told you...” excuse when custom- 
ers or partners aren't pleased with the results. Making certain that they understand what 
you are telling them is as important as making certain that you understand what they are 
telling you. 








Customer satisfaction is important in all communications media—whether you are on- 
site, providing phone support, or communicating through email or other correspondence. If 
you are on-site, follow these rules: 


=» When you arrive, immediately look for the person (user, manager, administrator, and 
so on) who is affected by the problem. Make sure that the user knows you are there 
and assure that person that you will do all you can. Project a positive attitude and con- 
fidence that you can resolve their problem. 
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= Listen intently to what your customer is saying and avoid interrupting them. Make it 
obvious that you are listening and respecting what they are telling you. 


If there is a problem with understanding the client, go to whatever lengths you need to 
in order to remedy the situation. Look for verbal and nonverbal cues that can help you 
isolate the problem. Taking notes is also helpful. Make sure to say something to the 
user like, “I’m listening, and I am going to write down a few notes just to make sure I 
remember everything.” 


= Share the customer’s sense of urgency. What may seem like a small problem to you can 
appear to your customer as if the whole world were collapsing around them. 


= Be honest and fair with the customer and try to establish a personal rapport. Explain 
what the problem is, what you believe the cause is, and what can be done in the future 
to prevent the problem from recurring. 


=a Handle complaints as professionally as possible. Accept responsibility for errors that may 
have occurred on your part and never try to pass the blame elsewhere. Avoid arguing 
with a customer; it serves no purpose. Resolve the customer’s anger with as little conflict 
as possible. Remember, the goal is to keep the customer, not to win an argument. 

= When you finish a job, notify the user that you have finished. Make every attempt to 
find the user and inform them of the resolution. If you cannot find the customer, leave 
a note explaining the resolution. 


You should also leave a means by which the customer can contact you if they have any 
questions about the resolution or a related problem. In most cases, you should leave 
your business number and, if applicable, your cell phone number, in case the customer 
needs to contact you after hours. 


You should also notify both your manager and the user’s manger that the job has been 
completed. 


If you are providing phone support, keep the following guidelines in mind: 


= Always answer the telephone in a professional manner, announcing the name of the 
company and yourself. 


=a Using the customer’s name can help build rapport. Using it in every sentence can sound 
condescending, but using it once in a while can make you seem more personable. 


a Make a concentrated effort to ascertain the customer’s technical level and communi- 
cate at that level, not above or below it. 


= The most important skill that you can have is the ability to listen. You have to rely 
on the customer to describe the problem accurately. They cannot do that if you are 
second-guessing or jumping to conclusions before the whole story is told. Ask broad 
questions to begin, and then narrow them down to help isolate the problem. 


It is your job to help extract the description of the problem from the user. For example, 
you might ask the following questions: 


= Is the printer plugged in? 
a Is it online? 


= Are there any lights flashing on it? 
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Complaints should be handled in the same manner that they would be handled if you 
were on-site. Make your best effort to resolve the problem and not argue. Again, your 
primary goal is to keep the customer. 


Close the incident only when the customer is satisfied that the solution is the correct 
one and the problem has gone away. 


End the phone call in a courteous manner. Thanking the customer for the opportunity 
to serve them is often the best way. 


Talking to the user is an important first step in the troubleshooting process. Your 
first contact with a computer that has a problem is usually through the customer, either 
directly or by way of a work order that contains the user’s complaint. Often, the com- 
plaint is something straightforward, such as, “There’s smoke coming from the back of 
my monitor.” At other times, the problem is complex, and the customer does not men- 
tion everything that has been going wrong. Regardless of the situation, always approach 
it calmly and professionally, and remember that you get only one chance to make a good 
first impression. 








A Real World Scenario 


Communication Is Everywhere 


Almost every profession stresses the importance of good communication, and the IT 
industry is no different. Jamie Walters, founder and chief vision and strategy officer for 
Ivy Sea, Inc., and Sarah Fenson, Ivy Sea's guide to client services, wrote an article for 
Inc.com on steps to smooth conversations (www. inc.com/articles/2000/08/20000.htm1) 
that included the following advice: 


n Don’t take things personally. If someone acts inappropriately toward you, just react 
in a calm manner. They are likely responding that way because of outside factors. 


= Admit when you don’t know the answer to something. It’s okay to defer to somebody 
else or tell the user or customer that you'll have to look into their complaint and will 
get back with them as soon as possible. 


a Itis better to validate someone's feeling or respond to the information that they have 
given to you than to react to them. For instance, if somebody complains that a help 
ticket has not been handled in a timely manner, tell them that you understand how 
they feel and will look into it, instead of reacting in a defensive manner. 


a Don’t let your personal opinions or feelings get in the way of the real complaint. Try 
to put yourself in the user's or customer's shoes. 


= Be sympathetic. If you need a user to leave their laptop with you overnight, tell them 
that you realize it’s frustrating and apologize. 





1400 Chapter 25 = Documentation and Professionalism 








=a Try to provide a solution from which you both can benefit. Look for commonalities 
between you and the client, and work to find a solution that is agreeable to both of you. 


= Try to be as informative as possible when discussing a solution to their problem. 
Most people are uncomfortable with change, so explaining the benefits of a particu- 
lar solution might help ease this discomfort. 


= Try to keep a positive attitude and be optimistic. 


=a Always work on your listening skills! 





Using Appropriate Behavior 


Critical to appropriate behavior is to treat the customer, or user, the way you would want 
to be treated. Much has been made of the Golden Rule—treating others the way you would 
have them treat you. Six key elements to this, from a business perspective, are punctuality, 
accountability, flexibility, confidentiality, respect, and privacy. The following sections dis- 
cuss these elements in detail. 


Punctuality 


Punctuality is important and should be a part of your planning process. If you tell the 
customer that you will be there at 10:30 a.m., you need to make every attempt to be 
there at that time. If you arrive late, you have given them false hope that the problem 
will be solved by a set time. That can lead to anger because it can appear that you are 
not taking the problem seriously. Punctuality continues to be important throughout 
the service call and does not end with your arrival. If you need to leave to get parts and 
return, tell the customer when you will be back, and be there at that time. If for some 
reason you cannot return at the expected time, alert the customer and tell them when 
you can return. 

Along those same lines, if a user asks how much longer the server will be down 
and you respond that it will up in five minutes only to have it down for five more 
hours, the result can be resentment and possibly anger. When estimating downtime, 
always allow for more time than you think you will need, just in case other problems 
occur. If you greatly underestimate the time, always inform the affected parties and 
give them a new time estimate. To use an analogy that will put it in perspective: If 
you take your car to get an oil change and the counter clerk tells you it will be “about 
15 minutes,” the last thing you want is to be still sitting there four hours later. If you 
ever feel that you won’t be able to meet the timeline you proposed, communicate that 
as quickly as possible. It’s better to over-communicate than to have users wondering 
where you are. 

Exercise 25.1 is a simple drill that you can modify as needed. Its purpose is to illustrate 
the importance of punctuality. 
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Understanding Punctuality 


1. Consider this scenario: You call someone important in your life—your spouse, a par- 
ent, an in-law, or a close friend—and tell them that you have something very impor- 
tant that you need to discuss. You give that person no other details but ask them to 
meet you in exactly one hour at a location familiar to both of you. 


2. Now imagine that you waited two hours before showing up. 


3. What would be that person’s reaction? How would that person feel about having 
to wait for you? What kind of an impact would it have on the person’s mood and 
behavior? 


This is an interaction with someone who matters in your life. Imagine how it would affect 
a customer who does not know you. Punctuality can go a long way toward keeping dialog 
pleasant between two parties. 


Accountability 


Accountability is a trait that every technician should possess. When problems occur, you 
need to be accountable for them and not attempt to pass the buck to someone else. For 
example, suppose you are called to a site to put a larger hard drive into a server. While 
performing this operation, you inadvertently scrape your feet across the carpeted floor, 
build up energy, and zap the memory in the server. Some technicians would pretend the 
electrostatic discharge (ESD) never happened, put the new hard drive in, and then act 
completely baffled by the fact that problems unrelated to the hard drive are occurring. An 
accountable technician would explain to the customer exactly what happened and suggest 
ways of proceeding from that point—addressing and solving the problem as quickly and 
efficiently as possible. 

Accountability also means that you do what you say you’re going to do, ensure that 
expectations are set and met, and communicate the status with the customer. Here are 
some examples of ways to be accountable: 


= Offer different repair or replacement options, if they’re available. 
= Provide proper documentation on the services that you provided. 


= Follow up with the customer at a later date to ensure satisfaction. 


The last one is the most overlooked, yet it can be the most important. Some techni- 
cians fix a problem and then develop an “I hope that worked and I never hear from 
them again” attitude. Calling your customer back (or dropping by their desk) to ensure 
that everything is still working right is an amazing way to build credibility and rapport 
quickly. 
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Flexibility 


Flexibility is another trait that’s as important as the others for a service technician. You 
should respond to service calls promptly and close them (solve them) as quickly as you 

can, but you must also be flexible. If a customer cannot have you on-site until the after- 
noon, you must make your best effort to work them into your schedule around the time 
most convenient for them. Likewise, if you are called to a site to solve a problem and the 
customer brings another problem to your attention while you are there, you should make 
every attempt to address that problem as well. Under no circumstances should you give a 
customer the cold shoulder or not respond to additional problems because they were not on 
an initial incident report. 


You should always follow the express guidelines of the company you work 
OTE for as they relate to flexibility, empowerment, and other issues. 


It’s also important that you are flexible in dealing with challenging or difficult situa- 
tions. When someone’s computer has failed, they likely aren’t going to be in a good mood, 
which can make them a “difficult customer” to deal with. In situations like these, keep in 
mind the following principles: 


Avoid arguing or being defensive. Arguing with the customer—about anything—is only 
going to make the situation worse. The customer may be mad and may be yelling at you, 
but don’t argue back, act defensive, or take their comments personally. Try to defuse the 
situation by calmly reminding them that you’re there to help and you want to understand 
what’s going on so you can do that. They may need to vent for a bit, so let them to do that. 
Just focus on doing what you need to do to resolve the problem. 


Don’t minimize their problems. Although the customer’s problem might seem trivial to 
you, it isn’t to them. Treat the problem as seriously as they’re treating it. Keep in mind that 
facial expressions and body language are also important. If someone tells you their prob- 
lem and you look at them like they’re delusional, they’re probably going to pick up on that, 
which can make the situation worse. 


Avoid being judgmental. Don’t blame or criticize. As previously mentioned, focus on 
what needs to happen to fix the problem. Accusing the user of causing the problem does 
not build rapport. Even seemingly innocent statements such as “What did you do to the 
computer?” can be considered judgmental and put the customer on the offensive. Stick with 
more neutral language, such as, “Can you help me understand what happened?” 


Focus on your communication skills. If you have a difficult customer, treat it as an oppor- 
tunity to see how good a communicator you really are. (Maybe your next job will be a 
foreign ambassador.) Ask non-confrontational, open-ended questions. “When was the last 
time it worked?” is more helpful than “Did it work yesterday?” or “Did you break it this 
morning?” These can help you narrow down the scope of the problem. 
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Another good tactic here is to restate the issue or question to verify that you understand. 
Starting with “I understand that the problem is...” and then repeating what the customer 
said can show empathy and proves that you were listening. If you have it wrong, it’s also 
a good opportunity to let your customer correct you so that you’re on track to solve the 
right problem. 


Confidentiality 


The goal of confidentiality is to prevent or minimize unauthorized access to files and fold- 
ers and disclosure of data and information. In many instances, laws and regulations require 
confidentiality for specific information. For example, Social Security records, payroll and 
employee records, medical records, and corporate information are high-value assets. This 
information could create liability issues or embarrassment if it fell into the wrong hands. 

Over the last few years, there have been a number of cases in which bank account and 
credit card numbers were published on the Internet. The loss of confidence by consumers 
due to these types of breaches of confidentiality can far exceed the actual monetary losses 
from the misuse of this information. 


w Confidentiality entails ensuring that data expected to remain private is 
P seen only by those who should see it. Confidentiality may be implemented 
through authentication and access controls. 

As a computer professional, you are expected to uphold a high level of confidentiality. 
Should a user approach you with a sensitive issue—telling you their password, asking for 
assistance obtaining access to medical forms, and so on—it is your obligation as a part of 
your job to make certain that information goes no further. 


P Confidential materials on workspaces and printers should always be 


‘Qa protected. 


As part of confidentiality, don’t ever disclose work-related experiences via social media. 
You might have had a terrible day and really want to say something like, “Wow, the people 
at XYZ company sure are insufferable morons,” but just don’t do it. It’s not professional, 
and it could expose you to legal action. 


Respect 


Much of the discussion in this chapter is focused on respecting the customer as an indi- 
vidual. However, you must also respect the tangibles that are important to the customer. 
While you may look at a monitor that they are using as an outdated piece of equipment that 
should be scrapped, the business owners may see it as a gift from their children when they 
first started their business. 
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Treat the customer’s property as if it had value, and you will win their respect. Their 
property includes the system you are working on (laptop/desktop computer, monitor, 
peripherals, and the like) as well as other items associated with their business. Avoid using 
the customer’s equipment, such as telephones or printers, unless it is associated with the 
problem you’ve been summoned to fix. 

Another way to show respect is to focus on the task at hand and avoid distractions. For 
example, you should avoid the following: 


= Personal calls 
= Texting or social media sites 
= Talking to co-workers while interacting with customers 


= Personal interruptions 


As for texting or talking to co-workers, there may be times when it’s appropriate for you 
to do so based on the situation. The key is to find the right time to do it and, if appropriate, 
tell the customer what you are doing. For example, after gathering information, you might 
say something like, “Do you mind if I give my co-worker Jen a quick call? The other day 
she told me about a situation she had that sounded exactly like this, and I want to see if her 
fix worked well.” But then make the call quick and business-focused. 


The Customer Respect Group (www. customerrespect.com) measures 

A TE the behavior of corporations and the respect they give to customers 
through their websites. Items such as privacy, responsiveness, attitude, 
simplicity, transparency, and business principles are combined to cre- 
ate a Customer Respect Index (CRI) ranking. The items they rank in the 


online world are just as important in the offline world and mirror those 
presented here. 


Respecting the customer is not rocket science. All you need to do—for this exam and 
in the real world—is think of how you would want someone to treat you. Exercise 25.2 
explores this topic further. This exercise, like Exercise 25.1, can be modified to fit your pur- 
pose or constraints. Its goal is to illustrate the positive power of the unexpected. 


Surprise Someone 
1. Pick a random, toll-free number used for business solicitation and call it. 


2. Chat with the operator for a few moments about the company’s product or service, 
and then ask to speak to the supervisor. 


3. When the supervisor comes on, commend the operator you were talking to for the 
job that he or she has done. 
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It is likely the operator became confused when you asked to speak to the supervisor; 

this almost always occurs only in a negative situation. How did the operator handle the 
request? Did it change the tone of the communication that was taking place? Did they fulfill 
your request even though they feared they could lose from it? Did the supervisor respond 
by expecting negative comments? How was the positive information you offered accepted? 


Ideally, this illustrated the importance of staying professional and keeping the channel 
of communication open even in a tough situation. You should be able to adapt this to the 
workplace when a customer asks to speak to your superior or has another request that is 
difficult for you to fulfill. 


One last area to consider that directly relates to this topic is that of ethics. Ethics is the 
application of morality to situations. While there are different schools of thought, one of 
the most popular areas of study is known as normative ethics, which focuses on what is 
normal or practical (right versus wrong and so on). Regardless of religion, culture, and 
other influences, there are generally accepted beliefs that some things are wrong (stealing, 
murder, and the like) and some things are right (for example, the Golden Rule). You should 
always attempt to be ethical in everything you do, because it reflects not only on your char- 
acter but also on your employer. 


Privacy 


While there is some overlap between confidentiality and privacy, privacy is an area of 
computing that is becoming considerably more regulated. As a computing professional, 
you must stay current with applicable laws because you’re often one of the primary agents 
expected to ensure compliance. 

Although the laws provide a minimal level of privacy, you should go out of your way 
to respect the privacy of your users beyond what the law establishes. If you discover 
information about a user that you should not be privy to, you should not share it with 
anyone, and you should alert the customers that their data is accessible and encourage 
them—if applicable—to remedy the situation. This includes information that you see on 
their computer, on their desk, on printers, or anywhere else in their facility. 








@ Real World Scenario 


A Little Goes a Long Way 


The following examples of respecting and disrespecting the customer come from one of 
the authors’ own experiences: 


“My wife and | were in an unfamiliar part of Chicago without ready access to a vehicle 
when we started to get hungry. | am a meat-and-potatoes man, and | rarely take a chance 
on anything else. There were no restaurants of that type around, however, and we wound 
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up at an Asian grill. Expecting not to like the buffet, we ordered a side of lettuce wraps 
and then two buffets and drinks. As it turned out, | liked the buffet a great deal, and | went 
back through the line many times. We also liked the drinks and got several of those. 


Everything was great, except the waiter forgot to bring the lettuce wraps. | dismissed 

it and made a mental note to inform the waiter when he brought the bill and have him 
deduct them from our tab. Instead, the manager brought the bill over when we were fin- 
ished eating, and he had scribbled on it ‘no charge.’ When | asked him why, he apologized 
that no one brought the wraps and said he hoped we would come back another time. | was 
beside myself with disbelief and thanked him profusely, and since then | have told many 
people about that restaurant, describing it as the best place in Chicago | know of to eat. 


In avery different situation, while driving home one night, the ‘low tire pressure’ dash- 
board light came on. Upon inspection, | could hear the right-rear tire hissing. | drove 

to atire store and explained the situation. | had used this same tire store over the past 

14 years for tires, oil changes, exhaust, maintenance, and a number of other things on 

the vehicles I’ve owned. The manager came out and said that they found a nail in the tire. 
They removed the nail, patched the tire, and charged me $13. | was delighted, expecting it 
to cost much more, and so | paid the bill and went on my way. 


The next morning, | woke up to find the right-rear tire completely flat. | canceled the 
morning’s appointment, filled the tire with an air compressor, and drove back to the tire 
store. The manager came out and told me that they found another nail in that tire; they 
were going to eat the $13 on this one, but it had better not happen again. | could not 
believe the insinuation—that | was driving about looking for nails to hit with that one tire 
just so | could spend my morning taking them for $13! Instead of offering the possibility 
that they had overlooked a nail the previous night, apologizing for the inconvenience, or 
anything of that sort, he shifted the responsibility to me. Needless to say, | have not been 
back since, and all of my repair business is now done elsewhere.” 


These two examples illustrate two different approaches to treating the customer. In the 
first example, the customer is well respected and treated better than expected. In the sec- 
ond example, the customer is disrespected and is treated as an inconvenience. Given the 
lifetime value of customers, it is always better to respect them—and retain them—than to 
dismiss them offhandedly. 





Putting It All in Perspective 


Whether you are dealing with customers in person or on the phone, there are rules to which 
you should adhere. These were implied and discussed in the previous sections, but you must 


understand them and remember them for the exam. 


a Use standard language and avoid using jargon, abbreviations, and acronyms. Every 
field has its own language, and outsiders feel lost when they start hearing it. Put 
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yourself in the position of someone not in the field and explain what is going on by 
using words they understand. 


a Maintain a positive attitude and tone of voice, and project confidence. The customer 
is counting on you to fix their problem. The last thing they want is for you to sound 
defeated when you hear about the problem. 


= Listen to your customers and take notes. Allow them to complete their statements and 
avoid interrupting them. People like to know that they are being heard, and as simple 
an act as it is, this can make all of the difference in making them feel at ease with 
your work. 


Everyone has been in a situation where they have not been able to explain their prob- 
lem fully without being interrupted or ignored. It is not enjoyable in a social setting, 
and it is intolerable in a business setting. 


a Be culturally sensitive. Some people may have a language barrier that makes it difficult 
to explain their problem. (Think about how much computer language you learned in 
your high school language courses.) Others may have different habits or practices in 
their workplace. Be respectful of their world. In some cases, using the appropriate pro- 
fessional titles is a sign of respect, and not using them is an insult. 


= Beon time. If you’re going to be late, be sure to contact your customer. Not doing so 
indicates that you think their problem isn’t important. 


= Avoid distraction and/or interruptions when talking with customers. You need to make 
them feel that their problem is important and that it has your full attention. Distrac- 
tions can include personal calls, texting or social media, talking to co-workers, and 
other personal interruptions. 


= Exercise patience with difficult customers and situations. 
= Avoid arguing with customers and/or becoming defensive. 


a Do not minimize a customer’s problem. While it may be a situation you see every day, 
it is a crisis to them. 


a Avoid being judgmental and/or insulting or calling the customer names. 


a Clarify the customer’s statements and ask pertinent questions. The questions you ask 
should help to guide you toward isolating the problem and identifying possible solu- 
tions. Don’t be afraid to nod, ask questions, and repeat to the customer what you think 
they are saying to make sure that you understand it correctly. 


a Don’t vent about customers on social media. 


Set and meet—or exceed—expectations and communicate timelines and status. 
Customers want to know what is going on. They want to know that you under- 
stand the problem and can deal with it. Being honest and direct is almost always 
appreciated. 

Deal appropriately with confidential materials. Don’t look at files or printouts that 
you have no business looking at. Make sure the customer’s confidential materials stay 
that way. 
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Summary 


In this chapter, we covered various documentation types that you will encounter as a 
technician throughout your career. Some of the documentation is created from external 
regulations. This, in turn, creates policies, which dictates processes and procedures. You'll 
create some of the documentation as you are troubleshooting a problem and some of the 
documentation after fixing a problem. We also covered documentation often used with the 
change management process. 

Next, we looked at disaster prevention and recovery. The two main areas are data loss 
and equipment failure due to power issues. Data loss can be prevented with data backups and 
other user-facing strategies, such as Volume Shadow Copy. Power problems can be prevented 
with the appropriate use of uninterruptable power supplies and surge protection equipment. 

Finally, we moved on to professionalism and communication. You should treat your cus- 
tomers as you would want to be treated. Your actions and behavior should let them know 
that you respect them and their business. 


Exam Essentials 


Know the various types of network diagrams. Network documentation is used for both 
troubleshooting and documentation purposes. You should know the difference between 
physical diagrams and logical diagrams. Also be familiar with the various symbols you will 
see in these diagrams. 


Know the common documentation in a network. Incident documentation is created when 
a computer, network, or security incident has happened. You should be familiar with vari- 
ous elements of this documentation. The acceptable use policy (AUP) is a soft policy that 
protects an organization’s resources from employee abuse. The password policy is also a soft 
policy that describes best practices for password creation and expectations of the end user. 


Know the elements of change management documentation. Change management is 
adopted by organizations to standardize the methods and procedures for any changes in the 
organization. Change management documentation is an integral part of this process. It is 
used to document a change so that it does not impede the organization’s operations. 


Understand how to prevent disasters and recover from data loss. Data loss is the most 
common disaster an organization can suffer from on a day-to-day basis. You should 
understand how to prevent data loss with the implementation of data backups and other 
prevention methods. You should also understand how to protect an organization from 
power-related problems using uninterruptable power supplies and surge protection. 


Know proper communication techniques. Listen to your customers. Let them tell you 
what they understand the problem to be, and then interpret the problem and see if you can 
get them to agree to what you are hearing them say. Treat your customers with respect, 
whether end users or colleagues, and take their issues and problems seriously. Use profes- 
sionalism when working with customers, such as minimizing distractions, speaking in plain 
English, being punctual, and following up. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. You just finished repairing a network connection, and in the process you traced several 
network connections. Which type of documentation should you create so that another 
technician does not need to repeat the task of tracing connections? 


A. Logical diagram 
B. Knowledge base article 
C. Change management document 
D. Physical diagram 
2. You are executing the primary plan in the change management documentation and realize 
that you cannot proceed. Which section details the original configuration? 
A. Purpose 
B. Risk analysis 
C. Rollback 
D. Plan for change 
3. Which section of the change management documentation contains whom the change 
will affect? 
A. Business processes 
B. Scope of change 
C. End-user acceptance 
D. Plan for change 
4. You just had an outage of Internet connectivity. Which document should you complete so 
that stakeholders understand the reason for the outage? 
A. Change management documentation 
B. Knowledge base article 
C. Acceptable use policy 
D. Incident documentation 


5. Which regulation is enforced by the Securities and Exchange Commission (SEC) to regulate 
financial records and sensitive financial information? 


A. SOX 

B. FERPA 
C. HIPAA 
D. GLBA 
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6. You are currently troubleshooting a network issue. Which type of diagram allows you to 
view the flow of information from a high-level overview? (Choose the best answer.) 


A. Logical diagram 
B. Physical diagram 
C. Symbol diagram 
D. Knowledge base article 


7. End users are abusing the email system by selling personal items. Which policy would detail 
the proper use of the email system for business purposes? 


A. MDM 
B. Password policy 
Cc. AUP 


D. Incident management 


8. Which backup media is the fastest from which to recover? 
A. Disk-to-tape 
B. Disk-to-disk 
C. Disk-to-flash 
D. Disk-to-cloud 
9. You need to upgrade a server and want to make a backup of the data before you begin. 
Which backup method should you choose so that your normal backups are not affected? 
A. Full 
B. Copy 
C. Incremental 
D. Differential 
10. Which type of power protection is used between the electricity coming into the premises 
and the power meter, to protect from surges in electric? 
A. Surge protector strip 
B. Uninterruptable power supply 
C. Service entrance surge protection 
D. Generator 
11. You promised a customer that you would be out to service their problem before the end of 


the day but have been tied up at another site. As it now becomes apparent that you will not 
be able to make it, what should you do? (Choose the best answer.) 


A. Arrive first thing in the morning. 

B. Wait until after hours and then leave a message that you were there. 
C. Call the customer and inform them of the situation. 
D 


Email the customer to let them know that you will be late. 


12. 


13. 


14. 


15. 


16. 
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A user reports that a workstation has two significant problems that do not seem related. 
How should you approach these problems? 


A. Look for what the two problems would have in common. 

B. Assume that a virus is involved. 

C. Deal with each issue separately. 

D. Order a new machine. 

A customer is trying to explain a problem with their system. Unfortunately, the customer 


has such a thick accent that you are unable to understand their problem. What should you 
do? (Choose the best answer.) 


A. Just start working on the system and look for obvious errors. 

B. Call your supervisor. 

C. Ask that another technician be sent in your place. 

D. Apologize and find another user or manager who can help you translate. 

You have been trying to troubleshoot a user’s system all day when it suddenly becomes clear 


that the data is irretrievably lost. When you inform the customer, he becomes so angry that 
he shoves you against a wall. What should you do? 


A. Shove the user back, only a little harder than he shoved you. 

B. Shove the user back, only a little easier than he shoved you. 

C. Try to calm the user down. 

D. Yell for everyone in the area to come quickly. 

A customer tells you that a technician from your company spent three hours on the phone 
making personal calls. What should you do with this information? 

A. Nothing 

B. Inform your manager. 

C. Talk to the technician personally. 

D. Ask the customer to prove it. 

You arrive at the site of a failed server to find the vice president nervously pacing and 
worrying about lost data. What should you do? 

A. Offer a joke to lighten things up. 

B. Downplay the situation and tell him that customers lose data every day. 


C. Keep your head down and keep looking at manuals to let him know that you are 
serious. 


D. Inform him that you’ve dealt with similar situations and will let him know what needs 
to be done as soon as possible. 
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17. You are temporarily filling in on phone support when a caller tells you that he is sick and 
tired of being bounced from one hold queue to another. He wants his problem fixed, and he 
wants it fixed now. What should you do? 


A. 
B. 
C. 
D. 


Inform him up front that you are only filling in temporarily and won’t be of much help. 
Transfer him to another technician who handles phone calls more often. 
Try to solve his problem without putting him on hold or transferring him elsewhere. 


Suggest that he call back at another time when you are not there. 


18. At the end of the day, you finish a job only to find that the user you were doing it for had to 
leave. What should you do? (Choose two.) 


A. 
B. 
C. 
D. 


Clean up and leave no evidence that you were there. 
Leave a note for the user detailing what was done and how to contact you. 
Notify the user’s manager and your own manager that you have finished. 


Put the system back to its original state. 


19. A user on the phone does not seem to be able to explain her problem to you without using 
profanity. That profanity is making you unable to understand her problem. What should 
you do? (Choose the best answer.) 


A. 
B. 
C. 
D. 


Ask the user to refrain from the offensive language. 
Overlook the profanity. 
Hang up. 


Show her that you know just as many expletives as she does. 


20. Which of the following is not a benefit of implementing asset tags for inventory management? 


A. 


B. 
C. 
D 


Tracking of the equipment 
Scheduling the depreciation of the equipment 
Identifying assets 


Providing ownership of the equipment 


Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answers compare to the authors’, refer 
to Appendix B. 

A user has called in and explained they accidentally overwrote a file and need to retrieve 
the freshest copy of the file. Luckily, you have Volume Shadow Copy configured on the 
share where the file was overwritten. What are the steps to recover the file? 
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vJ 4.4 Explain common safety procedures. 
a Equipment grounding 
a Proper component handling and storage 
a Antistatic bags 
=» ESD straps 
a ESD mats 
= Self-grounding 
= Toxic waste handling 
= Batteries 
= Toner 
= CRT 
= Cell phones 
= Tablets 
= Personal safety 
a Disconnect power before repairing PC. 
a Remove jewelry. 
a Lifting techniques 
a Weight limitations 
= Electrical fire safety 


= Cable management 





a Safety goggles 
a Air filter mask 


a Compliance with government regulations 


Y 4.5 Explain environmental impacts and appropriate 
controls. 


a MSDS documentation for handling and disposal 


= Temperature, humidity level awareness, and proper 
ventilation 


= Power surges, brownouts, and blackouts 
= Battery backup 
a Surge suppressor 
= Protection from airborne particles 
a Enclosures 
a Air filters/mask 
= Dust and debris 
= Compressed air 
a Vacuums 


= Compliance to government regulations 


Y 4.6 Explain the processes for addressing prohibited 
content/activity, and privacy, licensing, and policy 
concepts. 


= Incident response 
a First response 
= Identify. 
a Report through proper channels. 
a Data/device preservation 
= Use of documentation/documentation changes 
a Chain of custody 


a Tracking of evidence/documenting process 





a Licensing/DRM/EULA 

= Open-source vs. commercial license 

a Personal license vs. enterprise licenses 
= Regulated data 

a Pll 

= PCI 

a GDPR 

= PHI 


= Follow all policies and security best practices 





In this chapter, we start off by talking about safety, which 

: includes your safety and the safety of your co-workers, as well 
DELSE SS as environmental concerns. Observing proper safety proce- 
dures can help to prevent injury to you or to others. 

Our discussion about the environment is two sided. The environment affects comput- 
ers (via things like dust, sunlight, and water), but computers can also potentially harm the 
environment. We’ll consider both sides as we move through this chapter. 

Next, we will cover some legal aspects of operational procedures. These include licens- 
ing of software, protection of personally identifiable information, and incident response. 





Understanding Safety Procedures 


The proliferation of computers in today’s society has created numerous jobs for technicians. 
Presumably that’s why you’re reading this book: You want to get your CompTIA A+ certi- 
fication. Many others, who don’t fix computers professionally, like to tinker with them as a 
hobby. Years ago, only the most expert users dared to crack the case on a computer. Often, 
repairing the system meant using a soldering iron. Today, thanks to the cheap parts, com- 
puter repair is not quite as involved. Regardless of your skill or intent, if you’re going to be 
inside a computer, you always need to be aware of safety issues. There’s no sense in getting 
yourself hurt or killed—literally. 

As a provider of a hands-on service (repairing, maintaining, or upgrading someone’s 
computer), you need to be aware of some general safety tips, because if you are not careful, 
you could harm yourself or the equipment. Clients expect you to solve their problems, not 
make them worse by injuring yourself or those around you. In the following sections, we’ll 
talk about identifying safety hazards and creating a safe working environment. 


Identifying Potential Safety Hazards 


Anything can be a potential safety hazard, right? Okay, maybe that statement is a bit too 
paranoid, but there are many things, both man-made and environmental, that can cause 
safety problems when you’re working with and around computers. 

Perhaps the most important aspect of computers you should be aware of is that not only 
do they use electricity, but they also store electrical charge after they’re turned off. This 
makes the power supply and the monitor pretty much off-limits to anyone but a repairper- 
son trained specifically for those devices. In addition, the computer’s processor and various 


Understanding Safety Procedures 1417 


parts of the printer run at extremely high temperatures, and you can get burned if you try 
to handle them immediately after they’ve been in operation. 

Those are just two general safety measures that should concern you. There are plenty 
more. When discussing safety issues with regard to PCs, let’s break them down into four 
general areas: 


= Computer components 
a Electrostatic discharge 
= Electromagnetic interference 


a Natural elements 


Computer Components 


As mentioned earlier, computers use electricity. And as you’re probably aware, electric- 
ity can hurt or kill you. The first rule when working inside a computer is always to make 
sure that it’s powered off. If you have to open the computer to inspect or replace parts (as 
you will with most repairs), be sure to turn off the machine before you begin. Leaving it 
plugged in is usually fine, and many times it is actually preferred because it grounds the 
equipment and can help prevent electrostatic discharge. 

There’s one exception to the power-off rule: You don’t have to power off the computer 
when working with hot-swappable parts, which are designed to be unplugged and plugged 
back in when the computer is on. Most of these components have an externally accessible 
interface (such as USB devices or hot-swappable hard drives), so you don’t need to crack the 
computer case. 


The Power Supply 


Do not take the issue of safety and electricity lightly. Removing the power supply from its 
external casing can be dangerous. The current flowing through the power supply normally 
follows a complete circuit; when your body breaks the circuit, your body becomes part of 
that circuit. Getting inside the power supply is the most dangerous thing you can do as an 
untrained technician. 

The two biggest dangers with power supplies are burning or electrocuting yourself. 
These risks usually go hand in hand. If you touch a bare wire that is carrying current, you 
could get electrocuted. A large-enough current passing through you can cause severe burns. 
It can also cause your heart to stop, your muscles to seize, and your brain to stop function- 
ing. In short, it can kill you. Electricity always finds the best path to ground. And because 
the human body is basically a bag of saltwater (an excellent conductor of electricity), elec- 
tricity will use us as a conductor if we are grounded. 

Although it is possible to open a power supply to work on it, doing so is not recom- 
mended. Power supplies contain several capacitors that can hold lethal charges long 
after they have been unplugged! It is extremely dangerous to open the case of a power 
supply. Besides, power supplies are relatively inexpensive and are considered field 
replaceable units (FRUs). It would probably cost less to replace one than to try to fix it— 
and much safer. 
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In the late 1990s, a few mass computer manufacturers experimented with using open 
power supplies in their computers to save money. We don’t know if any deaths occurred 
because of such incompetence, but it was definitely a very bad idea. 








Current vs. Voltage: Which Is More Dangerous? 


When talking about power and safety, you will almost always hear the saying, “It’s not the 
volts that kill you; it’s the amps.” That’s mostly true. However, an explanation is in order. 


The number of volts in a power source represents its potential to do work. But volts 
don’t do anything by themselves. Current (amperage, or amps) is the force behind the 
work done by electricity. Here’s an analogy to help explain this concept: Say you have 
two boulders. One weighs 10 pounds and another weighs 100 pounds, and each is 
100 feet off the ground. If you drop them, which one will do more work? The obvious 
answer is the 100-pound boulder. They both have the same potential to do work 

(100 feet of travel), but the 100-pound boulder has more mass and thus more force. 
Voltage is analogous to the distance the boulder is from the ground, and amperage is 
analogous to the mass of the boulder. 


This is why you can produce static electricity on the order of 50,000 volts and not electro- 
cute yourself. Even though this electricity has a great potential for work, it does very little 
work because the amperage is so low. This also explains why you can weld metal with 
110 volts. Welders use only 110 (sometimes 220) volts, but they also use anywhere from 
50 to 200 amps! 





If you ever have to work on a power supply, for safety’s sake you should discharge all capaci- 
tors within it. To do this, connect a resistor across the leads of the capacitor with a rating of 
3 watts or more and a resistance of 100 ohms (Q) per volt. For example, to discharge a 225-volt 
capacitor, you would use a 22.5kO resistor (225V x 1000 = 22,5000, or 22.5kQ). You can 
also purchase a tool, known as a grounding pen or discharge pen, that will discharge any size 
capacitor. The tools looks similar to a pen and have a wire that is connected to ground. 


The Monitor 


Other than the power supply, the most dangerous component to try to repair is a computer 
monitor—specifically, older-style cathode-ray tube (CRT) monitors. In fact, we recommend 
that you not try to repair monitors of any kind. 

To avoid the extremely hazardous environment contained inside the monitor (it can retain a 
high-voltage charge for hours after it’s been turned off), take it to a certified monitor technician 
or television repair shop. The repair shop or certified technician will know the proper proce- 
dures for discharging the monitor, which involve attaching a resistor to the flyback transform- 
er’s charging capacitor to release the high-voltage electrical charge that builds up during use. 
They will also be able to determine whether the monitor can be repaired or whether it needs 
to be replaced. Remember, the monitor works in its own extremely protected environment (the 
monitor case) and may not respond well to your desire to try to open it. 
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ghi A CRT is vacuum sealed. Be extremely careful when handling a CRT. If you 
nc break the glass, it will implode, which can send glass in any direction. 

Even though we recommend not repairing monitors, the A+ exam may test your knowl- 
edge of the safety practices to use if you ever need to do so. If you have to open a monitor, 
you must first discharge the high-voltage charge on it by using a high-voltage probe. This 
probe has a very large needle, a gauge that indicates volts, and a wire with an alligator 
clip. Attach the alligator clip to a ground (usually the round pin on the power cord). Slip 
the probe needle underneath the high-voltage cup on the monitor. You will see the gauge 
spike to around 15,000 volts and slowly reduce to 0 (zero). When it reaches zero, you may 
remove the high-voltage probe and service the high-voltage components of the monitor. 


ghi Do not use an ESD strap when discharging the monitor. Doing so can lead 
nc to a fatal electric shock. 

Working with liquid crystal display (LCD) monitors—or any device with a fluorescent 
or LCD backlight—presents a unique safety challenge. These types of devices require an 
inverter, which provides the high-voltage, high-frequency energy needed to power the 
backlight. 

The inverter is a small circuit board installed behind the LCD panel that takes DC 
power and converts (inverts) it for the backlight. If you’ve ever seen a laptop or handheld 
device with a flickering screen or perpetual dimness, it was likely an inverter problem. 
Inverters store energy even when their power source is cut off, so they have the potential to 
discharge that energy if you mess with them. Be careful! 


The Case 


One component that people frequently overlook is the case. Cases are generally made of 
metal, and some computer cases have very sharp edges inside, so be careful when handling 
them. You can cut yourself by jamming your fingers between the case and the frame when 
you try to force the case back on. Also of particular interest are drive bays. Countless tech- 
nicians have scraped or cut their hands on drive bays when trying in vain to plug a drive 
cable into the motherboard. You can cover particularly sharp edges with duct tape. Just 
make sure that you’re covering only metal and nothing with electrical components on it. 


The Printer 


If you’ve ever attempted to repair a printer, you might have thought that a little monster 
was inside, hiding all the screws from you. Besides missing screws, here are some things to 
watch out for when repairing printers: 

a When handling a toner cartridge from a laser printer or page printer, do not turn it 
upside down. You will find yourself spending more time cleaning the printer and the 
surrounding area than fixing the printer. 

a Do not put any objects into the feeding system (in an attempt to clear the path) when 
the printer is running. 
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= Laser printers generate a laser that is hazardous to your eyes. Do not look directly into 
the source of the laser. 


a If it’s an inkjet printer, do not try to blow in the ink cartridge to clear a clogged opening— 
that is, unless you like the taste of ink. 


= Some parts of a laser printer (such as the EP cartridge which is an image drum) will be 
damaged if you touch them. Your skin produces oils and has a small surface layer of 
dead skin cells. These substances can collect on the delicate surface of the image drum 
(EP cartridge) and cause malfunctions. Bottom line: Keep your fingers out of places 
where they don’t belong. 


a Laser printers use very high-voltage power sources to charge internal components, 
which can cause severe injuries. 


=a Laser printers can get extremely hot in order to fuse the toner to the page. Don’t burn 
yourself on internal components. The fuser can get extremely hot! 


great way to store and keep track of screws that you take out of a device 
when you're working on it. If it’s an impromptu repair and you don’t have 
a container with compartments, you can use a piece of paper with tape 
that is looped. This allows you to also write down what the screws were 
removed from. 


w Using an egg carton (or other container with small compartments) is a 
P 


When working with printers, we follow some pretty simple guidelines. If there’s a 
messed-up setting, paper jam, or ink or toner problem, we will fix it. If it’s something other 
than that, we call a certified printer repairperson. The inner workings of printers can get 
pretty complex, and it’s best to call someone trained to make those types of repairs. 


The Keyboard and Mouse 


Okay, we know that you’re thinking, “What danger could a keyboard or mouse pose?” We 
admit that not much danger is associated with these components, but there are a couple of 
safety concerns that you should always keep in mind: 


= If your mouse has a cord, it can catch on something, causing items to fall off of a desk, 
or it might even be long enough that someone can trip over it. So, make sure that it’s 
safely out of the way. 


=a You could short-circuit your keyboard if you accidentally spill liquid into it. Keyboards 
generally don’t function well with half a can of cola in their innards. 


Electrostatic Discharge 


So far, we’ve talked about how electricity can hurt people, but it can also pose safety issues 
for computer components. One of the biggest concerns for components is electrostatic 
discharge (ESD). For the most part, ESD won’t do serious damage to a person other than 
provide a little shock. But little amounts of ESD can cause serious damage to computer com- 
ponents, and that damage can manifest itself by causing computers to hang, reboot, or fail to 
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boot at all. ESD happens when two objects of dissimilar charge come into contact with one 
another. The two objects exchange electrons in order to standardize the electrostatic charge 
between them. This charge can, and often does, damage electronic components. 


_ CPU chips and memory chips are particularly sensitive to ESD. Be 
Qo" extremely cautious when handling them. 


When you shuffle your feet across the floor and shock your best friend on the ear, you 
are discharging static electricity into their ear. The lowest static voltage transfer that you 
can feel is around 3,000 volts; it doesn’t electrocute you because there is extremely little 
current. A static transfer that you can see is at least 10,000 volts! Just by sitting in a chair, 
you can generate around 100 volts of static electricity. Walking around wearing syn- 
thetic materials can generate around 1,000 volts. You can easily generate around 20,000 
volts simply by dragging your smooth-soled shoes across a carpeted floor in the winter. 
(Actually, it doesn’t have to be winter. This voltage can occur in any room with very low 
humidity—like a heated room in wintertime.) 


Relative humidity has a significant impact on the electricity you generate. 

TE Walking around can generate 1,500 volts at 65-90 percent relative humid- 
ity, but it can produce 35,000 volts if the relative humidity is in the 10-25 
percent range. 


It makes sense that these thousands of volts can damage computer components. 
However, a component can be damaged with less than 300 volts! This means that if a small 
charge is built up in your body, you could damage a component without realizing it. 


Tie it back. Letting long hair or dangling cloth get inside an open computer 
case is asking for trouble, because both are notorious for carrying and con- 
ducting static electricity. 


w Do you have long hair or (gasp!) have to wear a tie when fixing computers? 
P 


The good news is that there are measures that you can implement to help contain the 
effects of ESD. The first and easiest item to implement is the antistatic wrist strap, also 
referred to as an ESD strap. We will look at the antistatic wrist strap, as well as other ESD 
prevention tools, in the following sections. 


Antistatic Wrist Straps 


To use an ESD strap, you attach one end to an earth ground (typically, the ground pin on 
an extension cord) or the computer case and wrap the other end around your wrist. This 
strap grounds your body and keeps it at a zero charge. Figure 26.1 shows the proper way 
to attach an antistatic strap. There are several varieties of wrist straps available. The strap 
shown in Figure 26.1 uses an alligator clip and is attached to the computer case itself, 
whereas others use a banana clip that attaches to a grounding coupler. 
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FIGURE 26.1 ESD strap using an alligator clip 








& Real World Scenario 
ESD Symptoms 


Symptoms of ESD damage may be subtle, but they can be detected. One of the authors 
relates this experience: 


“When I think of ESD, | always think of the same instance. Several years ago, | was work- 
ing on an Apple Macintosh. This computer seemed to have a mind of its own. | would 
troubleshoot it, find the defective component, and replace it. The problem was that as 
soon as | replaced the component, it failed. | thought maybe the power supply was frying 
the boards, so | replaced both at the same time, but to no avail. 


“| was about to send the computer off to Apple when | realized that it was winter. Nor- 
mally this would not be a factor, but winters where | live are extremely dry. Dry air pro- 
motes static electricity. At first | thought my problem couldn't be that simple, but | was at 
the end of my rope. So, when | received my next set of new parts, | grounded myself with 
an antistatic strap for the time it took to install the components, and prayed while | turned 
on the power. Success! The components worked as they should, and a new advocate of 
ESD prevention was born.” 
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In order for an antistatic wrist strap to work properly, the computer must be plugged in 
but turned off. When the computer is plugged in, it is grounded through the power cord. 
When you attach yourself to it with the wrist strap, you are grounded through the power 
cord as well. If the computer is not plugged in, there is no ground, and any excess electricity 
on you will just discharge into the case, which is not good. 


NING charges away safely. It uses a 1 megohm resistor to bleed the charge away 
slowly. A simple wire wrapped around your wrist will not work correctly, 
and you could be electrocuted! 


ek An ESD strap is a device that is specially designed to bleed electrical 


ZL Never wear an ESD strap if you’re working inside a monitor or inside a 
ING power supply. If you wear one while working on the inside of these compo- 
nents, you increase the chance of getting a lethal shock. 


ESD Antistatic Mats 


It is possible to damage a device by simply laying it on a bench top. Therefore, you should 
have an ESD mat in addition to an ESD strap. An ESD mat drains excess charge away from 
any item coming in contact with it (see Figure 26.2). ESD mats are also sold as mouse/ 
keyboard pads to prevent ESD charges from interfering with the operation of the computer. 
Many wrist straps can be connected to the mat, thus causing the technician and any equip- 
ment in contact with the mat to be at the same electrical potential and eliminating ESD. 
There are even ESD bootstraps and ESD floor mats, which are used to keep the technician’s 
entire body at the same potential. 


FIGURE 26.2 Proper use of an ESD antistatic mat 
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Antistatic Bags for Parts 


Antistatic bags are important tools to have at your disposal when servicing electronic com- 
ponents because they protect the sensitive electronic devices from stray static charges, as 
shown in Figure 26.3. By design, the static charges collect on the outside of these silver or 
pink bags, rather than on the electronic components. 


FIGURE 26.3 An antistatic component bag 





ZL Unlike antistatic mats, antistatic bags do not “drain” the charges away, and 
Choc they should never be used in place of an antistatic mat. These bags con- 
duct a uniform charge, because the surface is somewhat conductive. 

You can obtain the bags from several sources. The most direct way to acquire antistatic 
bags is to go to an electronics supply store and purchase them in bulk. Most supply stores 
have several sizes available. Perhaps the easiest way to obtain them, however, is simply to 
hold on to the ones that come your way. That is, when you purchase any new component, it 
usually comes in an antistatic bag. After you have installed the component, keep the bag. It 
may take you a while to gather a collection of bags if you take this approach, but eventually 
you will have a fairly large assortment. 


Self-Grounding 


We recommend that you include a grounding strap in your toolkit so that you’re never 
without it. But we also realize that things happen and you might find yourself in a situation 
where you don’t have your strap or an ESD mat. In such cases, you should self-ground. 
Self-grounding is not as effective as using proper anti-ESD gear, but it makes up for that 
with its simplicity. To self-ground, make sure the computer is turned off but plugged in. 
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Then touch an exposed (but not hot or sharp) metal part of the case. This will drain elec- 
trical charge from you. Better yet is if you can maintain constant contact with that metal 
part. That should keep you at the same bias as the case. Yes, it can be rather challenging to 
work inside a computer one-handed, but it can be done. 


Additional Methods 


Another preventive measure that you can take is to maintain the relative humidity at 
around 50 percent. Don’t increase the humidity too far—to the point where moisture 
begins to condense on the equipment. Also, use antistatic spray, which is available commer- 
cially, to reduce static buildup on clothing and carpets. 


ING tion.” In a spray bottle, combine one part water with one part liquid fabric 
softener. Mist areas such as carpet and clothing that cause problems. If 
used regularly, it will keep static away—and keep your office smelling nice. 


ek If you don’t have any antistatic spray, you can always use the “Downy solu- 


Vendors have methods of protecting components in transit from manufacture to instal- 
lation. They press the pins of integrated circuits (ICs) into antistatic foam to keep all of the 
pins at the same potential, as shown in Figure 26.4. In addition, most circuit boards are 
shipped in antistatic bags, as discussed earlier. 


FIGURE 26.4 Antistatic foam 





ZL) Antistatic foam looks a lot like Styrofoam. However, there are huge differ- 

ING ences between the two. While antistatic foam helps reduce the transfer of 
electricity, Styrofoam does not. Styrofoam holds a charge on its surface quite 
easily. Have you ever tried to get some of those small packing “peanuts” off 
your hands? Be careful to not mix the two up, lest you fry your components. 
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At the very least, you should be mindful of the dangers of ESD and take steps to reduce 
its effects. Beyond that, you should educate yourself about those effects so that you know 
when ESD is becoming a major problem. 


Electromagnetic Interference 


When compared to the other dangers that we’ve discussed in this chapter, electromagnetic 
interference (EMI), also known as radio-frequency interference (RFI) when it’s in the same 
frequency range as radio waves, is by far the least dangerous. EMI really poses no threats 
to you in terms of bodily harm. What it can do is to make your equipment or network 
malfunction. 

EMI is an unwanted disturbance caused by electromagnetic radiation generated by 
another source. In other words, some of your electrical equipment may interfere with other 
equipment. Here are some common sources of interference: 


Network Devices The popularity of wireless networking devices has introduced the 
possibility of interference. Some of the most popular wireless networking standards, 
802.11b/g/n, use the 2.4 GHz range for transmissions. Bluetooth devices happen to use the 
same frequency. In theory, they won’t interfere with each other because they use different 
modulation techniques. In practice, however, interference between the two types of devices 
can happen. 


Magnets Magnets work by generating an electromagnetic field. It might make sense, 
then, that this field could cause electromagnetic interference. For the most part, you don’t 
need to worry about this unless you have huge magnets at work. Do note, however, that 
many motors use magnets, which can cause interference. For example, one of our friends 
used to have his computer on the opposite side of a wall from his refrigerator. Whenever 
the compressor kicked in, his monitor display would become wavy and unreadable. It was 
time to move his home office. Another common culprit is a desk fan. Put a desk fan next to 
a monitor and turn on the fan. What happens to the display? It will become wavy. This is 
another example of EMI. 


Cordless Phones Cordless phones can operate at a variety of frequencies. Some of the 
more common frequencies are 900 MHz, 1.9 GHz, 2.4 GHz, and 5.8 GHz. Many of these 
are common ranges for computer equipment to operate in as well. 


Microwave Ovens Microwave ovens are convenient devices for heating food and bever- 

ages. The radiation they generate is typically in the 2.45 GHz range, although it can vary 

slightly. If a microwave is being used near your computer, you'll often see a distorted dis- 

play, just as if a fan or motor were being run next to your computer. You may also experi- 
ence interference with wireless network communications. 


P Copper wires are susceptible to EMI. Fiber-optic cables, which use light to 
A: transmit data, are not susceptible to EMI. 
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Natural Elements 


Computers should always be operated in cool environments and away from direct sunlight 
and water sources. This is also true when you’re working on computers. We know that heat 
is an enemy of electrical components. Dirt and dust act as great insulators, trapping heat 
inside components. When components run hotter than they should, they have a greater 
chance of breaking down faster. 

It pretty much should go without saying, but we’ll say it anyway: Water and electricity 
don’t mix. Keep liquids away from computers. If you need your morning coffee while fixing 
a PC, make sure that the coffee cup has a tight and secure lid. 








@) Real World Scenario 


Water and Servers Don’t Mix 


This situation happened at a company where one of the authors used to work. The build- 
ing needed some roof repairs. Repairs went on for several days, and then the weekend 
came. It just so happened that the area on which they were working was over the server 
room. That weekend was a particularly rainy one, and, of course, no one was in the office 
over the weekend. 


Monday morning came, and the IT staff arrived to find that the server room was partially 
flooded. Rain had come in through weaknesses in the roof caused by the maintenance 
and had flooded through the drop ceiling and into the server room. Nearly half a million 
dollars of equipment was ruined. 


Although this is an extreme example, it illustrates an important point: Always be aware of 
the environment in which you're working, and be alert to potential sources of problems 
for your computer equipment. 





Creating a Safe Workplace 


Benjamin Franklin was quoted as saying, “An ounce of prevention is worth a pound of 
cure.” That sage advice applies to a lot in life and certainly to computer safety. Knowing 
how to work with and handle computer equipment properly is a good first start. It’s also 
important to institutionalize and spread the knowledge, and to make sure that your com- 
pany has the proper policies and procedures in place to ensure everyone’s safety. 


Moving Computer Equipment 


We’ve already talked about some of the hazards posed by computer parts. Many times it’s 
the more mundane tasks that get us, though, such as moving stuff around. One of the most 
common ways that IT employees get hurt is by moving equipment in an improper way. 
Changing the location of computers is a task often completed by IT personnel. You can 
avoid injury by moving things the right way. 
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To ensure your personal safety, here are some important techniques to consider before 
moving equipment: 
= The first thing always to check for is that it’s unplugged. There’s nothing worse (and 
potentially more dangerous) than getting yanked because you’re still tethered. 


=a Securely tie the power cord to the device or remove it altogether, if possible. 
a Remove any loose jewelry and secure long hair or neckties. 


= Lift with your legs, not your back. Bend at the knees when picking something up, not 
at the waist. 


= Do not twist when lifting. 

= Maintain the natural curves of the back and spine when lifting. 
a Keep objects close to your body and at waist level. 

= Push rather than pull, if possible. 


The muscles in the lower back aren’t nearly as strong as those in the legs or other parts 
of the body. Whenever lifting, you want to reduce the strain on those lower-back muscles 
as much as possible. If you want, use a back belt or brace to help you maintain the proper 
position while lifting. 


CRT monitors can be heavy. (Thank goodness for flat screens!) When lift- 
P ing and carrying any type of monitor, always keep the glass face toward 

your body. The front of the monitor is the heaviest part, and you want the 

heavy part closest to your body in order to reduce strain on your muscles. 


If you believe that the load is too much for you to carry, don’t try to pick it up. Get assis- 
tance from a co-worker. Another great idea is to use a cart. It will save you trips if you have 
multiple items to move, and it saves you the stress of carrying components. 

If you do use a cart to move the equipment, make sure that you do not overload the cart. 
Know the cart’s weight limitation and estimate the weight of the equipment you will be 
hauling. Most small, commercial service carts will hold around 100-200 pounds. If you’re 
moving a battery backup unit that requires two people to lift, you may be pushing the 
limitations of the cart. Also make sure the load is not top heavy. Always place the heaviest 
items on the lower shelves of a cart. 

When moving loads, always be aware of your surrounding environment. Before you 
move, scout out the path to see whether there are any trip hazards or other safety concerns, 
such as spills, stairs, uneven floors (or ripped carpet), tight turns, or narrow doorways. 


Using Appropriate Repair Tools 


A big part of creating a safe working environment is having the right tools available for the 
job. There’s no sense implementing a sledgehammer solution to a ball-peen hammer prob- 
lem. Using the wrong tool might not help fix the problem, and it could very possibly hurt 
you or the computer in the process. 
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Most of the time, computers can be opened and devices removed with nothing more 
than a simple screwdriver. But if you do a lot of work on PCs, you'll definitely want to have 
additional tools on hand. 

Computer toolkits are readily available on the Internet or at any electronics store. They 
come in versions from inexpensive (under $10) kits that have around 10 pieces to kits 
that cost several hundred dollars and have more tools than you will probably ever need. 
Figure 26.5 shows an example of a basic 13-piece PC toolkit. All of these tools come in a 
handy zippered case, so it’s hard to lose them. 


FIGURE 26.5 PC toolkit 





Figure 26.5 shows the following tools, from left to right: 
a Sockets, ranging from 1/4” and 1/2” 


= Screwdriver bits: #1 and #1 Phillips tips, #1 and #2 flat tip, T10, T15, T20 Torx tips, 
and a 1/4” drive adapter 


= Hex keys 

= ESD strap 

a Screw container 

a Screwdriver 

a 1/8” flat screwdriver 
= Tweezers 


« Long-nose pliers 
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= A three-claw retriever 

= <A #2 Phillips extension 

a An integrated circuit (IC) extractor 
=» Wire strippers 


A favorite of ours is the three-claw retriever, because screws like to fall and hide in tiny 
places. While most of these tools are incredibly useful, an IC extractor probably won’t be. 
In today’s environment, it’s rare to find an IC that you can extract, much less find a reason 
to extract one. 

The following sections look at some of the tools of the PC troubleshooting trade. 


Screwdrivers 


Every PC technician worth their weight in pocket protectors needs to have a screwdriver. 
At least one. There are three major categories of screwdrivers: flat-blade, Phillips, and 
Torx. In addition, there are devices that look like screwdrivers, except that they have a hex- 
shaped indented head on them. They’re called hex drivers, and they belong to the screw- 
driver family. 

When picking a screwdriver, always keep in mind that you want to match the size of the 
screwdriver head to the size of the screw. Using a screwdriver that’s too small will cause it 
to spin inside the head of the screw, stripping the head of the screw and making it useless. 
If the screwdriver is too large, on the other hand, you won’t be able to get the head in far 
enough to generate any torque to loosen the screw. Of course, if the screwdriver is way too 
big, it won’t even fit inside the screw head at all. Common sizes for Phillips-head screws 
are 000, 00, 0, 1, 2, and 3. When you are dealing with Torx screws, the two most common 
sizes are T-10 and T-15. 


survive the vibrations of an atmospheric reentry. Snug is fine. Making them 
too tight can cause problems when loosening them, which could cause you 
(or someone else not so strong) to strip the head. Using an electric screw- 
driver is fine, if you have one. The only problem with them is that they tend to 
be larger than manual screwdrivers and can be difficult to get inside a case. 


w When tightening screws, you don’t need to make them so tight that they could 
P 


Using magnetic-tipped screwdrivers is not recommended. Many computer 

s TE disks contain magnetically coded information, and the magnetic tip of a 
screwdriver could cause a problem. Keep a retrieving tool handy instead, 
just in case you drop a screw. 


Antistatic Wrist Straps 


We’ve already talked about these, but they are important, so we’ll mention them again. An 
antistatic wrist strap is essential to any PC technician’s arsenal. They don’t typically come 
with smaller PC toolkits, but you should always have one or two handy. 
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Other Useful Tools 


PC techs also commonly carry the following tools: 


Pliers Pliers are useful for a variety of tasks, especially gripping something. Long-nose or 
needle-nose pliers extend your reach. 


Wire Cutters Wire cutters come in a variety of forms but are primarily used for cutting 
cables. It’s not likely that you’ll need any sort of heavy-duty metal cutters. 


Wire Strippers If you are making your own network cables or fixing them, having a cable 
stripper (and crimper) is essential. 


Mirrors Mirrors are handy inside tight spaces. Many techs like to use a dentist-style mir- 
ror because of its compact size and good reach. 


Flashlight Never underestimate the utility of a good flashlight. You never know what your 
lighting situation will be like when you’re at a repair site. Smaller flashlights with good out- 
put are great to have because they can fit into tight spaces. 


Compressed Air For as much as computers and dust don’t get along, it sure seems like 
they are attracted to each other. In all seriousness, computer components are powered by 
electricity, which causes the components to have a slight electrical charge. Dust is also elec- 
trically charged, so it’s attracted to computer components. Compressed air can help you 
clean off components, especially in hard-to-reach places. 


Be judicious about your use of compressed air. Often, you will find yourself 
TE just blowing the dust from one part of a computer to another. 


Multimeter If you’re having power issues, a multimeter is an invaluable tool. It measures 
electrical current, voltage, and resistance. You'll also hear of voltmeters, and while the two 
have somewhat different functions, both of them can be used to troubleshoot power prob- 
lems. You can use a voltmeter to determine whether a computer’s power supply is produc- 

ing the right amount of current for the devices that depend on it. 


Air Filter Masks We’ve mentioned dust, and you will occasionally encounter large 
amounts of it when working inside computers. If you’re using compressed air to blow dust 
out, it could easily get into your eyes or lungs. You don’t want to breath these airborne par- 
ticles, and in some environments (like machine shops), you don’t know what types of haz- 
ardous materials are mixed in with the airborne particles. You don’t need a big army-grade 
gas mask, but a small respirator will help considerably. 


Safety Goggles Your eyesight should be a primary concern when working with any type 
of tools, because accidents happen. You should always wear protective glasses that cover all 
sides of your eyes. When you think of safety goggles, you probably think of the science lab 
rubberized goggles from high school chemistry class. Safety goggles can be as comfortable 
as a pair of glasses, if you purchase approved safety glasses. 
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Fire Safety 


Repairing a computer isn’t often the cause of an electrical fire. However, you should know 
how to extinguish such a fire properly. Four major classes of fire extinguishers are available, 
one for each type of flammable substance: A, for wood and paper fires; B, for flammable 
liquids; C, for electrical fires; and D (metal powder or NaCl [salt]), for flammable metals, 
such as phosphorus and sodium. 

The most popular type of fire extinguisher today is the multipurpose, or ABC-rated, 
extinguisher. It contains a dry chemical powder (for example, sodium bicarbonate, mono- 
ammonium phosphate) that smothers the fire and cools it at the same time. For electrical 
fires (which may be related to a shorted-out wire in a power supply), make sure the fire 
extinguisher will work for class C fires. If you don’t have an extinguisher that is specifically 
rated for electrical fires (class C), you can use an ABC-rated extinguisher. 


Creating a Safe Work Environment 


We’ve already talked about some work environment issues. For example, don’t put a com- 
puter next to the break room sink, and keep computers out of direct sunlight (even if the 
desk location is great). A few other things to watch out for are trip hazards, atmospheric 
conditions, and high-voltage areas. 

Cables are a common cause of tripping. If at all possible, run cables through drop ceil- 
ings or through conduits to keep them out of the way. If you need to lay a cable through 
a trafficked area, use a floor cable guard to keep the cables in place and safe from crush- 
ing. Floor guards come in a variety of lengths and sizes (for just a few cables or for a lot of 
cables). Figure 26.6 shows a cable guard. 


FIGURE 26.6 Floor cable guard 
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Another useful tool to keep cables under control is a cable tie (see Figure 26.7). It’s sim- 
ply a plastic tie that holds two or more cables together. Cable ties come in different sizes 
and colors, so you’re bound to find one that suits your needs. 


FIGURE 26.7 Cable ties 





tape, to secure your cables to the floor. This is recommended only as a 
temporary fix for two reasons. First, it’s not much less of a trip hazard than 
just having the cables run across the floor. Second, duct tape doesn’t pro- 
tect the cables from being crushed if people step on them or heavy objects 


are moved over them. 


w In a pinch, and without a floor cable guard, you can use tape, such as duct 
P 


Exercise 26.1 is a simple exercise that you can modify and use as needed. Its purpose is 
to illustrate common office hazards that you may not have realized were there. 


Finding Trip Hazards 

1. Walk around the server room and count how many cables are lying on the floor. 

2. Walk around the client areas and see how many cables are lying on the floor or are 
exposed underneath cubicles. 


Maybe you're fortunate and don’t find any, but odds are that you found at least one area 
with exposed cables that should not be exposed. You can reapply this exercise for other 
dangerous items, such as exposed wires and exposed sharp edges. 
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Atmospheric conditions you need to be aware of include areas with high static electricity 
or excessive humidity. This is especially important for preventing electrostatic discharge, as 
we've already discussed. 

Finally, be aware of high-voltage areas. Computers do need electricity to run, but only in 
measured amounts. Running or fixing computers in high-voltage areas can cause problems for 
the electrical components and can cause problems for you if something should go wrong. 


Implementing Safety Policies and Procedures 


The Occupational Safety and Health Act states that every working American has the right 

to a safe and healthy work environment. To enforce the act, the Occupational Safety and 

Health Administration (OSHA) was formed. OSHA covers all private-sector employees 

and Post Office workers. Public-sector employees are covered by state programs, and 

federal employees are covered under a presidential executive order. In a nutshell, OSHA 

requires employers to “provide a workplace that is free of recognized dangers and hazards. 
There are three overarching criteria to a safe work environment: 


” 


= The company and its employees have identified all significant hazards in the work setting. 
= Preventive measures have been taken to address each significant hazard. 


= The company and its employees understand how to respond to accidents or near-miss 
accidents if or when they occur. 


The following sections explore specific responsibilities and how to create a safe work 
environment plan. 


PP Always ensure that your company’s safety policies and procedures comply 
A: with all government regulations. 


Employer and Employee Responsibilities 


Maintaining workplace safety is the responsibility of employers as well as employees. Here 
are some of the important responsibilities of employers: 


= Provide properly maintained tools and equipment. 


= Provide a warning system, such as codes or labels, to warn employees of potential haz- 
ards or dangerous chemicals. 


= Post the OSHA poster in a prominent location. 
= Keep records of workplace injuries or illnesses. 
= Continuously examine workplace conditions to ensure OSHA compliance. 


It’s also the responsibility of the employee to help maintain a safe work environment. 
Specifically, employees are charged with the following tasks: 


a Read and understand OSHA posters. 


= Follow all employer-implemented health and safety rules and safe work practices. 
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= Use all required protective gear and equipment. 
= Report hazardous conditions to the employer. 
a Report hazardous conditions that the employer does not correct to OSHA. 


As you can see, employers and employees need to work together to keep the workplace 
safe. It is illegal for an employee to be punished in any way for exercising their rights under 
the Occupational Safety and Health Act. 





@ Real World Scenario 


Play It Safe with Common Sense 


When you're repairing a PC, do not leave it unattended. Someone could walk into the 
room and inadvertently bump the machine, causing a failure. Worse, they could step on 
pieces that may be lying around and get hurt. It is also not a good idea to work on the PC 
alone. If you're injured, someone should be around to help. Finally, if you're fatigued, you 
may find it difficult to concentrate and focus on what you are doing. The most important 
safety measure to remember when you are repairing PCs is to pay close attention to what 
you are doing. 








Safety Plans 


We recommend that your company create and follow a workplace safety plan. Having a 
safety plan can help avoid accidents that result in lost productivity, equipment damage, and 
employee injury or death. 

A good safety plan should include the following elements: 


= A written document that states, among other things, who is responsible for implement- 
ing and managing the plan 


a Systematic periodic inspections to identify workplace hazards 

= Procedures for eliminating hazards once identified 

= Processes for investigating the cause of accidents, injuries, or illnesses 

= A safety and health training program specific to the job duties performed 


= A system for employees to communicate safety or health concerns without fear 
of reprisal 


» A system to ensure that employees comply with safety and health rules 


= A system to maintain safety and health records, including steps taken to implement 
accident-prevention initiatives 


It might seem like a laundry list of items to consider, but a good safety program needs to 
be holistic in nature for it to be effective. 
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Many companies also incorporate rules against drug or alcohol use in their safety and 
health plans. Specifically, employees are not allowed to come to work if under the influence 
of alcohol or illegal drugs. Employees who do come to work under the influence may be 
subject to disciplinary action up to and including termination of employment. 

After your safety plan has been created, you need to ensure that all employees receive 
necessary training. Have each employee sign a form at the end of the training to signify 
that they attended, and keep the forms in a central location (such as with or near the offi- 
cial safety policy). In addition to the training record, you should make available and keep 
records of the following: 


=a Safety improvement suggestion form 

= Accident and near-accident reporting form 
= Injury and illness log 

a Safety inspection checklist 

= Hazard removal form 

=a Material safety data sheets 


Safety rules and regulations will work only if they have the broad support of manage- 
ment from the top down. Everyone in the organization needs to buy into the plan; other- 
wise, it won’t be a success. Make sure that everyone understands the importance of a safe 
work environment, and make sure that the culture of the company supports safety in the 
workplace. 


Incident Management 


Accidents happen. Hopefully, they don’t happen too often, but we know that they do. 
Details on how to handle accidents are a key part of any safety plan so that when an acci- 
dent does happen, you and your co-workers know what to do. Good plans should include 
steps for handling a situation as well as reporting an incident. We will cover incident 
response in more detail later in this chapter. Two major classifications of accidents are envi- 
ronmental and human. 

When related to computers, environmental accidents typically come in one of two forms: 
electricity or water. Too much electricity is bad for computer components. If lightning is 
striking in your area, you run a major risk of frying computer parts. Even if you have a 
surge protector, you could still be at risk. 

The best bet in a lightning storm is to power off your equipment and unplug it from 
outlets. Make the lightning have to come inside a window and hit your computer directly in 
order to fry it. 


ZL Those cheap $10 surge suppressors will fry right along with your com- 
INING puter. And don’t be fooled—most power strips do not protect against 
power surges. 


Water is obviously also bad for computer components. If there is water in the area and you 
believe that it will come in contact with your computers, it’s best to get the machines powered 
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off as quickly as possible. If components are not powered on but get wet, they may still work 
after thoroughly drying out. But if they’re on when they get wet, they’re likely cooked. Water + 
electronic components = bad. Water + electronic components + electricity = really bad. 

Many server rooms have raised floors. Although this serves several purposes, one is that 
equipment stored on the raised floor is less susceptible to water damage if flooding occurs. 

Human nature dictates that we are not infallible, so, of course, we’re going to make mistakes 
and have accidents. The key is to minimize the damage caused when an accident happens. 

If a chemical spill occurs, make sure that the area gets cordoned off as soon as possible. 
Then clean up the spill. The specific procedure on how to do that depends on the chemi- 
cal, and that information can be found on material safety data sheets (MSDSs). Depending 
on the severity of the spill or the chemical released, you may also need to contact the local 
authorities. Again, the MSDS should have related information. 

Physical accidents are more worrisome. People can trip on wires and fall, cut or burn them- 
selves repairing computers, and incur a variety of other injuries. Computer components can be 
replaced, but that’s not always true of human parts (and it’s certainly not true of lives). The first 
thing to keep in mind is always to be careful and use common sense. If you’re trying to work 
inside a computer case and you see sharp metal edges inside the case, see whether the metal 
(or component on which you are working) can be moved to another location until you finish. 
Before you stick your hand into an area, make sure that nothing is hot or could cut you. 

When an accident does happen (or almost happens), be sure to report it. Many compa- 
nies pay for workers’ compensation insurance. If you’re injured on the job, you’re required 
to report the incident, and you might also get temporary payments if you are unable to 
work because of the accident. Also, if the accident was anything but minor, seek medical 
attention. Just as victims in auto accidents might not feel pain for a day or two, victims in 
other physical accidents might be in the same position. If you never report the accident, 
insurance companies may find it less plausible that your suffering was work related. 


Understanding Environmental Controls 


It is estimated that more than 25 percent of all the lead (a poisonous substance) in landfills 
today comes from consumer electronics components. Because consumer electronics (televi- 
sions, DVRs, Blu-ray players, stereos) contain hazardous substances, many states require 
that they be disposed of as hazardous waste. Computers are no exception. Monitors con- 
tain several carcinogens and phosphors as well as mercury and lead. The computer itself 
may contain several lubricants and chemicals as well as lead. Printers contain plastics and 
chemicals, such as those in toners and inks, which are also hazardous. All of these items 
should be disposed of properly. 

Remember all those 386 and 486 computers that came out in the late 1980s and are now 
considered antiques? Maybe you don’t, but there were millions of them. Where did they all 
go? Is there an Old Computers Home somewhere that is using these computer systems for 
good purposes, or are they lying in a junkyard somewhere? Or could it be that some folks 
just cannot let go and have a stash of old computer systems and computer parts in the dark 
depths of their basements? Regardless of where they are today, all of those old components 
have one thing in common: They are hazardous to the environment. 
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On the flip side, the environment is also hazardous to our computers. We’ve already talked 
about how water and computers don’t mix well, and that’s just the beginning. Temperature, 
humidity, and air quality can have dramatic effects on a computer’s performance. And we 
know that computers require electricity; too much or too little can be a problem. 

With all these potential issues, you might find yourself wondering, “Can’t we all just get 
along?” In the following sections, we will talk about how to make our computers and the 
environment coexist as peacefully as possible. 


Managing the Physical Environment 


Some of our computers sit in the same dark, dusty corner for their entire lives. Other com- 
puters are carried around, thrown into bags, and occasionally dropped. Either way, the 
physical environment in which our computers exist can have a major effect on how long 
they last. It’s smart to inspect the physical environment periodically in order to ensure that 
there are no working hazards. Routinely cleaning components will also extend their useful 
life, and so will ensuring that the power supplying them is maintained as well. 


Maintaining Power 


As electronics, computers need a power source. Laptops can free you from your power cord 
leash for a while, but only temporarily. Power is something that we often take for granted 
until we lose it, and then we twiddle our thumbs and wonder what people did before the 
Internet. Most people realize that having too much power (a power surge) is a bad thing 
because it can fry electronic components. Having too little power, such as when a blackout 
occurs, can also wreak havoc on electrical circuits. 

Power strips come in all shapes and sizes and are convenient for plugging multiple 
devices into one wall outlet. Most of them even have an on/off switch so that you can turn 
all the devices on or off at the same time. Figure 26.8 shows a simple power strip. 


FIGURE 26.8 A simple power strip 
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Don’t make the mistake of thinking that power strips will protect you from electrical 
surges, though. If you get a strong power surge through one of these $10 devices, the strip 
and everything plugged into it can be fried. Some people like to call power strips “surge 
protectors” or “surge suppressors,” but power strips do nothing to protect against or sup- 
press surges. 

Devices that actually attempt to keep power surges at bay are called surge protectors. 
They often look similar to a power strip, so it’s easy to mistake them for each other, but 
protectors are more expensive, usually starting in the $25 range. Surge protectors have a 
fuse inside them that is designed to blow if it receives too much current and not to transfer 
the current to the devices plugged into it. Surge protectors may also have plug-ins for RJ-11 
(phone), RJ-45 (Ethernet), and BNC (coaxial cable) connectors. 

Figure 26.9 shows a surge protector, which doesn’t look too different from a simple 
power strip. The key is to read the packaging and the labels on the product. Make sure that 
the device will protect your electronics from electrical surges. There is usually a printed 
specification of 200V to 500V. This indicates how much of a surge in voltage the surge pro- 
tector can handle. 


FIGURE 26.9 A surge protector 








The best device for power protection is called an uninterruptible power supply (UPS). 
These devices can be as small as a brick, like the one shown in Figure 26.10, or as large as 
an entire server rack. Some just have a few indicator lights, while others have LCD displays 
that show status and menus and come with their own management software. 

Inside the UPS is one or more batteries and fuses. Much like a surge suppressor, a UPS 
is designed to protect everything that’s plugged into it from power surges. UPSs are also 
designed to protect against power sags and even power outages. Energy is stored in the bat- 
teries, and if the power fails, the batteries can power the computer for a period of time so 
that the administrator can then safely power it down. Many UPSs and operating systems 
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will also work together to power down a system automatically (and safely) or switch it to 
UPS power. These types of devices may be overkill for Uncle Bob’s machine at home, but 
they’re critically important fixtures in server rooms. 


FIGURE 26.10 An uninterruptible power supply 


r * Surge Protection Only 
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UPSs can accommodate several different devices; the number depends on the size and 
power rating. The model shown in Figure 26.11 has four plugs for battery backup and 
surge protection, and another four outlets for surge protection only. Two of each of the 
four outlets are controlled by a master switch on the unit. 


FIGURE 26.11 The back of a UPS 
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The UPS should be checked periodically as part of the preventative maintenance routine 
to make sure its battery is operational. Most UPSs have a test button you can press to simu- 
late a power outage. You will find that batteries wear out over time, and you should replace 
the battery in the UPS every couple of years to keep the UPS dependable. 


_ Power blackouts are generally easy to detect. Power sags without a com- 
‘Gr plete loss, called a brownout, are also very damaging to electrical compo- 
nents but often go unnoticed. Uninterruptable power supplies can prevent 
this type of damage. 


Managing the Environment 


Sometimes we can’t help how clean—or unclean—our environments are. A computer in an 
auto body shop is going to face dangers that one in a receptionist’s office won’t. Still, there 
are things that you can do to help keep your systems clean and working well. We’re going 
to break these concepts down into two parts. First, we’ll look at common issues you should 
be aware of, and then we’ll discuss proper cleaning methods. 


Avoiding Common Problems 


In a nutshell, water and other liquids, dirt, dust, unreliable power sources, and heat and 
humidity aren’t good for electronic components. Inspect your environment to eliminate as 
many of these risks as possible. Leaving your laptop running outside in a rainstorm? Not 
such a good idea. (Been there, done that.) 

Computers in manufacturing plants are particularly susceptible to environmental 
hazards. One technician reported a situation with a computer that had been used on the 
manufacturing floor of a large equipment manufacturer. The computer and keyboard were 
covered with a black substance that would not come off. (It was later revealed to be a com- 
bination of paint mist and molybdenum grease.) There was so much diesel fume residue in 
the power supply fan that it would barely turn. The insides and components were covered 
with a thin, greasy layer of muck. To top it all off, the computer smelled terrible! 

Despite all this, the computer still functioned. However, it was prone to reboot itself 
every now and again. The solution was (as you may have guessed) to clean every component 
thoroughly and replace the power supply. The muck on the components was able to con- 
duct a small current. Sometimes, that current would go where it wasn’t wanted and zap—a 
reboot. In addition, the power supply fan is supposed to partially cool the inside of the 
computer. In this computer, the fan was detrimental to the computer because it got its cool- 
ing air from the shop floor, which contained diesel fumes, paint fumes, and other chemical 
fumes. Needless to say, those fumes aren’t good for computer components. 

Computers and humans have similar tolerances to heat and cold, although computers 
like the cold better than we do. In general, anything comfortable to us is comfortable to a 
computer. They don’t, however, require food or drink (except maybe a few RAM chips now 
and again)—keep those away from the computer. 
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ZL It’s bad practice to eat, drink, or smoke around your computer. Smoke 
Chic particles contain tar that can get inside the computer and cause problems 
similar to those just described. 

Computers need lots of clean moving air to keep them functioning. One way to ensure 
that the environment has the least possible effect on your computer is always to leave the 
blanks in the empty slots on the back of your box. These pieces of metal are designed to 
keep dirt, dust, and other foreign matter out of the inside of the computer. They also main- 
tain proper airflow within the case to ensure that the computer does not overheat. 

You can also purchase computer enclosures to keep the dust out—just make sure that 
they allow for proper air ventilation. Many times these devices use air filters in much the 
same way a furnace or a car engine does. 


Cleaning Systems 


The cleanliness of a computer is extremely important. Buildup of dust, dirt, and oils can 
prevent the various mechanical parts of a computer from operating. Cleaning them with 
the right cleaning compounds is equally important. Using the wrong compounds can leave 
residue behind that is more harmful than the dirt that you are trying to remove. 

Most computer cases and monitor cases can be cleaned by using mild soapy water on 
a clean, lint-free cloth. Do not use any kind of solvent-based cleaner on monitor screens, 
because doing so can cause discoloration and damage to the screen surface. Most often, a 
simple dusting with a damp cloth (moistened with water) will suffice. Make sure that the 
power is off before you put anything wet near a computer. Dampen (don’t soak) a cloth in 
mild soap solution and wipe the dirt and dust from the case. Then wipe the moisture from 
the case with a dry, lint-free cloth. Anything with a plastic or metal case can be cleaned in 
this manner. 


ZZ Don’t drip liquid into any vent holes on equipment. Monitors in particular 
ING often have vent holes in their tops. 


Additionally, if you spill anything on a keyboard, you can clean it by soaking it in dis- 
tilled, demineralized water and then drying it off. The extra minerals and impurities have 
been removed from this type of water, so it will not leave any traces of residue that might 
interfere with the proper operation of the keyboard after cleaning. The same holds true for 
the keyboard’s cable and its connector. 

The electronic connectors of computer equipment, on the other hand, should never touch 
water. Instead, use a swab moistened in distilled, denatured isopropyl alcohol (also known 
as electronics or contact cleaner and found in electronics stores) to clean contacts. Doing so 
will take oxidation off the copper contacts. 

Finally, the best way to remove dust and debris from the inside of the computer is 
to use compressed air (not a vacuum). Compressed air can be more easily directed and 
doesn’t easily produce ESD damage, as a vacuum could. Simply blow the dust from 
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inside the computer by using a stream of compressed air. Make sure to do this outside 
so that you don’t blow dust all over your work area or yourself. Also be sure to wear 
safety goggles and use an air mask. If you need to use a vacuum, a nonstatic computer 
vacuum that is specially made for cleaning computer components is recommended. 
Their nozzles are grounded to prevent ESD from damaging the components of the 
computer. 

One unique challenge when cleaning printers is spilled toner. It sticks to everything and 
should not be inhaled—it’s a carcinogen. Use an electronics vacuum that is designed specifi- 
cally to pick up toner. A typical vacuum’s filter isn’t fine enough to catch all the particles, 
so the toner may be circulated into the air. Normal electronics vacuums may melt the toner 
instead of picking it up. 


i If you get toner on your clothes, use a magnet to get it out. (Toner is half 
P iron.) 


Table 26.1 summarizes the most common cleaning tools and their uses. 
TABLE 26.1 Computer cleaning tools 


Tool Purpose 





Computer vacuum Sucking up dust and small particles 
Mild soap and water Cleaning external computer and monitor cases 


Demineralized water Cleaning keyboards or other devices that have contact points that 
are not metal 


Denatured isopropyl Cleaning metal contacts, such as those on expansion cards 
alcohol 


Monitor wipes Cleaning monitor screens. Do not use window cleaner. 


Lint-free cloth Wiping down anything. Don’t use a cloth that will leave lint or 
other residue behind. 


Compressed air Blowing dust or other particles out of hard-to-reach areas 


Periodically cleaning equipment is one of the easiest ways to prevent costly repairs, but 
it’s also one of the most overlooked tasks. We’re often too busy solving urgent crises to deal 
with these types of tasks. If possible, block out some time every week for the sole purpose 
of cleaning your equipment. 
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Handling and Disposing of Computer Equipment 


Each piece of computer equipment that you purchase offers a manual, usually found online. 
Detailed instructions on the proper handling and use of that component can be found in 
the manual. In addition, many manuals give information on how to open the device for 
maintenance or on whether you should even open the device at all. 

If you have the luxury of having paper manuals, don’t throw them away. Keep a drawer 
of a file cabinet specifically for hardware manuals (and keep it organized). You can always 
look up information on the Internet as well, but having paper manuals on hand is useful for 
two reasons: 


= You may need to fix something when Internet access isn’t readily available. (Router 
problems, anyone?) 


=» Some companies are required to keep hardware documentation, in the event of an audit 
(such as for ISO 9000-compliant organizations). 


In the following sections, we’ll cover two topics: using safety documentation and follow- 
ing safety and disposal procedures. 


P There are several different ISO specifications that an organization can be 
‘GQ certified for by the International Organization for Standardization (ISO). 
Each different ISO certification corresponds to a specific set of policies and 
procedures that an organization must adhere to. When a company is certi- 
fied, it means they meet or exceed following the standardized policies and 
procedures for their organization. 


Using Safety Documentation 


In addition to your product manuals, another place to find safety information is in material 
safety data sheets (MSDSs). MSDSs include information such as physical product data 
(boiling point, melting point, flash point, and so forth), potential health risks, storage and 
disposal recommendations, and spill/leak procedures. With this information, technicians 
and emergency personnel know how to handle the product as well as respond in the event 
of an emergency. 

MSDSs are typically associated with hazardous chemicals. Indeed, chemicals do not 
ship without them. MSDSs are not intended for consumer use; rather, they’re made for 
employees or emergency workers who are consistently exposed to the risks of the particular 
product. 

The United States Occupational Safety and Health Administration (OSHA) mandates 
MSDSs only for the following products: 


= Products that meet OSHA’s definition of hazardous (They pose a physical or health 
hazard.) 


= Products that are “known to be present in the workplace in such a manner that 
employees may be exposed under normal conditions of use or in a foreseeable 
emergency” 
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One of the interesting things about MSDSs is that OSHA does not require companies 
to distribute them to consumers. Most companies will be happy to distribute one for their 
products, but they are under no obligation to do so. 

If employees are working with materials that have MSDSs, those employees are required 
by OSHA to have “ready access” to MSDSs. This means that employees need to be able to 
get to the sheets without having to fetch a key, contact a supervisor, or submit a procedure 
request. Remember the file cabinet drawer that you have for the hardware manuals? MSDSs 
should also be kept readily accessible. Exercise 26.2 helps you find your MSDSs and get 
familiar enough with them to find critical information. 


Finding MSDSs 


1. Locate the MSDSs in your workplace. You might have to ask a manager. (Do you even 
have them?) 


2. Find an MSDS for a product you're interested in. 
3. Does the MSDS list any potential health effects for this item? What are they? 
4. What is the proper disposal procedure for this item? 


It’s not likely that you’re going to memorize or need to memorize everything on an MSDS. 
The key things are to know where to find the MSDS and to know how to find information 
in them quickly. If you have a spill of a potentially dangerous chemical, the last thing you 
need to do is spend your time figuring out how to handle the spill without causing injury 
to yourself or others. 


At this point, you might stop to think for a second, “Do computers really come with 
hazardous chemicals? Do I really need an MSDS?” Consider this as an example: oxygen. 
Hardly a dangerous chemical, considering we need to breathe it to live, right? In the atmo- 
sphere, oxygen is at 21 percent concentration. At 100 percent concentration, oxygen is 
highly flammable and can even spontaneously ignite some organic materials. In that sense, 
and in the eyes of OSHA, nearly everything can be a dangerous chemical. 


< If you are interested in searching for free MSDSs, several websites are 
P available, such as www. msds .com. Many manufacturers of components will 
also provide MSDSs on their websites. 


The sections within an MSDS will be the same regardless of the product, but the infor- 
mation inside each section changes. Here is a truncated sample MSDS for ammonium 
hydrogen sulfate. 


**** MATERIAL SAFETY DATA SHEET **** 
Ammonium Hydrogen Sulfate 
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90009 

**** SECTION 1-CHEMICAL PRODUCT AND COMPANY IDENTIFICATION **** 

MSDS Name: Ammonium Hydrogen Sulfate 

Catalog Numbers: 

A/5400 

Synonyms: 

Sulfuric acid, monoammonium salt; Acid ammonium sulfate; Ammonium 

acid sulfate. 

**** SECTION 2—-COMPOSITION, INFORMATION ON INGREDIENTS **** 

CAS# Chemical Name % EINECS# 

7803-63-6 Ammonium hydrogen sulfate 100 % 232-265-5 

Hazard Symbols: C 

Risk Phrases: 34 

**** SECTION 3-HAZARDS IDENTIFICATION **** 

EMERGENCY OVERVIEW 

Causes burns. Corrosive. Hygroscopic (absorbs moisture from the air). 
Potential Health Effects 

Skin: 

Causes skin burns. 

Ingestion: 

May cause severe gastrointestinal tract irritation with nausea, vomiting, 
and possible burns. 

Inhalation: 

Causes severe irritation of upper respiratory tract with coughing, burns, 
breathing difficulty, and possible coma. 

**** SECTION 4—FIRST-AID MEASURES **** 

Skin: 

Get medical aid immediately. Immediately flush skin with plenty of water for at 
least 15 minutes while removing contaminated clothing and shoes. 
Ingestion: 

Do not induce vomiting. If victim is conscious and alert, give 2-4 cupfuls 
of milk or water. Never give anything by mouth to an unconscious person. Get 
medical aid immediately. 

Inhalation: 

Get medical aid immediately. Remove from exposure and move to fresh air 
immediately. 

If not breathing, give artificial respiration. If breathing is difficult, give 
oxygen. 

**** SECTION 5-FIREFIGHTING MEASURES **** 

**** SECTION 6-ACCIDENTAL RELEASE MEASURES **** 
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General Information: Use proper personal protective equipment as indicated 
in Section 8. 

**** SECTION 7—-HANDLING and STORAGE **** 

Handling: 

Wash thoroughly after handling. Wash hands before eating. Use only 

in a well-ventilated area. Do not get in eyes, on skin, or on clothing. Do not 
ingest or inhale. 

Storage: 

Store in a cool, dry place. Keep container closed when not in use. 

**** SECTION 8-EXPOSURE CONTROLS, PERSONAL PROTECTION **** 

Engineering Controls: 

Use adequate general or local exhaust ventilation to keep airborne 
concentrations below the permissible exposure limits. 

Respirators: 

Follow the OSHA respirator regulations found in 29 CFR 1910.134 or European 
Standard EN 149. Always use a NIOSH or European Standard EN 149 approved 
respirator when necessary. 

**** SECTION 9-PHYSICAL AND CHEMICAL PROPERTIES **** 

Physical State: Solid 

Color: White 

Odor: Not available 

***k* SECTION 10-STABILITY AND REACTIVITY **** 

Chemical Stability: 

Stable under normal temperatures and pressures. 

Conditions to Avoid: 

Incompatible materials, dust generation, exposure to moist air or water. 
**** SECTION 11-TOXICOLOGICAL INFORMATION **** 

RTECS#: 

CAS# 7803-63-6: BS4400500 

**** SECTION 12—ECOLOGICAL INFORMATION **** 

**** SECTION 13-DISPOSAL CONSIDERATIONS **** 

Products which are considered hazardous for supply are classified as Special 
Waste, and the disposal of such chemicals is covered by regulations which may 
vary according to location. Contact a specialist disposal company or the local 
waste regulator for advice. Empty containers must be decontaminated before 
returning for recycling. 

**** SECTION 14-TRANSPORT INFORMATION **** 

**** SECTION 15-REGULATORY INFORMATION **** 

European/International Regulations 

European Labeling in Accordance with EC Directives 
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Hazard Symbols: C 

Risk Phrases: 

R 34 Causes burns. 

Safety Phrases: 

S 26 In case of contact with eyes, rinse immediately with plenty of water and 
seek medical advice. S 28 After contact with skin, wash immediately with... 
**** SECTION 16-ADDITIONAL INFORMATION **** 

MSDS Creation Date: 6/23/2004 Revision #0 Date: Original. 


Following Proper Disposal Procedures 


It is relatively easy to put old components away, thinking that you might be able to put 
them to good use again someday, but doing so is not realistic. Most computers are obsolete 
as soon as you buy them. And if you have not used them recently, your old computer com- 
ponents will more than likely never be used again. 

We recycle cans, plastic, and newspaper, so why not recycle computer equipment? The 
problem is that most computers contain small amounts of hazardous substances. Some 
countries are exploring the option of recycling electrical machines, but not all have enacted 
appropriate measures to enforce their proper disposal. 


PP Some countries are ahead of others on the recycling issue. For example, in 

A: 2013, the United Kingdom introduced the Waste Electrical and Electronic 
Equipment (WEEE) Regulations, which obligates manufacturers to provide 
disposal methods for items they manufacture. Consumers can insist that 
manufactures take back dangerous waste and electrical and electronic 
equipment. Many local governments also provide e-waste programs and 
disposal centers. 


Regardless of manufacturer or community programs, we can take proactive steps, as 
consumers and caretakers of our environment, to promote the proper disposal of computer 
equipment: 


=a Check with the manufacturer. Some manufacturers will take back outdated equipment 
for parts (and may even pay you for them). 


= Properly dispose of solvents or cleaners (as well as their containers) used with comput- 
ers at a local hazardous waste disposal facility. 


a Disassemble the machine and reuse the parts that are good. 
= Check out businesses that can melt down the components for the lead or gold plating. 


= Contact the Environmental Protection Agency (EPA) for a list of local or regional 
waste disposal sites that accept used computer equipment. The EPA’s web address is 
www. epa. gov. 
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= Check with the EPA or at www.msds.com to see if what you are disposing has an MSDS. 
These sheets contain information about the toxicity of a product and whether it can 
simply be disposed of as trash. They also contain lethal-dose information. 


= Check with local nonprofit or education organizations that may be interested in using 
the equipment. 


Check out the Internet for possible waste disposal sites. Table 26.2 lists a few websites 
that we came across that deal with the disposal of used computer equipment. A quick web 
search will likely locate some in your area. 


TABLE 26.2 Computer recycling websites 





Site Name Web Address 

Recycles Organization www. recycles.org 

Computer Recycling Center www.crc.org 

RE-PC www. repc.com 

Tech Dump www. techdump.org 

e The National Conference of State Legislation details each state’s legisla- 
TE tion regarding electronics waste. The site also details state programs to 


collect electronics waste. For more information, visit: 


http: //www.ncsl.org/research/environment-and-natural- 
resources/e-waste-recycling- legislation. aspx 


Following the general rule of thumb of recycling your computer components and con- 
sumables is a good way to go. In the following sections, we’ll look at four classifications of 
computer-related components and the proper disposal procedures for each. 


Batteries 


The EPA estimates that more than 350 million batteries are purchased annually in the 
United States. One can only imagine what the worldwide figure is. Batteries contain several 
heavy metals and other toxic ingredients, including alkaline, mercury, lead acid, nickel cad- 
mium, and nickel metal hydride. 


gmi Never burn a battery to destroy it. Doing so will cause the battery to 
ING explode and could result in serious injury. 
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When batteries are thrown away and deposited into landfills, the heavy metals inside 
them will find their way into the ground. From there, they can pollute water sources and 
eventually find their way into the supply of drinking water. In 1996, the United States 
passed the Mercury-Containing and Rechargeable Battery Management Act (aka the 
Battery Act) with two goals: to phase out the use of mercury in disposable batteries and to 
provide collection methods and recycling procedures for batteries. 


P Several countries around the world have battery-recycling programs. Infor- 
A: mation on battery recycling in the United States can be found at https: // 
www.call2recycle.org/. You can find information on the Battery Act at: 


https://www.epa.gov/rcra/mercury-containing-and-rechargeable- 
battery-management-act-public-law-104-142. 


Five types of batteries are most commonly associated with computers and handheld elec- 
tronic devices: alkaline, nickel-cadmium (NiCd), nickel-metal hydride (NiMH), lithium-ion 
(Li-ion), and button cell. 


Alkaline Batteries Alkaline batteries have been incredibly popular portable batteries for 
several decades. Before 1984, one of the major ingredients in this type of battery was mer- 
cury, which is highly toxic to the environment. In 1984, battery companies began reducing 
the mercury levels in batteries, and in 1996, mercury was outlawed in alkaline batteries in 
the United States. Still, it’s strongly recommended that you recycle these batteries at a recy- 
cling center. Although newer alkaline batteries contain less mercury than their predeces- 
sors, they are still made of metals and other toxins that contaminate the air and soil. 


Nickel Cadmium Nickel-cadmium (NiCd) is a popular format for rechargeable batteries. 
As their name indicates, they contain high levels of nickel and cadmium. Although nickel 
is only semi-toxic, cadmium is highly toxic. These types of batteries are categorized by the 
EPA as hazardous waste and should be recycled. 


Nickel-Metal Hydride (NiMH) and Lithium-Ion (Li-ion) Laptop batteries are commonly 
made with NiMH and lithium ion. Unlike the previous types of batteries that we have dis- 
cussed, these are not considered hazardous waste, and there are no regulations on recycling 
them. However, these batteries do contain elements that can be recycled, so it’s still a good 
idea to go that route. 


Button Cell These batteries are so named because they look like a button. They’re com- 
monly used in calculators and watches as well as portable computers. They often contain 
mercury and silver (and are environmental hazards due to the mercury) and need to be 
recycled. 


You may have noticed a theme regarding the disposal of batteries: recycling. Many 
people just throw batteries in the trash and don’t think twice about it. However, there are 
several laws in the United States that require the recycling of many types of batteries, and 
recycling does indeed help keep the environment clean. For a list of recycling centers in 
your area, use your local Yellow Pages (under Recycling Centers) or search the Internet. 
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DPO If you're ever exposed to the electrolyte (the inside “juice”) of the battery, 
‘gr immediately flush the exposed area with water. If it gets on your eye, 
immediately contact a physician and wash the eye for 15 minutes. 


Display Devices 
Computer monitors (CRT monitors, not LCDs) are big and bulky, so what do you do when 
it’s time to get rid of them? As previously mentioned, monitors contain capacitors that are 
capable of retaining a lethal electric charge after the monitors have been unplugged. You 
wouldn’t want anyone to set off the charge accidentally and die. But what we didn’t men- 
tion earlier, which is important now, is that most CRT monitors contain high amounts 
of lead. Most monitors contain several pounds of lead, in fact. Lead is very dangerous to 
humans and the environment, and must be dealt with carefully. Other harmful elements 
found in CRTs include arsenic, beryllium, cadmium, chromium, mercury, nickel, and zinc. 
If you have to dispose of a monitor, contact a computer-recycling firm. It’s best to let 
professional recyclers handle the monitor for you. 


@ Real World Scenario 


How Not to Dispose of Your Monitors 


This story comes from the technical support division of a now-defunct major computer 
manufacturer, which used a lot of computers at its own facility. At one time, the com- 
pany had as many as 500 technicians working the phones. So you can imagine that they 
burned out a lot of equipment. 


Here’s how they disposed of dead monitors. An IT staff member would take the monitor 
out to the dumpster and bring along a sledgehammer. Setting the monitor on its back, 
he would take one good swing at the glass panel with the hammer to shatter the screen. 
(This was done, by policy, to ensure that no one would want to go out to the dumpster 
and try to salvage the dead monitor.) After spraying glass everywhere, he picked up the 
monitor and threw it in the dumpster. 


One employee observed that it probably wasn’t good to be spreading glass all over 

the parking lot by shattering monitors. That advice was taken, and the sledgehammer 
was retired. Instead, an IT staff member would use a permanent black marker and draw 
all over the screen (again, so no one would want to try to salvage it), and again, it was 
thrown in the dumpster. 


In our enlightened state today (as opposed to the mid-1990s), we can see how this was 
not a good plan for disposing of broken monitors. In fact, many states today have laws 
prohibiting the disposal of computer monitors in trash bins. This is a good law because, 
with the amount of harmful elements in monitors, they're every bit the environmental 
hazard as are batteries. 
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Laser Printer Toner 


Toner cartridges should be recycled as well. PC recycling centers will take old toner car- 
tridges and properly dispose of them. The toner itself is a carcinogen, and the cartridges 
can contain heavy metals that are bad for the environment. 

Toner cartridges are valuable to companies that refurbish and refill these cartridges. It’s 
actually big business to refill these expensive cartridges, and it’s environmentally respon- 
sible. Most toner is the same for all types and models of laser printers, so a toner refurbish- 
ing center will refill and test these cartridges. Then these companies sell the cartridges for 
a fraction of the price of new toner cartridges. If a new toner cartridge is installed, the old 
toner cartridge is boxed up and sent back. Even if your organization doesn’t contract one 
of these services, they would be happy to take the old cartridges off your hands and keep 
them out of the trash. 


Mobile Devices 


Cell phones and tablets are considered disposable units, with the average life expectancy 
of two to four years. Their popularity has outpaced mobile computing and the desktop 
computer market. These mobile devices are extremely small and fit neatly into the trash. 
However, mobile devices contain the same toxic metals and chemical compositions as their 
larger cousins. Every mobile device has a circuit board that contains lead, batteries that 
contain other heavy metals, and bodies that contain plastics. 

These devices should be recycled responsibly. Many big-tag retailers have an anonymous 
recycling drop bin, where you can recycle a mobile device. There are even automated kiosks 
where you can get money for a defective device. You simply tell it what is wrong with the 
device, the device’s make and model, and its condition. The kiosk will then offer you a few 
dollars to recycle it. The company that owns and operates the kiosk refurbishes the device 
and resells it for a fraction of the cost of a new one. 


Before recycling a mobile device, make sure the device is wiped of your 

Qo personal data with the factory reset function. You never know where the 
device will end up. It could be refurbished and resold locally or sold for 
parts to a nefarious market. 


Chemical Solvents and Cans 


Nearly every chemical solvent that you encounter will have a corresponding MSDS. On the 
MSDS for a chemical, you will find a section detailing the proper methods for disposing of 
it. Chemical solvents were not designed to be released into the environment, because they 
could cause significant harm to living organisms if they’re ingested. If in doubt, contact a 
local hazardous materials handler to find out the best way to dispose of a particular chemi- 
cal solvent. 

Cans are generally made from aluminum or other metals, which are not biodegradable. 
It’s best always to recycle these materials. If the cans were used to hold a chemical solvent 
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or otherwise hazardous material, contact a hazardous materials disposal center instead of a 
recycling center. 


P Always be sure that you are following all applicable laws and regulations 
‘Qo when disposing of computer equipment. 


Understanding Policies, Licensing, 
and Privacy 


Many of the operational procedures that we’ve discussed up to this point have been about 
safety—yours, your computer equipment, and the environment. We’ve also touched on reg- 
ulations, as in always be sure to comply with local government regulations. In the following 
sections, we focus more on the legal side of things. Not understanding legal requirements is 
not a justifiable defense in a court of law. Considering that IT professionals often deal with 
software licensing and personally identifiable information, or sometimes encounter pro- 
hibited activity or have to deal with a security incident, you should understand the general 
principles related to these concepts. 


Dealing with Prohibited Content/Activity 


This is a situation that no one really wants to deal with, but it happens more often than we 
would care to admit: A computer you are fixing has content on it that is inappropriate or 
illegal, or you see someone on your network performing an action that is against policy or 
laws. How you respond in such a situation can have a significant bearing on your career, 
the other people involved, and, depending on the situation, the well-being of your organiza- 
tion. The lynchpin to dealing with prohibited content or activity is to have a comprehensive 
policy in place that covers appropriate behavior. After that, it’s a matter of executing the 
proper steps per the plan when something happens. 

Situations involving prohibited content or activities are not easy to address. The accused 
person might get angry or confrontational, so it’s important always to have the right people 
there to help manage and defuse the situation. If you feel that the situation is severe enough 
to worry about your own personal safety, don’t be afraid to involve the police. While the 
situation needs to be handled, there’s no sense in putting yourself in direct danger to do so. 


Creating a Prohibited Content Policy 


Creating a policy is the most important part of dealing with prohibited content or actions. 
Without a policy in place that specifically defines what is and what isn’t allowed, and what 
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actions will be taken when a violation of the policy occurs, you don’t really have a leg to 
stand on when a situation happens. 

What is contained in the policy depends on the organization for which you work. 
Generally speaking, if something violates an existing federal or local law, it probably isn’t 
appropriate for your network either. Many organizations also have strict policies against 
the possession of pornographic or hate-related materials on the organization’s property. 
Some go further than that, banning personal files such as downloaded music or movies on 
work computers. Regardless of what is on your policy, always ensure that you have buy-in 
from very senior management so that the policy will be considered valid. 

Here are some specific examples of content that might be prohibited: 


= Adult content 

= Content that advocates violence against an individual, group, or organization 
a Unlicensed copyrighted material 

a Content related to drugs, alcohol, tobacco, or gambling 

= Content about hacking, cracking, or other illegal computer activity 

a Violent or weapons-related content 


A good policy will also contain the action steps to be taken if prohibited content or 
activity is spotted. For example, what should you do if you find porn on someone’s work 
laptop? 

The policy should explicitly outline the punishment for performing specific actions or 
possessing specific content. The appropriate penalty may very well be based upon the type 
of content found. Something that is deemed mildly offensive might result in a verbal or 
written warning for the first offense and a more severe sentence for the second offense. If 
your company has a zero-tolerance policy, then employees may be terminated and possibly 
subject to legal action. 

Finally, after the policy has been established, it’s critical to ensure that all employees 
are aware of it and have proper training. In fact, it’s highly recommended that you have all 
employees sign a disclosure saying they have read and understand the policy, and that the 
signed document be kept in their human resources file. Many organizations also require 
that employees review the policy yearly and re-sign the affidavit as well. 


Incident Response 


If you have your policy in place, then your incident response plan should be relatively 
scripted. It might not be easy to deal with, but the steps you should take should be outlined 
for you. In the previous chapter, we talked about professionalism. This is a good time to 
remind you that people will be looking at your reaction as well as your actions. If you see 
prohibited content and start giggling and walk away, that probably doesn’t reflect well on 
you. Always remember that others are watching you. The specific steps that you take will 
depend on your policy. The following sections describe the best practices for dealing with 
security incidents. 
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Detecting the Incident 


The detection of an incident can be attained several different ways. The preceding section 
used the example of pornographic content on a laptop or mobile device. This is a great 
illustration of an example of passive detection. You were not looking for this material, but 
you found it, and now you must respond. A full list of incident detections is detailed in the 
following: 


Passive Passive detection is used to clue in on what happened and how it happened. 
Passive detection can be when you are reviewing logs, content, or events and discover an 
incident. Another example of passive detection in a physical security context is the use of a 
video camera. The video camera will show you an event in the past, but it is normally not 
actively looking for an event. An example of passive detection in a digital context is the use 
of file hashes. If a file hash does not match the original, then someone or something has 
tampered with the original content. 


Active Active detection is used to actively look for security incidents. This type of detec- 
tion in a physical security context is similar to having a security guard patrol your prem- 
ises. A digital example might be the use of an intrusion detection system (IDS) running on 
your firewall that alerts you to an attempted break in. This type of detection tries to catch 
the perpetrator in the act of a security incident. 


Proactive Proactive detection is the act of proactively securing possible holes in security. 
Penetration testing, also known as pen testing, involves someone trying to penetrate either 
the physical or software defenses of the organization. The exercise is done to strengthen 
the organization’s security for either the physical or digital defenses. Proactive detection 
normally does not create a security incident, unless the potential for the loss of information 
was discovered during the process. 


Responding to the Incident 


Once an incident is detected using the methods mentioned in the preceding section (passive, 
active, or proactive), or it’s detected through dumb luck, it’s time to spring into action and 
respond to the incident. The person responding to the incident, called the first responder, 
should be versed in how to collect evidence in the order of volatility. If the evidence is not 
collected, for example, from a computer’s RAM, and the computer reboots, the evidence 
will be gone. The order of volatility is as follows. 


1. Memory Contents Evidence of the incident located in the RAM of the computer or 
system. This evidence can be a file that has not been saved to the filesytem. It can also be a 
process running in RAM that requires a memory dump for further analysis. 


2. Swap Files Evidence that has been saved out to a swap file, because the process has 
been backgrounded or is no longer in foreground RAM. The swap file should be copied to 
removable media. 


3. Network Processes Evidence that is part of a network process, such as a browser redi- 
rection or spam or active network communications. This is where most of the incidents 
occur on a network. This information should be saved to removable media. 
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4. System Processes Evidence that is part of a system, such as an exploit that has been 
rooted into the operating system. This is also a common place for incidents to occur. The 
information should be separated out of the system and saved to removable media. 


5. Filesystem Information This evidence is in the form of files on a hard drive. An exam- 
ple of filesystem information is illegal content that has been saved to the filessystem. This 
information must be preserved in its original form but also copied for evidence purposes. 


6. Raw Disk Blocks This evidence is in the form of a block-level copy of the data. Once an 
incident is discovered and all the other volatile evidence has been collected, the last step is to 
create an image of the affected system. This can be done with a tool called a write-blocker 
(makes the media read-only) and specialized software that copies data at the block level. 


The preceding evidence can be collected with the sophisticated tools that only a highly 
trained first responder might have on hand. However, not all the tools need to be complex 
tools. A simple camera can preserve information. For example, if you walk up to a system 
that displays a ransomware screen, your first reaction should be to take a photo of the 
screen. If you press a key, the ransomware could crash and disappear. Photo evidence of 
data and processes that are loaded in RAM is a good alternative to not having any evi- 
dence, but having a digital copy of the evidence is preferred. 

The act of photographing the scene should not be limited to just the computer screen; 
anything relevant to the incident should be photographed as evidence. Time and date 
stamps should be overlaid onto the image. This is normally a function of any camera. 
However, if you can’t digitally record the time stamps, a simple alternative is to include a 
watch in the frame of the photo. 

You should take notes with a pad and pen, recording the initial scene, including time 
and date. Create a chronology of the discovery and collection of the evidence. Remember, 
any of this could potentially be used in a court of law. The underlying premise is to record 
as much evidence as possible before the crime scene is tainted by others. 


Following the Right Chain of Custody 


The removed materials should be secured and turned over to the proper authorities. 
Depending on the situation, materials may be held in a safe, locked location at the office, 
or they may need to be turned over to local authorities. Have a documented procedure in 
place to follow, given a situation. 

The materials that are deemed as evidence should be well documented as to why they are 
considered evidence. The chain of custody documentation should define the following: 


a Who obtained the evidence 
a Who secured the evidence 
a Who controlled the evidence during the entire process 


If the evidence is moved, the chain of custody documentation should reflect the 
following: 


= The reasons it was moved 


a Who moved it 
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= How it was secured 
a= Who controlled it 


The chain of custody must be maintained at all times. If a chain of custody of the evi- 
dence is not maintained, the evidence may not be admissible in a court of law. 


Reporting the Incident 


Once you’ve collected the initial set of evidence and in the order of volatility, it’s time to 
report the incident. The evidence collected, as well as notes taken during the collection, will 
help an escalation team or law enforcement to proceed in building a case. The goal of the 
first responder is to collect evidence that answers the following questions: 


a What happened? 

= When it happened? 

a How it happened? 

a Who made it happen? 
= Why it happened? 


An escalation team or law enforcement’s job is to fill in the blanks by using the evidence. 
If the evidence is complete and concise, it will be used to build a case against the threat 
agent. The ultimate goal is to stop a future incident from happening. 


Recovering from the Incident 


Your most important task is to recover from the incident. If your critical ordering system 
was affected during the incident, it’s your job to get it back online. If the incident involved 
one computer that is used by a task worker, then it’s your job to get it back up and running. 
You might notice a common theme here: It’s your job to get things back to normal after 

the incident. Once you can get the flow of information flowing again, you can move on to 
remediating the incident. 

During the recovery from the incident, you may have to make changes to the network or 
systems that support the clients. Any changes during the recovery process should be docu- 
mented thoroughly. Documenting these changes is important if you are submitting claims 
to insurance, assessing damages, or looking for future reparations. 


Remediating the Incident 


All components affected by the incident should be remediated, to ensure that all traces of 
the incident have been removed. Remediation can be as simple as adding firewall rules to 
the firewall, or it can involve formatting a server and reloading it. The steps to remediation 
should also include steps to prevent the incident from happening in the future. 


Reviewing the Incident 


The final step for incident response is to review all the documentation and findings of 
the incident—a process often called a hot-wash meeting. During a hot-wash meeting, the 
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incident response team should talk about what has been done properly during the incident 
and what procedures should be changed for future incidents. These meeting should be con- 
structive and support standards of excellence for the incident response team. 

Another key goal of the review process is to identify threats similar to the characteristics 
of the incident. If an employee entered credentials into a phishing page, what measures are 
in place to prevent this from happening to others in the organization? You may have rules 
in place for this particular phishing email, but are your employees trained for future inci- 
dents similar to this? If not, end-user training may be required. 


Best Practices for Incident Response 


Now that you have a good understanding for the process involved with incident response, 
let’s look at some of the best practices. The following best practices should be applied to all 
elements of the incident response process: 


Follow your policies exactly as they are written. Yes, we’ve already said this several times. 
It’s crucial that you do this. Not following the policies and procedures can derail your case 
against the offender and possibly set you up for problems as well. 


If you are the first responder, get a verifier. Your first priority as the first responder is to 
identify the improper activity or content. Then you should always get someone else to verify 
the material or action so that it doesn’t turn into a situation of your word against someone 
else’s. Report the situation immediately through the proper channels. 


Preserve the data or device. The data or device should immediately be removed from the 
possession of the offending party and preserved. This will ensure that the data doesn’t mys- 
teriously disappear before the proper parties are notified. 


Use documentation. Document everything that could be relevant to the situation. Many 
companies have standard documentation that is used in incident response in order to be 
sure that the responder captures important information and does not forget to ask critical 
questions or look for vital clues. 


PP Always be sure to follow government regulations as well as corporate 
A: end-user policies and security best practices when dealing with sensitive 
information. 


Managing Software Licenses 


When you buy an application, you aren’t actually buying the application. Instead, you’re 
buying the right to use the application in a limited way, as prescribed by its licensing agree- 
ment. Most people don’t read these licensing agreements closely, but suffice it to say, they’re 
pretty slanted in favor of the software manufacturer. 

Don’t like the terms? Too bad. No negotiation is allowed. If you don’t accept the end- 
user license agreement (EULA), your only recourse is to return the software for a refund. 
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(Most vendors will refuse to take back an opened box. Still, the software manufacturer is 
required to take it back and refund your money if you reject the licensing. This is true of 
programs purchased online as well.) 


P Many companies rely on digital rights management (DRM) to protect digi- 
‘Qo tal assets, such as online photos or videos. DRM is not as established as 
licensing agreements are, but you should still respect the property of the 
owners of digital content. 


Although the majority of the applications that you acquire will probably be commercial 
products, there are a number of alternatives to commercial software sales. Here are some of 
the license types that you may encounter: 


Freeware Freeware is software that is completely free. On a small scale, you can get such 
software from download sites such as www. download.com or from the creator’s personal 
website. Large companies like Google and Microsoft also sometimes offer products for 
free, because it serves the company’s interests to have a lot of people using their software. 
Examples include Google Chrome and Microsoft Internet Explorer. Freeware doesn’t 
include source code, and users aren’t allowed to modify the application. 


Open Source Open-source software is freer than free: Not only is the application free, 
but the source code (code used by programmers) is also shared to encourage others to con- 
tribute to the future development and improvement of the application. OSs such as Linux 
and applications such as OpenOffice fit this category. Open-source software can’t be sold, 
although it can be bundled with commercial products that are sold. 


Shareware Shareware is software that provides a free trial, with the expectation that 
you'll pay for it if you like it and decide to keep it. In some cases, a shareware version isn’t 
the full product; in other cases, it expires after a certain amount of time. Some shareware 
provides a full and unlimited version, with payment requested on the honor system. 


Multiuser This is commercial software that you’re allowed to install on more than one 
computer. For example, some versions of Microsoft Office allow you to install the same 
copy on two or three PCs. 


Single User This is commercial software for which the license restricts installation to a 
single PC. A common misconception is that a single-user license allows you to install the 
software on more than one computer as long as you use only one instance at a time, but 
that’s not accurate. Commercial products sometimes have activation systems that lock the 
software to a specific PC once it’s installed, so you can’t install it elsewhere. Microsoft 
Office is a good example of commercial software. 


Concurrent This license allows the software to be installed on many PCs but used con- 
currently by a smaller number. For example, you may have 1,000 computers with the appli- 
cation installed, but only 100 users can use it simultaneously. This is useful in situations 

in which everyone needs to have an application available but the application gets very little 
actual use. 
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Corporate, Campus, or Site These are enterprise licenses, which permit an organization 
to install the application on an agreed-upon number of PCs. For example, a school may 
buy a site license of an antivirus program and allow all students to download and install it 
freely to ensure that the school’s network remains virus free. Microsoft calls this a volume 
license key. 


If you buy any sort of commercial software, you will receive a product key, which you 
will need to enter during installation or the first time the application is opened. The prod- 
uct key might be emailed to you, or it could be located on the physical media if you got an 
installation CD-ROM or DVD. Figure 26.12 shows an example of a product key. 


FIGURE 26.12 A Microsoft product key 
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In a corporate environment, license management is a critical responsibility. The com- 
pany may spend thousands or even millions of dollars on software licenses. Money could 
be wasted on unused licenses, or if the company’s computers have unlicensed software, it 
could result in huge fines. Ignorance is not a legal excuse in this area. 

To avoid these problems, it may be best for your company to purchase a software asset 
management tool, such as Microsoft’s Software Asset Management (www. Microsoft .com/ 
sam), License Manager by License Dashboard (ww. licensedashboard.com), or FlexNet 
Manager by Flexera Software (ww. flexerasoftware.com). In general, here are the steps to 
take for proper license management: 


1. Build a database of all licenses owned by your company. This includes what type of 
license it is, license numbers, and expiration dates, if any. 


2. Perform an inventory of all licensed software installed on your computers. (This can be 
quite an effort.) 
Compare the license list to the install base. 
For any gaps where you have unlicensed software, either remove the software or pro- 
cure licenses. 
Because of the potential for heavy fines, many companies prohibit the installation 


of software on client computers unless specifically authorized by a manager or the IT 
department. 
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c Real World Scenario 


How Do | Buy the Right Licenses? 


Consider this situation: After talking to your boss about software licenses, you 
decide to investigate the office productivity software on your department’s comput- 
ers. You are unable to find proper documentation that the correct software licenses 
were purchased, leading you to wonder whether the company has the right licenses. 
Your boss wants to avoid any potential legal issues and asks you to go buy enough 
copies of the latest version of Microsoft Office for the 20 users in your department. 
What do you do? 


The first question to ask yourself is, do all 20 people use their computers at the same 
time? If not, then you might be able to purchase a concurrent license for fewer than 20 
users. If there's the possibility of all 20 users needing Office at once, then you'll definitely 
need licenses for everyone. You might purchase a corporate license as well. Now that you 
have figured out what to buy, how do you do it? 


One option is to go to the local computer store, load up 20 boxes of Office (if they have 
that many in stock), and trudge up to the cashier. A second option is to go to Microsoft's 
volume licensing site, at https: //www.microsoft.com/en-us/licensing/default, 

to learn about purchasing multiple licenses. Microsoft will direct you to an authorized 
reseller so that you can purchase the licenses. The authorized reseller will email you the 
list of license numbers to use when installing the software. Now you need just one physi- 
cal (or downloaded) copy to perform the installation. 








Managing Sensitive Information 


As an IT manager, you will very likely have access to information that you will need 

to keep closely guarded. For example, you might have access to username and/or pass- 
word lists, medical or educational records, addresses and phone numbers, or employee 
records. It’s your responsibility to ensure that sensitive information does not get 
released into the wrong hands. On the flip side, you may encounter information that’s 
sensitive because it’s prohibited or illegal. You need to know how to react in those situ- 
ations as well. 

Much of the data you come into contact with could be regulated outside of the orga- 
nization’s internal policies. Regulated data must be identified as it enters your network, 
and the proper operating procedures should be followed. The operating procedures 
for such data should be constructed so that you can adhere to the data’s regulatory 
compliance rules. The regulatory rules for compliance can be at any local, state, or 
federal level. Many of the regulations in the following sections are of a federal level of 
compliance. 
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Personally Identifiable Information 


Personally identifiable information (PII) is anything that can be used to identify an indi- 
vidual person on its own or in context with other information. This includes someone’s 
name, address, other contact information, the names of family members, and other details 
that people would consider private. 

PH should always be kept confidential and secure. It seems like every few months or so 
we see news stories of data breaches at big companies resulting in stolen credit card data or 
username and contact lists. This information finds its way into hackers’ hands and causes 
millions of people grief and monetary damages. Be sure that this information is properly 
secured and can be accessed only by authorized personnel. 


Payment Card Industry Data Security Standard 


Payment Card Industry Data Security Standard (PCI DSS) is a standard of processes and 
procedures used to handle data related to transactions using payment cards. A payment 
card is any card that allows the transfer of money for goods or services. Types of payment 
cards include credit cards, debit cards, or even store gift cards. 

PCI DSS compliance is not enforced by government entities. PCI DSS compliance is actu- 
ally enforced by banks and creditors. Merchants must comply with the PCI DSS standard 
to maintain payment card services. If a merchant does not comply with PCI DSS standards 
and a breach occurs, the merchant can be fined by the banks. Once a breach of PCI data 
occurs, then local, state and federal laws can apply to the merchant. For example, some 
laws require the merchant to pay for credit-monitoring services for victims after a breach. 


General Data Protection Regulation 


The General Data Protection Regulation (GDPR) is a European Union (EU) law govern- 
ing how consumer data can be used and protected. The GDPR was created primarily to 
protect citizens of the European Union. It applies to anyone involved in the processing of 
data based upon the citizens of the European Union, regardless of where the organization is 
located. 

The GDPR recommends that organizations hire a data protection officer (DPO). This 
person is the point of contact for all compliance for GDPR, as well as any other compli- 
ances your organization falls under. The underlying goal is to achieve consent from the end 
user of your product or service. Consent to collect information must be proven by an orga- 
nization beyond a shadow of doubt. This means that if someone visits your website from 
the European Union, you must receive consent in clear language to even place a cookie in 
their web browser. The DPO is responsible for coordinating this language, as well as the 
life cycle of any data that is collected. 


Protected Health Information 


Protected health information (PHI), also known as personal health information, refers 
to any information used in the health-care industry to describe a patient or aliment. This 
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information can be considered “the patient chart” you always see on television. However, 
electronic health records (EHR) go way beyond the current condition of a patient; they 
describe a person from cradle to the grave. 

Electronic health records are used to record a patient’s vitals, every time the patient visits 
a doctor’s office. They represent historical information of patients, as well as billing infor- 
mation used by health-care providers. This makes the EHR extremely valuable to a hacker 
and represents a large makeup of identity theft. 

This type of identity theft is really dangerous! Your diagnosis could be concluded upon 
vitals, allergies, or conditions that are recorded from a person who assumes your identity. 
Try to explain to the insurance company that your gallbladder needs to be removed, but 
their records show they paid to have it taken out already. 

PHI can also be used to track the statistics of larger groups of people. However, the data 
must be anonymized first, before it is put into a publically addressable database for these 
statistics and studies. Information such as names, Social Security numbers, phone numbers, 
health insurance information, account numbers, and specific geographical information 
must be removed. Interesting enough, geographical information can include only the first 
three digits of a zip code. 


Policies and Security Best Practices 


A good portion of the 220-1002 exam is dedicated to the security of information. As a 
technician, you must understand the various risks to your data, how to identify security 
weaknesses, and protect yourself from the risks. In Chapter 22, “Security Concepts,” 
you learned about physical and logical security components. In Chapter 23, “Securing 
Operating Systems,” you learned how to apply security principles to operating systems, 
such as Windows and mobile systems. In Chapter 24, “Troubleshooting Operating 
Systems and Security,” you learned about the symptoms of security problems related to 
Windows and mobiles systems. In Chapter 25, “Documentation and Professionalism,” 
you learned about polices found in many organizations. In this final chapter, you learned 
how to respond to security incidents and the various types of regulated data that must be 
protected. 

All the security best practices covered in this book should be followed at a minimum, to 
protect your data and your systems from exploitation. The best way to protect your data 
on a daily basis is to follow standardized operating procedures. These procedures should be 
composed from established policies in your organization. For example, the cycling of pass- 
words is a best practice, as covered in Chapter 23. A typical policy formulated from this 
best practice might be changing passwords every six months for employees. The procedures 
created from this policy could be the expiration of current passwords after a six-month 
period, thus forcing the user to change their password. 

As a technician, your duty is to create and execute these procedures according to your 
organization’s policies. You should also have an active role in creating the organization’s 
polices, since you can now identify inherent risks to your organization’s security. 
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Summary 


This chapter covered three areas of operational procedures that you should integrate into 
your work: 


a Safety procedures 
= Environmental controls 
= Licensing, policies, and sensitive materials 


First, we looked at the importance of safety procedures. Safety is about protecting you 
from harm as well as protecting your computer components from getting damaged. Then, 
we outlined some methods to apply the policies and procedures for a safe working envi- 
ronment, and identified potential safety hazards. Included were preventing electrostatic 
discharge (ESD) and electromagnetic interference (EMI), creating a safe work environment, 
and properly handling computer equipment. 

Safety involves you and your co-workers, but it also includes environmental issues. The 
environment can have a harmful effect on computers, but computers can also greatly harm 
the environment. You need to be familiar with the importance of material safety data 
sheets (MSDSs) as well as the proper disposal procedures for batteries, display devices, and 
chemical solvents and cans. These items need to be kept out of the environment because of 
the damage that they can cause. 

Finally, we looked at potential legal issues. Failure to follow certain procedures can 
expose you or your company to legal proceedings. Make sure that all the software on your 
computers is legal and licensed and that the computers contain no illegal or prohibited 
materials. You may also need to protect personally identifiable information, depending on 
the type of data you have. When incidents happen, you need to know how to respond prop- 
erly to mitigate the issue. 


Exam Essentials 


Know which computer components are particularly dangerous to technicians. The most 
dangerous components are the power supply and the monitor. Both are capable of storing 
lethal charges of electricity, even when unplugged. You also need to be aware of parts that 
get incredibly hot, such as the processor, which can cause severe burns if touched. 


Understand where to find safety information regarding chemicals. You can find this 
information in a material safety data sheet (MSDS). An MSDS might not have come with 
your purchase, but most suppliers will gladly supply one. 


Know which tool to use for which job. The majority of computer repair jobs can be han- 
dled with nothing more than a Phillips-head screwdriver. However, you might need cutters, 
extra light, or a mirror for some jobs. Avoid using magnetic-tipped tools. 
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Understand methods to help prevent ESD. One of the biggest and most common dangers 
of electronic components is electrostatic discharge (ESD). You can employ several methods 
to help avoid ESD-related problems, such as grounding yourself, using an antistatic wrist 
strap, bag, or mat, and controlling the humidity levels. 


Know the proper disposal procedures for used computer parts, batteries, and chemical 
solvents. The specific disposal procedure depends on the item. However, the safe answer 
is always to recycle the component, not to throw it in the trash bin. 


Know the differences between license types. Open-source applications don’t require a 
purchased license, whereas commercial applications do require a purchased license. Some 
licenses are personal licenses, meaning the applications are for use by one person on one 
computer, whereas others are enterprise licenses, meaning the applications can be used on 
multiple computers at the same time. 


Understand how to handle prohibited content or activity. Always have policies and proce- 
dures in place to deal with prohibited content or activity. When an incident happens, follow 
the procedures, report through proper channels, preserve the data or device, and follow the 
chain of custody. 


Know the various types of sensitive information. You should know that personal identifi- 
able information (PII) is any information used to identify an individual. The Payment Card 
Industry Data Security Standard (PCI DSS) is a standard of policies and procedures used 
by the payment industry. General Data Protection Regulation (GDPR) is a European Union 
(EU) law governing how EU citizen data is used. Protected health information (PHI) is any 
information used to describe a patient or a patient’s ailment. 
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Review Questions 


The answers to the chapter review questions can be found in Appendix A. 


1. You have dropped a screw into a tight location of a computer. How should you retrieve it? 
A. Use a magnetic-tipped screwdriver. 
B. Use a magnetic grabber. 
C. Use a three-pronged grabber. 
D. Shake the computer until it falls out. 
2. You have a failed CRT monitor that you must dispose of safely. Which of the following is 
used to discharge voltage properly from the unplugged computer monitor? 
A. Antistatic wrist strap 
B. Screwdriver 
C. High-voltage probe 
D. Power cord 
3. One of your co-workers just spilled a chemical solvent in a warehouse, and you have been 


asked to help clean it up. Which of the following must contain information about a chemi- 
cal solvent’s emergency cleanup procedures? 


A. OSHA 

B. MSDS 

C. Product label 
D. CRT 


4. You are purchasing an inkjet printer cartridge for home use that you know has an MSDS. 
How do you obtain the MSDS for this product? 


A. The store is required to give you one at the time of purchase. 
B. It’s contained in the packaging of the printer cartridge. 
C. You are not legally allowed to have an MSDS for this product. 
D. You should visit the printer cartridge manufacturer’s website. 
5. Inthe interest of a safe work environment, which of the following should you report? 
(Choose two.) 
A. An accident 
B. A near-accident 
C. Spills on the floor inside a building 
D 


Rain forecasted for a workday 
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What is the approximate minimum level of static charge for humans to feel a shock? 

A. 300 volts 

B. 3,000 volts 

C. 30,000 volts 

D. 300,000 volts 

Your work environment has been unusually dry lately, and several components have been 


damaged by ESD. Your team has been asked to be extra careful about ESD damage. Which 
of the following measures can be implemented to reduce the risk of ESD? (Choose two.) 


A. Use an antistatic wrist strap. 

B. Use an antistatic bag. 

C. Spray disinfectant spray. 

D. Shuffle your feet. 

Which of the following are OSHA requirements for a safe work environment that must be 
followed by employers? (Choose two.) 

A. Attend yearly OSHA safe work environment seminars. 

B. Provide properly maintained tools and equipment. 

C. Have an OSHA employee stationed within 5 miles of the facility. 

D. Display an OSHA poster in a prominent location. 

Your office just added 20 new workstations, and your manager has put you in charge of 


configuring them. The users need to have Microsoft Office installed. What should you do 
to install Microsoft Office properly on these computers? 


A. Ensure that the company has the proper licenses to install 20 additional copies. 
B. Agree with the open-source license agreement during installation. 


C. Use the personal license key from an existing system to install Office on the new 
computers. 


D. Follow normal installation procedures; nothing else needs to be done. 
Your office is moving from one floor of a building to another, and you are part of the mov- 


ing crew. When moving computer equipment, which of the following are good procedures 
to follow? (Choose two.) 


A. Lift by bending over at the waist. 

B. Carry CRT monitors with the glass face away from your body. 
C. Use a cart for heavy objects. 
D 


Ensure that there are no safety hazards in your path. 
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You just removed four AA alkaline batteries from a remote-control device. What is the rec- 
ommended way to dispose of these batteries? 


A. Throw them in the trash. 

B. Incinerate them. 

C. Take them to a recycling center. 

D. Flush them down the toilet. 

When replacing a hard drive, you discover prohibited material on a user’s laptop. What 
should you do first? (Choose two.) 

A. Destroy the prohibited material. 

B. Confiscate and preserve the prohibited material. 

C. Confront the user about the material. 

D. Report the prohibited material through the proper channels. 


You need to investigate how to protect credit card data on your network. Which informa- 
tion should you research? 


A. PCIDSS 
B. GDPR 
C. PHI 

D. PH 


Which class of fire extinguisher is recommended for use in a wood and paper fire? 
A. A 


B. B 
C. C 
D. D 


Which of the following are common types of screwdrivers? (Choose two.) 
A. Circular 


B. Phillips 
C. Torx 
D. Helix 


Which of the following are elements of a good workplace safety plan? (Choose two.) 
A. Periodic workplace inspections 

B. A safety and health-training program 

C. Retribution for employees who report violations 

D 


An independent third-party auditor of the safety plan 


17. 


18. 


19. 
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What is the recommended use policy on magnetic-tipped screwdrivers inside computers? 
A. Do not use them. 

B. Its okay to use them, but keep them away from the processor. 

C. It’s okay to use them, but keep them away from the RAM. 

D. It’s okay to use them, but only if they’re of the powered variety. 


Which of the following are usually contained on an MSDS? (Choose two.) 

A. Freezing point 

B. Handling and storage instructions 

C. Personal protection instructions 

D. Salinity levels 

Which of the following are OSHA requirements for a safe work environment that must be 
followed by employees? (Choose two.) 

A. Immediately report all accidents to OSHA. 

B. Use protective gear and equipment. 

C. Attend safety training. 


D. Follow all employer-implemented health and safety rules. 


Which of the following types of batteries are not considered environmental hazards? 
A. Alkaline 

B. Nickel-metal hydride (NiMH) 

C. Nickel-cadmium (NiCd) 
D 


Button cell 
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Performance-Based Question 


You will encounter performance-based questions on the A+ exams. The questions on the 
exam require you to perform a specific task, and you will be graded on whether or not you 
were able to complete the task. The following requires you to think creatively in order to 
measure how well you understand this chapter’s topics. You may or may not see similar 
questions on the actual A+ exams. To see how your answers compare to the authors’, refer 
to Appendix B. 

One of your office co-workers recently tripped on a power cord and injured himself. 
What should you do to find potential trip hazards in your office? Once the hazards are 
identified, what actions should you take? 


CompTIA® A+® Complete Study Guide, Fourth Edition 
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Answers to Review 
Questions 
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Chapter 1: Motherboards, Processors, 
and Memory 


1. A. The spine of the computer is the system board, otherwise known as the motherboard. 
All other computer components plug into the motherboard. On the motherboard, you will 
find the CPU, underlying circuitry, expansion slots, video components, RAM slots, and 
various other chips. 


2. C. DDR SDRAM is manufactured on a 184-pin DIMM. DIMMs with 168 pins were used 
for SDR SDRAM. 224-pin DIMMs do not exist. DIMMs with 240 pins are used for DDR2 
and DDR3 SDRAM. 


3. B. Remember the 8:1 rule. Modules greater than but not including SDR SDRAM are 
named with a number eight times larger than the number used to name the chips on the 
module. The initials PC are used to describe the module; the initials DDR are used for the 
chips; and a single-digit number after PC and DDR is used to represent the level of DDR. 
The lack of a single-digit number represents DDR as long as the number that is present is 
greater than 133 (such as PC1600). Otherwise, you’re dealing with SDR (such as PC133). 
This means that PC3-16000 modules are DDR3 modules and are populated with chips 
named DDR3 and a number that is one-eighth of the module’s numeric code: 2000. 


4. D. The ITX motherboard family consists of smaller boards that fit in standard or 
miniature cases and use less power than their larger counterparts. ATX are “standard” 
sized motherboards in today’s world. AT is a legacy form factor that was bigger than ATX. 
Micro ATX is smaller than ATX, but larger than ITX motherboards. 


5. C. The Core i7-8700K is a Coffee Lake-series processor, which uses the LGA 1151 socket. 
LGA 1150 sockets are for older i7s, and the LGA 1366 socket is for even older ones than that. 
The LGA 2066 socket is for processors with a capital X at the end of their model number. 


6. B. Thermal paste is used to attach heat sinks and fans to processors. A heat sink usually 
gets attached to the processor using thermal paste, and then the fan is attached to the heat 
sink. Superglue would make it adhere, but it does not transfer heat properly—it would 
likely melt and cause a mess. 


7. B. Overclocking is when someone sets the speed of the processor to run faster than it was 
rated for. While overclocking can make a computer faster, it can also cause the processor 
to overheat, and it voids the warranty. Hyperthreading allows for a processor core to 
handle multiple processes simultaneously. Virtualization is when you create multiple virtual 
machines on a computer. Multicore means that the processor has more than one core—it’s 
not a configurable option. 


8. A. Liquid cooling systems require a reservoir of liquid and a pump to circulate the liquid. 
It’s possible that the system could malfunction, causing a mess inside the computer. Thermal 
paste is used to adhere a heat sink to a processor. Heat sinks and fans do not use pumps. 


9. C. The AMD Ryzen 3, Ryzen 5, and Ryzen 7 CPUs use Socket AM4. AM2 and AM3 are 
used for older processors, such as the Phenom H, Athlon II, Sempron, and Opteron. Any 
socket that starts with LGA in its socket name is for Intel processors. 


10. 


11. 
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19. 


20. 
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B. Soft power is the feature whereby the front power button acts as a relay to initiate 
various system power changes, depending on the duration that the button is held. 
Programmable power, relay power, and hot power are not valid power options. 


B, F. DIMMs used in desktop motherboard applications have one of four possible pin 
counts. SDR SDRAM is implemented on 168-pin modules. DDR SDRAM is implemented 
on 184-pin modules. DDR2 and DDR3 are implemented on 240-pin modules with different 
keying, and DDR4 DIMMs have 288 pins. Older dual-channel DIMM modules have 232 
pins. Modules with 200 and 204 pins are used in the SODIMM line, and there are no 
modules with 180 pins. 


C, D. For virtualization to work, both the CPU and BIOS need to support it. The operating 
system does as well. Virtualization support may need to be manually enabled in the BIOS. 
RAM does not need to support virtualization, and neither does the motherboard (except for 
the BIOS). 


D. Most motherboards have a jumper or similar momentary closure mechanism that 
will allow you to clear the CMOS memory of any user settings and cause the BIOS to use 
factory defaults, including no user or supervisor passwords. 


A. The easiest solution that works to cool your CPU is to connect the four-pin connector 
into the three-pin header. The missing pin allows you to control the speed of the fan. 
Without it, the fan will run at top speed, which is fine, albeit a little noisier. There is no 
four-pin to three-pin power adapter. The heat sink alone should not be relied upon for 
proper cooling of modern CPUs, and an extra chassis fan isn’t designed to specifically help 
cool the CPU. 


C. The PCle 1.1 specification provided 250 MBps of throughput per lane per direction. 
With the 2.x versions of PCIe, this rate was doubled to 500 MBps. As a result, each 
v2.0 lane is capable of a combined 1GBps. A x16 slot consists of 16 lanes, for a total 
bidirectional throughput of 16 GBps. 


C. The reset button causes the computer to return to nearly the same point it is in when 
you power it on, but without the need for power cycling. Using Restart in the Start menu 
does not reboot as deeply as the reset button. Hibernation is a power state that completely 
removes power after saving the contents of RAM to the hard drive; pressing the power 
button is required to resume the session in the same manner as starting the computer after a 
complete shutdown. The power button cannot be used as a method of restarting the system. 


B. None of the options are required, but a UPS is by far the most helpful among 
the answers in that loss of power during this procedure can range from annoying to 
devastating. 


A. These CPUs integrate the graphics processing unit (GPU). The Core i7 before them 
integrated the memory controller, eliminating the FSB. Math coprocessors have been 
integrated since the 80486DX. 


C. Pentium processors in a desktop always use DIMMs. DIPs and SIMMs are earlier forms 
of memory that have been obsolete for many years. SODIMMs are used in laptops. 


B. PCle is the newest and fastest slot for video cards. AGP and PCI are legacy technologies. 
SATA is for hard drives. 
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Chapter 2: Internal Expansion, Storage 
Devices, and Power Supplies 


1. 


10. 


D. Although technically PCI could be used for graphics adapters, PCIe supports high- 
speed, 3D graphic video cards. PCle offers better performance than older graphics adapters. 
USB and FireWire can stream video, but they are not used for attachment of internal 
graphics adapters. 


A. A conventional hard disk drive system consists of the hard disk and its often-integrated 
controller as well as a host adapter to gain access to the rest of the computer system. The 
drive interface is a common component of the controller and host adapter. 


B. A network interface card (NIC) is used as a communications device. It enables the 
computer to talk to other computers on a network. It does not provide multimedia, input/ 
output (such as a USB port does), or storage capabilities. 


D. A fixed number of clusters is supported by each operating system, leading to a 
corresponding maximum volume size. If the maximum NTFS cluster size of 64 KB is used, 
NTFS can support a single-volume size of 64 KB less than 256 TB. When a cluster size 

of one sector, or 512 bytes (1/2 KB), is used, the maximum volume size reduces to 2 TB. 
Because of this math, 1 TB and 128 TB are incorrect answers. 


B. A solid-state hybrid drive incorporates the features of both conventional magnetic-only 
hard drives and solid-state drives. As a result, the performance of an SSHD exceeds that of 
a hard drive but costs less than the equivalent-sized SSD. A dual-drive option still requires 
the purchase of a full-sized SSD. Adding the cost of the SSD and the HDD, the dual-drive 
solution does not satisfy the requirement of an affordable technology. NVMe is a form of 
solid-state drive and does not save money. 


B. Blu-ray discs have a single-sided, single-layer capacity of 25 GB. A double-sided, single layer 
DVD can store about 9.4 GB, and a double-sided, double-layer DVD can store about 171 GB. 


A. Hot-swappable devices can be removed while the power to the system is still on. Warm- 
swappable devices need to be stopped in the operating system before being removed. The 
term has nothing to do with the heat level of the device. 


C. Power supplies and AC adapters use standard wall outlets for an input of AC voltage, which 
they convert to the DC voltages required by the components to which they supply power. 


A, C, D, E, F. A PC’s power supply produces +3.3VDC, +5 VDC, -SVDC, +12VDC, and 
-12VDC from a 110VAC input. 


D. PC power supplies accept alternating current (AC) as input and produce direct current 
(DC) for the internal components. Europe requires the voltage selector switch be set at 

the higher setting. SATA drives most often use a specific power connector that is not 
compatible with the Molex connector used by PATA drives. Legacy AT-based motherboards 
called for P8 and P9 connectors; ATX motherboards have a newer 20- or 24-pin single 
power connector. 
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C. Today’s hard drives, regardless of their rpm, have standard internal power connections. 
The other options are valid concerns when installing an internal drive. 


A. Although inefficient as an interactive medium, sequential tape-based storage continues 
to be developed in increasing capacities. Tape continues to be a good choice for frequently 
backing up large amounts of data for redundancy and archival purposes. Optical discs 
don’t have the same capacity, and neither do external hard drives. The cloud could be an 
option, but that is different from a network share. 


A. PCIe video cards may be bridged together, enabling two cards to function as one system. 
Sound cards and I/O expansion cards such as USB and eSATA cards do not have bridging 
capabilities. 


E. For a video card, the best standard currently available is PCle, and the widest channel 
width is x16. There are no PCI x16 or PCI x128 slots, nor is there a PCIe x128 slot. AGP is 
an older video expansion standard that is now obsolete. 


B. Personal computers do not have permanently installed power supplies. Like other 
electrical and electronic components, power supplies can and do fail on a regular basis. 
Permanently mounting a power supply to a chassis would be a disservice to the consumer. 
You should consider the cumulative power needs of your installed components, and you 
might have to obtain adapters and splitters if you do not have enough or you have the 
wrong types of connectors coming from the power supply. 


C. The smallest of the options is microSD, at 15 mm x 11 mm. Perhaps “micro” 

gives it away, but that also makes it easy to remember. SD cards are 32 mm x 24 mm. 
CompactFlash cards are the largest, at 36 mm x 43 mm. MiniSD cards measure at 21.5 mm 
x 20 mm, and xD cards are 20 mm x 25 mm. 


C. M.2 and NVMe are both relatively new SSD options, and both are incredibly fast. 
NVMe is slightly faster, though. SATA is limited to 600 MBps transfer speeds, whereas 
PCle is not. An NVMe PCle card can sustain data read rates of about 3,500 MBps. 


D. RAID 5 arrays require a minimum of three hard drives to implement. If one drive fails, 
the data is fine and the system can still function, albeit slowly. If more than one drive fails, 
the system will be inoperable. RAID 5 provides both fault tolerance and a performance 
improvement. 


C, D. Most likely, the new card will be detected and function properly once the computer 
is booted up. However, the driver will need to be installed. Odds are the new card will be a 
different model from the integrated card, which will require a new driver. On some systems, 
you will need to go into the BIOS and disable the integrated adapter. Bridging happens 
between two PCIe video adapters, not an integrated video chipset. 


A. Power supplies are rated in watts. When you purchase a power supply, you should make 
sure the devices inside the computer do not require more wattage than the chosen power 
supply can offer. The voltage is fairly standard among power supplies, and it has nothing 

to do with the devices connected to the power supply. Amperage and resistance are not 
selling points for power supplies. Another thing that could vary is the number of power 
connectors—make sure the new power supply has enough to support all installed peripherals. 
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1. B,E. Early LCD monitors featured one or more fluorescent bulbs that were used to 
produce light that shone through the LCD panel. Modern LCD monitors have LED 
panels to generate the light, the advantage being that there is now a separate LED for 
each picture element instead of a common light source for the entire monitor. OLEDs 
do provide light, but RGB OLEDs are not used. Incandescent and halogen bulbs are not 
used for backlighting. 


2. A. USB 2.0 has a maximum speed of 480 Mbps. USB 3.0 is 5 Gbps; USB 3.1 is 10 Gbps; 
and USB 3.2 is 20 Gbps. 


3. C. A touch screen provides video output, and users can touch the screen to provide input 
as well. A webcam is for video input, and a projector is for video output. A KVM switch 
lets users connect one keyboard, video, and mouse set to multiple computers and switch 
between them. 


4. D. As you lower the resolution, the maximum refresh rate allowed tends to increase. The 
refresh rate is most often expressed in cycles per second (Hz), not millions of cycles per 
second (MHz). You must usually select the refresh rate that you want from the display 
settings dialogs, not through the monitor’s built-in menu system, although the monitor can 
often tell you the refresh rate that you’re using. Finally, both the monitor and adapter must 
agree on the refresh rate you select. If either device does not support a particular refresh 
rate, such a rate cannot be used. 


5. C. DB-9 connectors are most often used with serial cables and are not associated with hard 
drives. USB-C, eSATA, and SCSI are examples of connectors used with hard drives. 


6. A. Contrast ratio is a selling point for LCDs and is relevant for all monitor types, including 
OLEDs. Higher contrast ratios mean the monitor displays darker blacks and brighter 
whites. The measure of luminance between adjacent pixels is known as contrast, not 
contrast ratio. Contrast ratio is not dependent upon resolution. 


7. B,D. HDMI cables transmit digital video and audio signals. They can be used to connect 
to projectors or monitors. HDMI cables can have standard HDMI connectors, mini- HDMI 
connectors, or micro-HDMI connectors. 


8. A. Intel and Apple collaborated on Thunderbolt to add PCIe to VESA’s DisplayPort and to 
make the resulting interface smaller and less expensive to connect. HDMI, DVI, and VGA 
are not equivalent to DisplayPort with PCle added in. 


9. D. An LCD’s native resolution is the single, fixed resolution that provides optimal clarity. 
There is no default or burned-in resolution. The refresh rate is how quickly the image is 
re-drawn on the screen, and the aspect ratio is the ratio of the resolution. 


10. C. Such a connection should not be made. DVI-I cables act like universal cables; they can 
connect two DVI-A interfaces or two DVI-D interfaces with adapters. Natively, they are 
used to connect two DVI-I interfaces, both of which are configured as either analog or 
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digital. They are unable to convert the analog signal to a digital one, however. Analog and 
digital DVI interfaces are too disparate to interconnect. 


C, D. Magnetic readers and chip readers can read credit and debit card information to 
initiate a financial transaction. Barcode readers read barcodes on packages. Signature pads 
allow for the digital input of someone’s signature. 


D. KVM switches are ideal when you have multiple computers situated near one another 
and do not want to commit the extra desk space to each computer having its own keyboard, 
mouse, and monitor. KVMs are not designed for Ethernet devices or printers, and do not 
switch voltage. 


A, C, E. USB cables and eSATA cables can transmit power and data. You will find 
Lightning, USB-C, and micro-USB connectors on the ends of USB cables. A Molex 
connector is power-only. A DB-9 is for serial cables and is data-only. 


D. The multi-monitor feature allows two monitors to display exactly the same thing (clone) 
or to extend your Desktop onto the second monitor. There is no need to use one adapter to 
achieve this result. In fact, the two adapters don’t even have to use the same expansion-bus 
architecture. The two cards must, however, use the same graphics-adapter driver. Multi- 
monitor settings do not cause two Desktops to merge, nor do they allow two laptops to 
display the same Desktop. 


B. Peripherals most often use USB today, but they can also use D-sub connectors (rarely), 
and audio devices such as microphones and speakers use 1/8” jacks. Molex connectors are 
power connectors for PATA hard drives and optical drives. 


C. When evaluating a projector, understand how many lumens it produces. You need to 
ensure that it will be bright enough for the environment in which it will be used. Most 
projectors can support multiple aspect ratios and resolutions. 


B. Starting with the iPhone 5, Apple products use the proprietary Lightning connector 
for charging and connecting peripherals. Thunderbolt connectors are on MacBooks for 
peripherals. iPhones do not have built-in USB connectors. 


B. Dividing 16 by 10 produces a value of 1.6. Dividing the first number of a 16:10 
resolution by the second number always results in 1.6. Therefore, the answer is 1920 x 
1200. Resolutions with a 4:3 aspect ratio produce the value 1.33, while 5.4 resolutions such 
as 1280 x 1024 produce the value 1.25. 16:9 aspect ratios have a value of 1.78. 


C. A trackball is a sort of stationary upside-down mouse that has the ball for movement 
detection on the top of the device along with the keys. The ball is actuated by the thumb 
or fingers, not by moving the device along a flat surface or mouse pad. Trackballs are ideal 
where desk space is limited. Touch pads feature a touch-sensing surface with no ball for 
movement, while track pad is a more rare term meaning the same. 


B. VGA signals are analog, uncompressed, component signals that carry all of the video 
information for all three components of the original RGB signal. VGA signals are not 
digital, composite, or compressed. 
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Chapter 4: Custom PC Configurations 


1. C. Graphic design and CAD/CAM design workstations do not require a powerful CPU. 
They can use a fast hard drive because the artist works with large images that can take a 
long time to load or save. Maximum RAM is needed to hold the highly detailed, sometimes 
3D, artwork before saving. High-end video is necessary for assisting in the rendering and 
display of the images. 


2. D. A/V editing workstations require specialized audio and video cards and large and fast 
hard drives; they also benefit from dual monitors. A fast NIC, extra RAM, and a faster 
than normal processor do not support the requirements of A/V editors. 


3. B. Virtual machines do not imply virtual processing. The data storage, processing cycles, 
and RAM usage are all real. The separate hard drive and chassis for each operating system 
are virtual. The other answers all have at least one fundamental problem with their logic. 
CPU cores are not installed in virtual machines but in CPU packages within physical 
machines. CPU cores do not take over for each other. There is no fault tolerance among 
them. Storing data is the job of RAM, which should also be maximized for virtualization 
workstations. 


4. A. Multiple video cards (to get multiple GPUs) can be a way to increase video performance. 
Such a configuration may generate too much heat for conventional cooling to dissipate 
before the system is damaged. The cooling has no effect on external controllers, and sound 
cards don’t generate much heat, but analog would certainly generate more than digital. 


5. A,C. Virtualization workstations need to maximize the amount of RAM as well as CPU 
cores. Each virtualized instance of an operating system will be assigned its own memory 
and processor resources, and those resources are essentially reserved and off-limits to other 
virtual operating systems. Therefore, maximize both of them. Audio isn’t required on a 
virtualization workstation, so surround sound is not needed. Large fast hard drives will be 
nice but are not a primary requirement. 


6. B. Thick clients are standard desktop PCs. They stand in contrast to systems with 
specialized requirements, such as the remaining options. 


7. D. Although not all thin clients are devoid of local processing capability, some are. High- 
resolution graphics are not a requirement, but thin clients do require a system unit with a NIC. 


8. C. Optimally, the NAS should communicate across a link that is the aggregate of all client 
links, but at the very least, the NAS’s link should be a faster one to alleviate the potential 
bottleneck when all clients try to access the server simultaneously. 


9. D. Quite simply, the rendering of 2D and 3D graphics makes use of complex algorithms 
that need all of the GPU power they can get to remain usable. CAD workstations deal 
with static images, not streaming video. Manufacturing equipment is generally slower than 
computers used for the design phase. The CPU still does its job, but CAD workstations call 
for high-end video, which includes graphics adapters with GPUs often more powerful than 
the system’s CPU. 
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A. Editors of this type of media have numerous controls and timelines to track. 
These constructs often lie along the bottom of the application and run horizontally. 
Subsequent monitors allow the editor to spread out her work without shrinking the 
view excessively. 


B. Maximum RAM and CPU cores are the primary requirements for such systems. 
Although there are multiple guest operating systems, generally there is but one host to those 
guests. File sharing may be a service the administrator decides to offer, and multiple NICs 
might prove advantageous with virtual machines that are popular among the clients, but 
these workstations do not require either. 


B. Gaming PCs are not known for requiring fault tolerance or data persistence. RAID 
arrays, therefore, are generally not included. The other components are a benefit for gaming 
PCs, however. 


A, B, C. Virtualization workstations are the only custom configuration that requires CPU 
enhancements. For these types of systems, more cores are better. A/V editing workstations, 
gaming PCs, and graphic design workstations do not require CPU enhancements. 


C. Because of its exceptional capabilities of digital video and audio output, as well as its 
potential for support of future standards, HDMI is the video output technology of choice. 
VGA, DVI, and component video (YCbCr and YPbPr) can’t make the same claim. 


D. These standard systems do not have any special requirements, only that they can run 
Windows and desktop applications. Thick clients do not need enhanced video, hard drives, 
or RAM. 


C. Clients request services of servers. Thin clients can request software services from their 
servers, whether in the form of running the software and passing the results to the client or 
passing the code of the software to the client to be executed by its processor and kept only 

in RAM. 


B. A NAS should support file sharing and media streaming, and have a Gigabit NIC card 
and a RAID array. Additional RAM in a NAS offers no advantage for the performance of 
the NAS past a certain point. The tasks the NAS is asked to perform do not require high 
performance. 


A, D. Virtualization and graphic design workstations benefit from as much RAM as can be 
installed. Network-attached storage devices and gaming PCs do not require a large amount 
of temporary storage of instructions and data. They are more about the rapid movement of 
graphical data toward an output device. 


A. The Windows 10 computer can be built as a normal system with a 2 TB or 3 TB drive. 
Windows IoT typically runs on a thin client. A type of CAD/CAM workstation capable of 
CNC would be used to create automotive wheel rims. A NAS is an ideal choice to take the 
place of both the Blu-ray player and DVR. 


B. CAD/CAM design workstations, A/V editing workstations, and gaming PCs can all 
benefit from video enhancements. A NAS does not benefit from enhanced video and might 
not use a monitor at all. 
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Chapter 5: Installing and Configuring 
Printers 


1. A. Because the toner on the drum has a slight negative charge (-100VDC), it requires a 
positive charge to transfer it to the paper; +600VDC is the voltage used in an EP process 
laser printer. 


2. C,D. A page printer is a type of computer printer that prints a page at a time. Common 
types of page printers are the laser printer and the inkjet printer. 


3. D. The rate of transfer and the ability to recognize new devices automatically are two of 
the major advantages that currently make USB the most popular type of printer interface. 
However, it is the network printer interface that allows the printer to communicate with 
networks, servers, and workstations. 


4. D. Dot-matrix printers are impact printers and therefore can be used with multipart forms. 
Daisy-wheel printers can be used with multipart forms as well. 


5. A. The exposing step uses a laser to discharge selected areas of the photosensitive drum, 
thus forming an image on the drum. 


6. C. 3D printers use filament to create objects. Filament is often plastic, but it can contain 
metals too. There is no extrusion powder. 


7. A. For the toner (which has a charge of -600VDC) to be transferred from the print drum 
(which has a charge of -600VDC) to the paper, there must be a positive, or opposite, 
charge of greater difference to break the -600VDC charge from the drum. 


8. B. Inan inkjet printer, the ink cartridge is the actual print head. This is where the ink is 
expelled to form letters or graphics. Toner cartridges are used by laser printers to store 
toner. A daisy wheel is the device that impacts the letters on the paper in a daisy-wheel 
printer. Paper trays are the storage bins in laser printers and inkjet printers that allow the 
pickup rollers to feed the paper into the printer. 


9. D. The correct sequence in the EP imaging process is processing, charging, exposing, 
developing, transferring, fusing, and cleaning. 


10. D. There are nine standard assemblies in an electrophotographic process printer. Early laser 
printers using the electrographic process contained the nine standard assemblies. Newer 
laser printers do not require an ozone filter and contain only eight standard assemblies. 


11. A, B, D. An electrophotographic (EP) laser printer toner cartridge includes the toner, print 
drum, and cleaning blade. The laser is usually contained within the printer, not within the 
toner cartridge. 


12. A. After a laser has created an image of the page, the developing roller uses a magnet and 
electrostatic charges to attract toner to itself and then transfers the toner to the areas on 
the drum that have been exposed to the laser. The toner is melted during the fusing stage. 
The laser creates an image of the page on the drum in the exposing stage. An electrostatic 
charge is applied to the paper to attract toner in the transferring stage, which happens 
immediately after the developing stage. 


13. 
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A, C, D. Printers can communicate via parallel, serial, USB, wireless, and network 
connections. 


C. Ifa printer is using out-of-date or incorrect printer drivers, the printer may produce 
pages of garbled text. The solution is to ensure that the most recent printer drivers are 
downloaded from the manufacturer’s website. 


B. The daisy-wheel printer gets its name because it contains a wheel with raised letters and 
symbols on each “petal.” 


A. The high-voltage power supply (H VPS) is the part of the laser printer that supplies the 
voltages for charging and transferring corona assemblies. 


C. The transfer corona assembly gets the toner from the photosensitive drum onto the 
paper. For some printers, this is a transfer corona wire; for other printers, it is a transfer 
corona roller. 


D. Developing happens after exposing. The correct order is processing, charging, exposing, 
developing, transferring, fusing, and cleaning. 


B. The fuser assembly presses and melts the toner into the paper. The transfer corona 
transfers the toner from the drum to the paper. The printer controller circuitry converts 
signals from the PC into signals for the various printer assemblies. The paper transport 
assembly controls the movement of the paper through the printer. 


A. Firmware upgrades for laser printers are downloaded for free from the manufacturer’s 
website. A technician does not need to install a new chip, because firmware is upgraded via 
software. It’s unlikely that the manufacturer will send you the upgrade on a DVD; it will 
refer you to its website to download it. 


Chapter 6: Networking Fundamentals 


1. 


D. Companies that want to ensure the safety and integrity of their data should use 
fiber-optic cable because it is not affected by electromagnetic or radio-frequency 
interference. Even though some copper cables have shielding, they are not immune to 
EMI or RFI. This eliminates twisted-pair and coaxial. CSMA/CD is an access method, 
not a cable type. 


C. Coaxial cable can use BNC connectors and F connectors. RG-6 and RG-59 are coaxial 
standards. SC is a fiber-optic connector. 


C. A crossover cable will flip pins 1 and 3 on each end. Therefore, this end needs to have 
the white/orange wire as pin 1. The correct order for this cable should be white/orange, 
orange, white/green, blue, white/blue, green, white/brown, brown. 


B. Carrier Sense Multiple Access with Collision Detection (CSMA/CD) specifies that the 
NIC pause before transmitting a packet to ensure that the line is not being used. If no 
activity is detected, then it transmits the packet. If activity is detected, it waits until it is 
clear. In the case of two NICs transmitting at the same time (a collision), both NICs pause 
to detect and then retransmit the data. 
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5. A. CAT-5 was the first UTP standard ratified for 100 Mbps transmissions. Before that, 
CAT-3 was popular but only supported 10 Mbps. CAT-Se, CAT-6, and CAT-6a all support 
at least 1 Gbps and came after CAT-S. 


6. D. A hub ora switch is at the center of a star topology. A NIC is a network card, which 
each computer must have to be on the network. Bridges and routers are higher-level 
connectivity devices that connect network segments or separate networks together. 


7. C. Fiber-optic cable can span distances of several kilometers because it has much lower 
attenuation, crosstalk, and interference as compared to copper cables. 


8. A. Routers are designed to route (transfer) packets across networks. They are able to do 
this routing, determining the best path to take, based on the internal routing tables that 
they maintain. 


9. D. A managed switch can create virtual LANs (VLANs) using its management software. 
A firewall is a hardware or software solution that serves as your network’s security guard. 
Repeaters and unmanaged switches cannot create VLANs. 


10. A. Bluetooth networks are often called wireless personal area networks (WPANS). 


11. A, C, D. Ina star network, all systems are connected using a central device, such as a hub 
or a switch. The network is not disrupted for other users when more systems are added or 
removed. The star network design is used with today’s UTP-based networks. 


12. A. For areas where a cable must be fire retardant, such as in a drop ceiling, you must run 
plenum-grade cable. Plenum refers to the coating on the sleeve of the cable, not the copper 
or fiber within the cable itself. PVC is the other type of coating typically found on network 
cables, but it produces poisonous gas when burned. 


13. D. The local connector (LC) is a mini form factor (MFF) fiber-optic connector developed 
by Lucent Technologies. If it helps, think of LC as “Little Connector.” 


14. A. If you need to make a connection that is 5 kilometers long, then you are limited to fiber-optic 
cable—specifically, single-mode fiber (SMF). The two common SMF standards are 10GBaseER 
and 10GBaseEW. (Think of the E as extended.) A T designation in an Ethernet standard refers to 
twisted pair. SR and LR are fiber standards that do not stretch for 5 kilometers. 


15. C. Ina mesh network, the number of connections is determined by the formula 
x x (x — 1) + 2. With seven computers, that amounts to 21 connections. 


16. C. Ethernet over Power can transmit network signals over power lines within a closed 
circuit, such as a house. It’s the best choice. PoE devices provide power to devices that 
only have an Ethernet connection available. A bridge is for connecting disparate network 
segments and dividing collision domains. 


17. B. The job of a firewall is to block unwanted network traffic. Firewalls do this by using a 
list of rules called an access control list (ACL). Routers connect networks to each other, as 
do bridges. A network attached storage (NAS) device is like a dedicated file server. 


18. A. The two RG standards used for cable television are RG-6 and RG-59. Of the two, RG-6 
is better because it can run longer distances and can handle digital signals. RG-59 is for 
analog signals only. RG-8 is thicknet coax, and RG-58 is thinnet coax. 
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19. C, D. Bridges and switches are Layer 2 devices; therefore, they work with hardware (MAC) 
addresses. Hubs operate at Layer 1 and deal with bits, and routers operate at Layer 3 and 
work with logical IP addresses. 


20. B. Multimode fiber (MMF) can transmit up to 550 meters, depending on the Ethernet 
specification. Other standards using MMF can transmit only up to 300 meters. If you need 
to transmit up to 40 kilometers, you will need to use single-mode fiber (SMF). 
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1. B. A Dynamic Host Configuration Protocol (DHCP) server provides IP configuration 
information to hosts when they join the network. A Domain Name System (DNS) server 
resolves hostnames to IP addresses. NAT translates private IP addresses into public IP 
addresses. There is no IP configuration server. 


2. B. Lightweight Directory Access Protocol (LDAP) is designed to access information stored 
in an information directory typically known as an LDAP directory or LDAP database. 
This typically includes employee data and network configuration data. FTP is designed 
to transfer files. RDP is a remote desktop protocol, and CIFS is used to share files and 
printers. 


3. A. HTTP uses port 80. HTTPS uses port 443; Telnet uses port 23; and POP3 uses port 
110. 


4. D. An IPv6 interface is not limited in the number of addresses that it can be assigned, 
although there could be limitations based upon practicality. 


5. A,B,C. An IPv6 address contains 128 bits, written in eight 16-bit fields represented by 
four hexadecimal digits. Option A contains all eight fields expressed in full. Option B is 
an IPv4 address expressed in IPv6 form. Option C is the same address as Option A, but 
written in accepted shorthand. Option D is not valid because the double colons (::) can be 
used only once within an address. 


6. A. DNS servers resolve hostnames to IP addresses. On the Internet, a DNS server needs 
to have a public IP address. The address 10.25.11.33 is in a private address space, so that 
address would not be valid for a DNS server on the Internet. 


7. D. The address assigned to the computer is an APIPA address. Microsoft client computers 
(and others) will configure themselves with an address in this range if they are unable to 
reach a DHCP server. 


8. C. Simple Mail Transfer Protocol (SMTP) is responsible for sending email. IMAP4 and 
POP3 both receive email. SNMP is a network management protocol. 


9. D. Remote Desktop Protocol (RDP) works on port 3389. DNS works on port 53; IMAP4 
works on port 143; and LDAP works on port 389. 


10. C, D. The two protocols that work at the Host-to-Host layer are TCP and UDP. IP and 
ARP both work at the Internet layer. 
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11. A, D. TCP is a connection-oriented protocol that establishes virtual circuits and 
acknowledges delivery of packets. Because of these features, it has higher overhead than 
UDP and is a little slower. 


12. B. The HTTP protocol is inherently unsecure, but the HTTPS protocol is secure. (SSH and 
TLS are secure as well, but they are not protocols used to connect to websites.) 


13. A. The router is your doorway out into other networks, and it is known in TCP/IP terms 
as the default gateway. Without this configuration option, you would not be able to get 
to external networks. The subnet mask tells a host which network it’s on. The DNS 
server resolves hostnames to IP addresses, and a DHCP server provides IP configuration 
information to hosts. 


14. A,B. The only mandatory IPv4 configuration items are an IP address and a subnet mask. If 
you are not connecting to another network, you do not need a default gateway. DNS servers 
resolve hostnames to IP addresses, but they are not mandatory. 


15. D. IMAP4 and POP3 are the two protocols that are used for email delivery. Of the 
two, only IMAP4 provides security features. SMTP sends email. SNMP is a network 
management protocol. 


16. D. A virtual private network (VPN) is a secure point-to-point connection made over a 
public network. NAT translates private IP address to public IP addresses. APIPA is an 
automatic IP address assignment if a client computer can’t reach a DHCP server. VLANs 
are virtual local area networks configured through switches. 


17. A. Telnet uses port 23. SSH uses port 22; FTP uses ports 20 and 21; and DNS uses port 53. 


18. E. IPv6 does not have broadcasts. IPv6 does have multicasts, which are a bit like targeted 
broadcasts. FF00:: is the first part of a multicast address. 


19. A. DNS is typically known as a name resolver on the Internet, but it will work on private 
networks as well. DNS resolves hostnames to IP addresses. DHCP automatically configures 
clients with IP address information. FTP is for file downloads. APIPA is a process used to 
assign clients a private IP address automatically when they can’t reach the DHCP server. 


20. C. The Address Resolution Protocol (ARP) resolves IP addresses to hardware (MAC) 
addresses. RARP does the reverse—it resolves MAC addresses to IP addresses. DNS 
resolves hostnames to IP addresses. DHCP automatically configures TCP/IP clients. 


Chapter 8: Installing Wireless and 
SOHO Networks 


1. B,D. Both 802.11b and 802.11g operate in the 2.4 GHz range and use similar transmission 
standards. Many devices on the market are listed as 802.11b/g, meaning they will work 
with either system. Alternatively, 802.11a and 802.11ac operate in the 5 GHz range. 
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C. A service-set identifier (SSID) is the unique name given to the wireless network. All 
hardware that is to participate on the network must be configured to use the same SSID. 
Essentially, it is the network name. When you are using Windows to connect to a wireless 
network, all available wireless networks will be listed by their SSID. 


A, C. The two technologies that 802.11ac employs to achieve high throughput are channel 
bonding and MIMO. Channel bonding is the combination of multiple smaller channels 
into one large channel for greater bandwidth. MIMO is enhanced over 802.11n to allow 
for more multiple inputs and outputs. 802.11ac also uses beamforming, but that helps the 
range, not the throughput. 


C. WEP was the original encryption standard developed for Wi-Fi networks, but it is easily 
hacked. WPA is an upgrade, but WPA2 is more secure and incorporates the entire 802.111 
standard. SAFER+ is used to encrypt Bluetooth communications. 


C. QoS level 5 is designated for interactive voice and video, with less than 100ms delay. 
Level 1 is for background applications and is low priority. Level 4 is known as controlled 
load, which is lower priority than interactive voice and video. Level 6 only has 10ms latency 
but is reserved for control traffic. 


A, B. You should always change the default administrator name and password as well as 
the default SSID when installing a new wireless router. Enabling encryption is also a good 
idea, but WPA and WPA2 are better options than WEP. The channel has nothing to do 
with security. 


A. Of the options listed, DSL provides the fastest speed. DSL can easily provide 12 Mbps 
downloads. Dial-up is limited to 56 Kbps, and BRI ISDN (128 Kbps) and PRI (about 1.5 
Mbps) don’t even come close. Satellite is also much slower than DSL. 


D. Network Address Translation (NAT) allows users to have a private IP address and still 
access the Internet with a public IP address. NAT is installed on a router and translates the 
private IP address into a public address for the user to access the Internet. DHCP assigns IP 
configuration information to clients. DNS resolves hostnames to IP addresses. A DMZ is an 
area on a network between an external router and an internal router. 


C. There are 14 communication channels in the 2.4 GHz range, but only the first 11 are 
configurable. The three non-overlapping channels are 1, 6, and 11. 


A, C, D. Three standards listed —802.11ac (1,300 Mbps), 802.11g (54 Mbps), and 802.11n 
(600 Mbps)—give users the required throughput. 


B. To join the network, client computers need to find the SSID, ensure that the security 
settings are correct (to match the router), and enter the security passphrase. As an 
administrator, you should have configured this passphrase to be different from the router’s 
administrator password. 


B. Radio frequency identification (RFID) can operate in three frequency bands: 125 kHz 
to 134 kHz, 13.56 MHz, or 856 MHz to 960 MHz. Bluetooth is 2.4 GHz; NFC is 13.56 
MHz; and LTE is between 600 MHz and 6 GHz. 
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13. B, C. Dial-up Internet is archaic by today’s standards, but it is widely available (anywhere 
there is phone service), and it’s generally lower in cost than other Internet access methods. 
It’s definitely not high speed, and its security is really no different from that of broadband 
Internet access methods. 


14. B. WEP could use a 64-bit or 128-bit security key, but it was a static key. TKIP introduced 
a dynamic per-packet key. AES and CCMP came after TKIP. 


15. D. The good news is that 802.11g is backward compatible with 802.11b. The bad news is, 
if you run in a mixed environment, all devices that communicate with the WAP (or router) 
will be forced to slow down to accommodate the older technology. 


16. D. MAC filtering is a security option that can specify that only computers with specific 
MAC (hardware) addresses can access the network. Port forwarding is a feature of 
firewalls. WPS is an easy setup mechanism for wireless networks. SSID is the wireless 
network name. 


17. B. The set of rules for access on a firewall is called an access control list (ACL). An SLA is 
an agreement on service level for QoS. A whitelist may be part of an ACL but is not the set 
of rules. A DMZ is a subnet located between an external network router and an internal 
router. 


18. C. If your router is using AES, the clients will need to use WPA2. TKIP is a protocol 
utilized by WPA. WEP is the weakest of the encryption options. 


19. A, E. Bluetooth and Zigbee also operate in the 2.4 GHz range. Z-Wave operates in the 800 
MHz and 900 MHz ranges; satellite uses satellite waves; 5G cellular mmWave is between 
24 GHz and 86 GHz; and NFC uses 13.56 MHz. 


20. D. Basic rate interface ISDN (BRI ISDN) provides two separate 64 Kbps B channels for data 
transmissions. These channels can be combined to increase throughput. A PRI ISDN uses 23 
B channels. DSL, cable, and satellite do not offer multiple dedicated digital channels. 


Chapter 9: Network Services, 
Virtualization, and Cloud Computing 


1. B. For secure transactions, the web server should be using HTTPS, which uses port 443. 
If non-secure portions of the website work, then the server is fine. It’s most likely that the 
firewall is blocking inbound traffic on port 443. 


2. C. It sounds like the manager wants a unified threat management (UTM) device. They are 
designed to be one-stop network protection devices. Networked intrusion detection and 
prevention systems will detect network attacks but do not have anti-malware or anti-spam 
capabilities. An endpoint management system is not a security appliance. 


3. C. Ifthe data on the server does not need to be accessed via the Internet, then the server should 
be in the most secure place possible, which is inside the firewall(s) in the secure network. 
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A. Platform as a Service (PaaS) is probably the right level of service for the developer team. 
It provides infrastructure, like IaaS, and also supplies needed programming elements. 


A, C. Print servers should make printers available to clients and accept print jobs. They 
also process print jobs and manage print priorities. Finally, they provide client computers 
with the right print drivers when the clients attempt to install the printer. They do not turn 
printers off on demand nor provide notification that a job has printed. 


B. The ability to expand services without provider intervention is called on-demand self- 
service. Rapid elasticity means you can quickly increase capacity, but it usually requires 
supplier intervention. Resource pooling is taking resources from multiple machines and 
making them available as one pool. Measured service is how many suppliers track usage 
and charge accordingly. 


A. A proxy server can be configured to block access to websites that contain potentially 
dangerous or inflammatory material. Web servers host web pages, some of which may have 
objectionable content. DHCP servers provide clients with IP addresses, and DNS servers 
resolve host names to IP addresses. 


D. A hybrid cloud provides the best of public and private clouds. You get the scalability and 
cost effectiveness of a public cloud but the security that you need for important files on the 
private portion of the cloud. 


B. Every DHCP server needs to have a scope, which is the range of addresses available to 
clients, as well as other options that it can give to client computers. A DHCP server can 
optionally provide clients with the address of a DNS server. There is no DHCP range. 

A DHCP relay agent is a system configured on a subnet with no DHCP server that relays 
DHCP requests to the DHCP server. 


C. When multiple organizations with similar objectives want to combine efforts in a cloud, 
the best choice is generally a community cloud. This allows for the flexibility and scalability 
normally found in a public cloud, but it also limits the number of users to a smaller, trusted 


group. 


A. DNS server records are contained in the zone file, which must be configured by 
administrators. A hosts file is an alternative to using DNS (but that does not work well 
when scaling to the Internet). A scope is created on DHCP servers. There is no DNS proxy. 


B, C, D. Cloud solutions are great for enhancing scalability and reliability while generally 
lowering costs. The biggest issue with cloud computing is security. 


D. Simple Mail Transfer Protocol (SMTP) is used to transfer email between servers. POP3 
and IMAP4 are used to download email. SNMP is Simple Network Management Protocol 
and not related to email. 


B. Each virtual machine will use its own virtual NIC. The virtual NICs will communicate 
with a virtual switch managed by the hypervisor. The virtual switch will communicate with 
the physical NIC. 


D. The AAAA (quad A) record is used to represent IPv6 hosts. IPv4 hosts need an A 
record. The CNAME record is used if one host has alias (multiple) names. MX is for a mail 
server. 


1488 Appendix A = Answers to Review Questions 


16. B. There needs to be enough RAM to support both OSs, so the answer is 6 GB. More is 
better, though! 


17. A,B,C. Legacy systems are ones that use older hardware, software, or network protocols 
that are not commonly used today. A system with only 1 GB RAM might be underpowered, 
but that in and of itself does not make it a legacy system. 


18. D. Each instance of the OS you are running requires its own security software. 


19. B. IDS devices are passive. They will detect, log, and perhaps send an alert, but that’s it. An 
IPS can take active steps to shut down an attack if it detects one. Both devices will monitor 
internal network traffic as well as incoming traffic. 


20. A. A Type 2 hypervisor sits on top of an existing OS, meaning that OSs installed in 
VMs will compete for resources with the host OS. The amount of resources available to 
a guest OS can be configured. Virtual OSs can get on the physical network if configured 


properly. 


Chapter 10: Understanding Laptops 


1. D. Laptop service manuals can be obtained from the manufacturer’s website. It’s very rare 
that paper service manuals are shipped with the laptop. Pressing F1 while in Windows will 
open Windows Help, and pressing F2 on many laptops during the system boot will take you 
into the BIOS. 


2. B. The inverter, which transforms AC power into DC power for an LCD backlight, is 
found in the display. It’s not underneath the keyboard, next to the heat sink and fan, or 
near the processor, which are all located in the bottom half of the laptop. 


3. A,B. The components of an LCD screen are the inverter, screen, and backlight. LCD 
display units will also have a Wi-Fi antenna (not the card), webcam, and microphone. There 
is no backdrop component. 


4. A. The touchpad sits below the keyboard, where a user’s palms may rest when he is typing. 
That contact may cause the mouse cursor to appear to jump on the screen. Disabling the 
touchpad should prevent this from happening. 


5. B. A DC adapter converts the DC output from a car or airplane accessory power plug 
into the DC voltages required by your laptop. An AC adapter is used with standard wall 
electrical outlets. There is no battery converter. Airplane mode shuts off all wireless 
communications. 


6. C. DDR4 SODIMMs have 260 pins. DDR2 SODIMMs have 200 pins, and DDR3 
SODIMMs have 204 pins. No SODIMMs currently have 288 pins, but DDR4 DIMMs do. 


7. C. Ifthe touch screen is not responding properly, the first step is to recalibrate it. If it 
continues to have problems, the screen may be defective and might need to be replaced. 
Degaussing is a process used on old CRT monitors and is not relevant to touch screens. 


8. 


10. 


11. 


12. 


13. 


14. 


15. 


16. 


17. 
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A. Your best bet is to turn off your wireless connection immediately in order to sever the 
tie between your laptop and the public network. This is done using the Wi-Fi function key. 
Cellular and Bluetooth are different wireless connections. A laptop lock prevents a device 
from being physically stolen. 


C. Sometimes the only way to ensure that equipment doesn’t walk away is to lock it down 
physically. Laptops come equipped with holes for cable locks that can be used to secure 
them to a desk or other workstation. GPS tracking might help after the device is stolen, but 
it’s best to prevent that in the first place. A docking station does not prevent physical theft, 
nor does a screensaver with a password. 


C. The laptop power supply converts AC power into DC power for the laptop’s internal 
circuitry. The display backlight, if used, needs AC power. The inverter’s job is to convert 
(invert) the DC power into AC power for the backlight. 


D. When enabled, Airplane mode turns off all wireless communications, including Wi-Fi, 
cellular, Bluetooth, and GPS. Wireless, cellular, and Bluetooth function keys will toggle on 
or off that particular communication method, but not all wireless communications. 


C. The user needs a digitizer, which takes input from the device, such as drawn images, 
and converts them into electronic images on the computer. The user could also use a 
touch screen for the same purpose. An inverter changes DC power into AC power for a 
display backlight. There is no capturer laptop device. A touchpad is a pointing device that 
allows a user to control the mouse cursor. 


A. Laptops use SODIMMs (or possibly MicroDIMMs), which are much smaller than 
standard DIMMs used in desktops. DDR2 and DDR3 SODIMMs are 67.6 millimeters 
wide, whereas DDR4 SODIMMsS are 69.6 millimeters wide. It’s likely that the technician 
has DDR4 SODIMMs and the motherboard supports DDR3 SODIMMs. 


A. A docking station made specifically for its associated brand and model of laptop can 
host desktop components permanently, regardless of whether the laptop is attached to 

the docking station. When the laptop’s portability is not required, but instead use of the 
desktop components is the priority, attaching the laptop to the docking station makes such 
components available to the laptop without separately attaching each component. 


D. The processor can reduce how fast it’s working, which is called throttling, to help 
conserve battery life. CPUs do not perform underclocking, cooling, or disengaging. 


B. Think of wattage as a “bucket” of power that the attached device can draw from. A bigger 
bucket simply holds more power but does not force the power on the device. Less wattage 

is not advised, however. Voltage can be thought of as the pressure behind the power to the 
device. Anything but the proper voltage is dangerous for the device. When you replace a 
laptop’s AC adapter, you should match the voltage ratings of the original adapter. This also 
means that you should use an adapter with a fixed voltage if that matches the characteristics of 
the original; otherwise, obtain one that automatically switches voltages at the levels needed. 


C. Battery calibration for Li-ion batteries allows the powered device to drain the battery’s 
power before recharging. Battery exercising is the initial charging and discharging of nickel- 
based batteries so that they will function as expected. You should never short a battery’s 
terminals, and replacement is a last resort, used when any battery has reached the end of its life. 
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18. D. Laptop hard drives commonly have a 2.5” form factor, and smaller drives, such as M.2, 
are becoming more popular. The most common form factor for desktop hard drives 
is 3.5”. Laptop hard drives use the same drive technologies as their desktop counterparts, 
such as serial and parallel ATA. As with desktop hard drives, laptop hard drives are 
available in both solid-state and conventional varieties. Unlike desktop hard drives, laptop 
hard drives do not have separate power connectors. 


19. B. A USB Bluetooth adapter should do the trick. There are Mini PCle Bluetooth adapters, 
but installing one is trickier than inserting a USB device. There aren’t really any Wi-Fi 
compatible headsets on the market—headsets are exactly what Bluetooth was designed for. 
Replacing the laptop is a much more expensive proposition. 


20. C. A docking station is a device that a laptop can be plugged into that replicates common 
laptop ports, and may also have full-sized bays for PC desktop expansion cards and storage 
devices, such as hard drives and optical drives. A port replicator will replicate laptop ports 
but does not usually have expansion bays. There is no specific laptop base accessory or a 
Mini PCle dock. (Mini PCIe is an internal laptop technology.) 


Chapter 11: Understanding 
Mobile Devices 


1. C. Most mobile devices today use capacitive touch screens, which allow the user to use 
their finger as an input device. Resistive touch screens sense pressure, and a stylus is 
commonly used with them. Keyboards and mice are too large for most mobile devices. 


2. A. Apple created a new OS for its watch called watchOS. It’s very similar to iOS but 
designed for the smaller screen. macOS is Apple’s desktop OS, and there is no current 
AppleOS. 


3. A. Multi-touch simply means that the touch screen can accept multiple inputs from 
different parts of the screen at the same time. This allows for functionality such as pinch to 
zoom. It could mean that multiple people are using the touch screen at once, but it does not 
have to mean that. 


4. C. Google Glass uses augmented reality (AR) technology, which is common on heads-up 
types of displays. Virtual reality (VR) is provided by devices such as Oculus Rift. There is 
no retinal projection display used with mobile devices. OCR stands for optical character 
recognition, which is not a technology covered in this chapter or on the A+ exam. (It’s used 
to translate documents after they’ve been scanned in on a scanner.) 


5. D. Released in 1989, GRiDPad was the first commercial tablet. None of the others were 
released until at least the year 2000. 


6. B. The iPhone 5 was the first iPhone to use the Lightning connector. All newer iPhones use 
it as well. 


7. 


10. 


11. 


12. 


13. 


14. 


15. 
16. 


17. 


18. 


19. 


20. 
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A. Tablets generally have a screen size between 7” and 13”. Phablets were historically 
between 5” and 7”, and smartphones are smaller than phablets. GPS touch screens are 
usually around the same size as the screens on smartphones. 


B. Most mobile Bluetooth accessories are Class 2 devices, which have a maximum 
functional range of 10 meters. The actual range will depend on the headset’s properties. 


B. The app store for Android-based devices is Google Play. iOS devices download apps 
from the App Store. Windows-based apps can be downloaded from the Microsoft Store. 


C. Near field communication (NFC) has a maximum range of about 10 centimeters. Wi-Fi 
depends on the standard, but it usually has a range of 30 meters or more. Bluetooth Class 2 
devices can operate at about 10 meters, and infrared (IR) has a maximum range of about 1 
meter. 


B. For game players, a game pad or gaming controller may be a good accessory to have. VR 
headsets could also be good, but only for certain games. An AR headset isn’t likely to help 
with gaming. An extra battery pack could help extend the playing time, but it isn’t needed if 
the tablet is plugged in. 


D. Infrared has an operational range of about 1 meter. Near field communication (NFC) 
has a maximum range of about 10 centimeters. Wi-Fi depends on the standard, but it 
usually has a range of 30 meters or more. Bluetooth Class 2 devices can operate at about 10 
meters. 


B, C. E-readers that use electrophoretic ink (E Ink) have a longer battery life than tablets 
and are easier to read in bright light conditions. They do not have more vivid colors or 
better screen resolution. 


D. Tethering is when a Wi-Fi enabled device attaches to a cellular device to get on the 
Internet. The cellular device is usually called a mobile hotspot. 


B. GPS uses 24 satellites. There are 32 GPS satellites in space, but the extra 8 are backups. 


C. The fastest NFC can transfer data is 424 Kbps. The three speeds supported by NFC are 
106 Kbps, 212 Kbps, and 424 Kbps. NFC does not currently support 636 Kbps. 


A. Apple calls its GPS services Location Services. For the phone to use GPS (and to be 
tracked), Location Services should be enabled. There is no Apple service called Tracking 
Services. Airplane Mode would turn off GPS (and Location Services), but it needs to be 
enabled, not disabled. 


D. NFC uses Simple NDEF Exchange Protocol (SNEP) in peer-to-peer mode. It’s based on 
LLCP (Logical Link Control Protocol). 


C. It’s the receiver’s job to perform triangulation to determine its position based on data 
received from the satellites. Satellites send signals to the GPS receiver to help it determine its 
location. The ground control network monitors the status of the satellites and signal strength. 


D. MicroSDXC cards can hold up to 2 TB. SDHC cards can hold up to 32 GB, and 
standard SD cards can hold up to 4 GB. 


1492 Appendix A = Answers to Review Questions 


Chapter 12: Mobile Device Connectivity 
and Synchronization 


1. D. Whenever you have a reliable Wi-Fi signal available, which you do not pay for “as you 
go,” you should feel free to disable your cellular access to data networking. The wireless 
network is often faster and does not cost you anything to use. If data networking works 
better when you leave the cellular network available as a fallback, you can choose to disable 
it only for certain large downloads or disable it completely until the download is complete. 
Phone calls will continue to be sent over the cellular network. This does not imply that 
your data is not using an available Wi-Fi connection. Therefore, unless you are particularly 
sensitive to the situation or know that data is going out over your cell access, you might not 
need to disable the cellular data-networking feature. 


2. C. The range of Bluetooth connections is considered short compared to Wi-Fi connections. 
Bluetooth is a fully standardized protocol that supports file transfers using FTP. Rebooting, 
or even restarting, paired devices is not a requirement for Bluetooth connections. 


3. A. SMTP sends mail to the server on TCP port 25. POP3 uses port 110. IMAP4 uses port 
143. POP3 uses port 995 securely over SSL or TLS. 


4. B. SMTP with TLS uses port 587 by default. With SSL, SMTP uses port 465. IMAP4 with 
SSL/TLS uses port 993, while POP3 with SSL/TLS uses port 995. 


5. B. Four commercial email providers to be familiar with are iCloud, Google/Inbox, 
Exchange Online, and Yahoo Mail. Hotmail used to be a commercial email provider, but it 
no longer exists; it’s now part of Outlook.com. 


6. B,C. You can create virtual private network (VPN) connections on a mobile device using 
Wi-Fi or cellular network connections. Bluetooth and NFC are not used to create VPNs. 


7. C. Each mobile phone has a separate processor that manages wireless communications, 
also known as radio communications or baseband communications. There is a baseband 
OS that manages this, and it works with the primary OS on the phone. A SIM OS is for 
managing data transfers between the phone and the SIM chip. There is no wireless OS. 


8. A,B. The two real-time OSs (RTOSs) that mobile phones have are the baseband OS and 
the SIM OS. iOS and Android are not RTOSs. 


9. D. Secure/Multipurpose Internet Mail Extensions (S/MIME) is the public key encryption 
standard used for encrypting and decrypting email. SSL and TLS can encrypt network 
traffic but not an email message. IMAP is an email protocol, but there is no IMAPS. 


10. C. The next step is to enter the PIN code. The steps, in order, are as follows: Enable 
Bluetooth, enable pairing, find a device for pairing, enter the appropriate PIN code, and test 
connectivity. 


11. B, D, F. Contacts, email, and apps are commonly synchronized, along with pictures, music, 
videos, calendars, bookmarks, documents, location data, social media data, e-books, and 
passwords. 


12. 


13. 


14. 


15. 


16. 


17. 


18. 


19. 


20. 
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B. iTunes will run on a computer with 512 MB of RAM. 1 GB is not required unless you 
want to play 720p high-definition videos. A 1 GHz processor, 400 MB disk space, and 
broadband Internet are required. 


B. Mail access uses standard secure or unsecure TCP ports, not UDP ports. Exchange 
access to such mail services is not unheard of, but it is exceedingly rare. Mobile devices tend 
to have email clients built in. 


A, B, C. Airplane mode disables all radio communications, including cellular, Wi-Fi, and 
Bluetooth (and NFC as well). It does not affect the opening of any other apps or the lock 
screen. 


C, D. The two most common connection types for synchronization to a desktop (or laptop) 
are Wi-Fi and USB. Cellular and Bluetooth are not used for desktop synchronization. 
Tethering is when a laptop or other device is granted cellular network access by connecting 
to a mobile device, such as a smartphone. 


C. The devices verify each other’s identity via mutual authentication for multiple services 
(SSO). Pairing is done for the initial connection. S/MIME is used to send and receive 
encrypted email. Synchronization is used between a mobile device and a desktop/laptop or 
the cloud. 


A. The international mobile equipment identity (IMEI) is a 15-digit serial number that 

is unique to each phone. The international mobile subscriber identity (IMSI) is a unique 
15-digit identifier that describes a specific mobile user and their network. The secure 
element identifier (SEID) is a very long hexadecimal code that uniquely identifies the phone; 
it is used in security applications, NFC, and features like Apple Pay. 


B. The international mobile subscriber identity (IMSI) is a unique 15-digit identifier that 
describes a specific mobile user and their network. The international mobile equipment 
identity (IMEI) is a 15-digit serial number that is unique to each phone. The integrated 
circuit card identifier (ICCID) is the identifier for the SIM card. The secure element 
identifier (SEID) is a very long hexadecimal code that uniquely identifies the phone; it is 
used in security applications, NFC, and features like Apple Pay. 


D. Synchronizing to the cloud allows the user to access the synched data from anywhere. 
Syncing to the automobile isn’t generally used for data storage—in any case, the user 
would need to attach to the automobile to get to the data. There is no sync to email option. 
Syncing to a desktop can happen, but the data is not available unless the user’s mobile 
device is connected to that desktop. 


B. When roaming, the mobile device will use the Preferred Roaming List (PRL) to 
connect to the proper cell phone tower. The Product Release Instruction (PRI) contains 
settings for configuration items on the device that are specific to the network that it’s 
on. Baseband refers to all wireless communications. The international mobile equipment 
identity (IMEI) is a 15-digit serial number that is unique to each phone, and is not 
relevant to this issue. 
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Chapter 13: Troubleshooting 
Methodology and Resolving Core 
Hardware Problems 


1. D. According to the best practice methodology, you should always consider corporate 
policies, procedures, and impacts before implementing changes. The user’s budget, 
company reputation, and upgrade feasibility are not mentioned in the best practice 
methodology to resolve problems. 


2. D. This system is producing a beep code and not completing the POST process. 
Different BIOS manufacturers use different beep codes. Look up this beep code on the 
manufacturer’s website before replacing any hardware. 


3. A,C,E. The three sub-steps to identify the problem are: Question the user and identify 
user changes to computer; inquire regarding environmental or infrastructure changes; and 
review the system and application logs. Conducting internal or external research is part of 
establishing a theory of probable cause. Determining the next steps to resolve the problem 
is part of testing the theory to determine cause. 


4. B. Capacitors store energy and are located on the motherboard and inside the power 
supply. Since the capacitors are exposed, it likely means the technician is seeing the problem 
on the motherboard. CPUs and RAM do not have capacitors. 


5. B. The second step in the best practice methodology is to establish a theory of probable 
cause (question the obvious). While it makes sense to question the obvious at all times 
during troubleshooting, it officially falls under this step in the best practice methodology. 


6. C. The fifth step in the best practice methodology is to verify full system functionality 
and, if applicable, implement preventive measures. This step occurs after a plan of action to 
resolve the problem has been established and before findings, actions, and outcomes have 
been documented. 


7. B,D. Intermittent shutdowns are hard to troubleshoot but are most likely hardware- 
related. When troubleshooting, always make one change at a time to try to resolve the issue. 
Replacing the RAM or the CPU to see if it resolves the problem could be a good next step, 
but replacing three components at once is too many changes unless you have specific reason 
to believe it is all three. Reinstalling Windows is probably overkill as well. Narrow down 
the issue before implementing sweeping solutions such as that. 


8. C. When troubleshooting, always question the obvious. In this case, the system beeps 
once, which is usually a signal from the BIOS that POST completed successfully, and air 
is coming from the system fan. All of that appears to be normal. Check to see that the 
monitor is connected properly to the desktop computer and that it’s receiving power. 


9. B. The fourth step in the best practice methodology is to establish a plan of action to 
resolve the problem and implement the solution, which was done already. The next step is 
to verify full system functionality and implement preventive measures. The final step is to 
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10. 


11. 


12. 


13. 


14. 


15. 


16. 


17. 


18. 


19. 


20. 


document findings, actions, and outcomes. Reviewing system and application logs is part of 
identifying the problem, which is the first step. 


A, B. When the system is powered off, BIOS settings on a motherboard are maintained by 
the CMOS battery. If the battery fails, the system will likely forget the BIOS time and date 
settings and the boot order configuration. Replacing the CMOS battery will resolve the issue. 


C, D. Continuous reboots are most likely caused by the motherboard or CPU failing. 
It’s possible it’s the RAM, but less likely. The power supply is the least likely cause of the 
problem in this scenario. 


A. After verifying full system functionality and implementing preventive measures as 
needed, the final step in the best practice methodology is to document findings, actions, and 
outcomes. 


A, C. If the wall outlet is functioning and the power cable is connected properly (always 
check the obvious), then the most likely culprits are the power supply or the power cord. The 
motherboard, CPU, and RAM are unlikely to cause a complete power failure in a computer. 


C. The processor runs the hottest of all computer components and is the most likely to 
overheat. Motherboards and RAM don’t generate a lot of heat. Power supplies most often 
have fans to help dissipate heat, and don’t run as hot as CPUs. 


A. Only components with moving parts can make ticking or clicking noises. (Bombs can 
too, but hopefully you recognized that as a fake answer!) This question assumes that the 
hard drive is an HDD and not an SSD, but none of the other components would make a 
ticking noise. 


C. The second step in the best practice methodology is to establish a theory of probable 
cause (question the obvious). As part of that, if necessary, conduct external or internal 
research based on symptoms. 


A, B, C. Only components with moving parts can make ticking, clicking, or squealing 
noises. It’s probably a fan of some sort (such as the CPU fan or power supply fan), or it 
could be a conventional hard drive. SSDs, CPUs, and RAM do not have moving parts and 
therefore could not be causing this problem. 


A. Smoke and foul odors such as burning smells are not normal for computers! The most 
likely component causing the problem is the power supply. With the system off, open the 
case to examine the inside for possible physical damage. 


C. When Windows-based systems crash, as can happen due to a memory, CPU, or 
motherboard problem, they will most likely display a Blue Screen of Death (BSOD). The 
good news is that the BSOD can often provide useful information, such as an error code, 

to help troubleshoot the problem. There is no stop sign proprietary crash screen, and the 
pinwheel is used in macOS and OS X. A black screen may indicate a system crash but is not 
proprietary to one operating system. 


A. The second step in the best practice methodology to resolve problems is to establish a 
theory of probable cause, which has been done here. The next step is to test the theory to 
determine cause. After that, establish a plan of action to resolve the problem, verify full 
system functionality, and document findings. 
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Chapter 14: Hardware and Network 
Troubleshooting 


1. A,B. Two helpful things to try are toggling the video output function key (usually 
something like Fn+F8) and plugging an external monitor into the laptop. Removing the 
display is possible but not necessary yet. Powering the system off and back on isn’t likely to 
correct the problem. 


2. C. Ifthe system will not boot past the Windows splash screen, odds are that there is an 
issue with the video resolution, video driver, or video card. Enable low-resolution video 
mode and begin troubleshooting from there. A second monitor won’t help, and it’s not yet 
time to replace any components. 


3. A. With a swollen battery, the best solution is to replace the device. If you are experienced 
with mobile device batteries, you may be able to replace the battery, but be careful! You 
should not charge a swollen battery or freeze the system. A battery calibration utility will 
do no good. 


4. C. Distance matters in wireless networks. Being too far away from an access point will 
result in a weaker signal, which can cause intermittent signal drops and poor performance. 
Moving closer to the wireless access point (WAP) or wireless router can help, as can 
installing additional WAPs or wireless routers. The IP address from the DHCP server won’t 
matter, and since she reported no error message, there is not likely to be an IP address 
conflict. Unless there are other issues, replacing the NIC seems to be overkill. 


5. B. The ipconfig command is perhaps the most-used utility in troubleshooting and 
network configuration. The ipconfig /renew command will send a query to the DHCP 
server asking it to resend and renew all DHCP information. For a more detailed look at 
the ipconfig command, type ipconfig /? at the command prompt. The ifconfig 
command is used with Linux and macOS clients. There are no /refresh or /start 
switches for these commands. 


6. B. If print jobs are seemingly getting “stuck” in the printer queue, you should stop and 
restart the print spooler service. There is no Printer Troubleshooting utility. Deleting and 
reinstalling the printer and/or Windows is not necessary. 


7. C,D. Perpetually dim or flickering screens are most likely caused by a failing backlight or 
inverter, which supplies power to the backlight. LCD devices are not subject to interference 
from fans. An incorrect video driver will not cause a flickering image. 


8. B. The manufacturer’s website is the first place you should go for information on your 
products, including troubleshooting information. Many years ago, manufacturers would 
provide paper manuals with their products, but that’s almost unheard of today, unless you 
download a PDF version from the website. Server logs can show error codes, but they won’t 
tell you how to fix anything. 


9. 


10. 


11. 
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A. The most likely cause is a groove or a scratch in the EP drum. Toner is collecting in that 
groove or scratch, and then it is being deposited onto the page. A broken drum-cleaning 
blade would result in unreadable images (too much toner). Low toner would cause faded 
images, and a bad transfer corona wire would cause blank images. 


B. It has to be a problem with the LCD display. If it were the video card, the display would 
appear warped and fuzzy on the external monitor as well. While many motherboards 
contain video circuitry, this answer is not specific enough. If the video driver were 
corrupted, you would have the same problem on all displays. 


A. If an ink cartridge is faulty or develops a hole, it can release excessive amounts of ink, 
which will lead to smearing. A corrupt print driver would result in printing garbage. Inkjet 
printers do not have a fuser. Excessive humidity may cause smearing, but it wouldn’t cause 
the disbursement of too much ink. 


B. A loopback plug is used to test the ability of a network adapter to send and receive. 
The plug gets plugged into the NIC, and then a loopback test is performed using 
troubleshooting software. A tone generator and probe is used to trace a cable. Multimeters 
test for electrical issues. Cable testers are for verifying that a cable works properly. 


C, D. Seeing images from previous print jobs is a phenomenon called ghosting (or ghost 
images). It’s most likely due to a bad erasure lamp or a broken cleaning blade. If the transfer 
corona wire were faulty, there would likely be blank pages. An overheating printer will not 
necessarily leave residue behind. 


D. A tone generator and probe is used to trace a cable from one location to another. A 
loopback plug is for testing the ability of a network adapter to send and receive. Punch- 
down tools are used to connect the wires of a cable to a wiring rack, such as a 110-block. 
Cable testers are for verifying that a cable works properly. 


B. If the hard drive is not recognized, the BIOS/UEFI is the place to check. Most systems 
do not come with built-in S.M.A.R.T. diagnostics software, even if the hard drive is capable 
of gathering $.M.A.R.T. data. And if there were one, it would give you potential errors 

on a working drive. Windows Device Manager is inaccessible without the drive being 
recognized. There is no boot sector manager, although this issue could be related to the 
boot sector. 


C. The only components that make noise are the ones that have moving parts, such as 
fans and conventional hard disk drives. In most cases, a rhythmic ticking sound will be 
something that’s generated by a conventional hard disk drive (HDD). 


C. If there is a consistent blank space, it likely means that a pin is not firing properly 

and the print head needs to be replaced. If the print ribbon were old, you would have 
consistently faded printing. If the ribbon were not advancing properly, you would get light 
and dark printing. If the wrong driver were installed, you would get garbage. 


A. A crimper is used to make network cables. Punch-down tools are used to connect the 
wires of a cable to a wiring rack, such as a 110-block. Cable testers are for verifying that a 
cable works properly (and may be handy after you complete the cable). A loopback plug is 
for testing the ability of a network adapter to send and receive. 
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19. D. The first step should be to try to reboot the device. In most cases with a frozen 
smartphone, holding the power button down for about 10 seconds will force it to power 
off. If that doesn’t work, then you can move to trying to reset the phone by holding down 
the power button and the sleep/wake button for 10 seconds. There is no need to restore the 
device to factory settings (yet) or replace the battery. 


20. C. A RAID 0 array is also known as disk striping. RAID 0 actually decreases your fault 
tolerance versus one hard drive because there are more points of failure. You need to replace 
the drive, and hopefully you had it backed up so that you can restore the data. 


Chapter 15: Operating System Basics 


1. B,C. You can open a command prompt by typing cmd or command in the Start menu. The 
command prompt utility will pop up in the search results. Run is not a command; it is a 
dialog box. Open is not a command; it is an operating system action. 


2. D. A driver is specifically written to instruct the operating system to communicate with 
a piece of hardware. Source code is the original code the software is written in. An 
application is a program written to perform a specific purpose to interact with the user. The 
kernel is the core of the operating system. 


3. C. You can increase the size of the taskbar size placing the cursor over the top of the 
taskbar and dragging it up. 


4. A. The active hours of the operating system can be changed. During these times, the 
operating system will not reboot after the update has been installed. Disabling updates, 
changing download times directly, and changing Windows Update sources are not user- 
related tasks. 


5. B,C. The Windows File Explorer program can be used to copy and move files. Window 
File Explorer can also be used to change file attributes. Windows File Explorer cannot be 
used to browse the Internet or to create backup jobs. 


6. D. The maximum allowable length for a filename is 255 characters. 


7. B. The shell is a program that runs on top of the OS and allows user interaction with the 
operating system. The taskbar is an element of the Desktop. The Desktop does not allow 
for commands to be executed. Source is not related to the graphical interface. 


8. B. Typing the program name in the Start box allows you to launch the program. The 
shutdown command will shut down the operating system. Run is not a command; it is a 
dialog box. The cmd command starts the command-prompt application. 


9. D. When a program is multithreaded, it is written to allow for multiple requests into the 
processor at one time. Preemption, multiuser mode, and dystopia are not correct answers. 


10. B. The Recycle Bin is a temporary spot that files are deleted to but from where they can 
be retrieved if deleted mistakenly. The My Computer icon is another way to start the File 
Explorer. The Control Panel and Settings app are used to customize the operating system. 


11. 


12. 


13. 
14. 


15. 


16. 


17. 


18. 


19. 


20. 
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D. In Windows 10, when you click the Start button, a power icon is displayed on the lower 
left. From the power icon, you can sleep, reboot, or shut down the operating system. There 
is no command named turnoff. Turning the power switch off and unplugging the machine 
are not graceful ways to power off the operating system. Pressing Ctrl+Alt+Del alone will 
not power down the computer. 


D. The minimum amount of memory required for the installation of the 32-bit Windows 
8.1 operating system is 1 GB. 


C. The minimum amount of free hard drive space required for Windows 7 64-bit is 20 GB. 


C. The minimum amount of memory required for the 64-bit installation of the Windows 7 
is 2 GB. 


C. A quick method of accessing Help is to press the F1 key. The Windows key on the 
keyboard launches the Start menu or Start screen. The F12 key and the Alt key perform 
various tasks, depending on the application. 


A. The Start screen was introduced with Windows 8 and replaced the Start menu, by providing 
a full-screen Start menu. Gadgets and the Sidebar were introduced in Windows Vista. The 
system tray is what the notification area is now called in the current operating system. 


C. The notification area is the area on the rightmost portion of the taskbar. It is used to 
display the date and time and running background applications. The Quick Launch and 
Start menu are located on the leftmost portion of the taskbar. Shutdown options are found 
inside the Start menu in Windows 10. 


A. Clicking the Settings gear in the Start menu will open the Settings app. From there, 

the System category will allow you to change the Display Properties. Clicking the System 
icon under the Control Panel allows you to change system settings. Pressing Ctrl+Alt+Esc 
launches the Task Manager. Pressing Ctrl+Alt+Tab launches the Task View in Windows 10. 


B. The File Explorer allows you to navigate the file/folder structure in Windows 10. The 
Start menu allows you to launch applications. KDE and GNOME are Linux desktop shells. 


C. The minimum amount of memory required for the 64-bit installation of the Windows 
10 is 2 GB. 


Chapter 16: Operating System 
Administration 


1. 


B. The gpupdate utility is used to update Group Policy from the command line. The 
clobber command is a Linux command. The extract command is used to extract files 
from .cab files. 


D. The CDFS filesystem is used for CD media. NTFS is the native filesystem for the 
Windows operating system. FAT32 is a filesystem that was popular with Windows 9x 
operating systems. EFS is a technology that encrypts files. 
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3. 


10. 


11. 


12. 


13. 


14. 
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C. The shutdown utility can be used to schedule a remote shutdown—for example, 
shutdown /t 60 /m \\computer. The taskmegr utility is used to view tasks; kill is used 
to kill processes; and netstat is used to view network statistics and activity. 


A. The ping command is used to verify basic network connectivity to hosts, by sending a 

packet to the destination host in which it responds. The net use command is used to map 
network drives. The sfc command is used to scan the filesystem for corrupted system files. 
The dism command is an image-servicing tool used to add features to an operating system. 


D. The exFAT filesystem is a Microsoft proprietary filesystem created for large flash drives. 
GPT is a partition table type; NFS is a network filesystem used with Linux/UNIX; and 
ext3 is a filesystem used with Linux. 


D. The taskkill command terminates a running process via the command line. The 
pskill command is a System Internals tool; ps is the Linux/UNIX equivalent of tasklist; 
and pkill is not a command. 


B. Virtual memory is configured in the System Properties applet. The taskbar is an element 
of the desktop; the memory manager is a process in the operating system for memory 
management; and virtual configuration is an invalid answer. 


D. A service can be in one of four states: started automatically, started automatically 
(delayed start), started manually, or disabled. A service cannot be in a detached state. 


D. When a program is not responding to any commands, the process must be terminated 
via the Task Manager. You can end the process by opening the Task Manager, right- 
clicking the application, and selecting End Task. Viewing the performance will not make 
the process respond. Adding more memory is not possible without shutting down the 
computer. Pressing Ctrl+Alt+Del without any further action will not reboot the computer. 


B. The mstsc (Microsoft Terminal Services Client) command is used to configure and 
connect to remote connections over the network. The regedit command is used to edit the 
Registry, and regsvr32 is used to register DDLs. Spl is not a command. 


A. The dxdiag tool is used to verify that display drivers are signed properly by the 
vendor. Msinfo is not a utility. Msconfig is used to configure service and program startup. 
Msinfo32 allows you to see all attached devices and the operating system environment. 


A. Hardware resources are configured in the Device Manager console. Files and folders 
and applications are configured in the operating system GUI. Memory is configured in 
System Properties. 


C. The chkdsk tool is used to check the disk and repair any bad clusters, if possible. The 
Disk Management console is used to manage disks. The System File Checker (sfc) is used 
to scan for corrupt operating system files. Diskpart is a command-line version of the Disk 
Management console. 


D. The System File Checker (sfc) will scan for and fix missing or corrupted operating 
systems files. The command used to initiate an immediate scan is sfc /Sscannow. SFC 
/recover and SFC /repair are not valid options. SFC /verifyfile will check a single 
file, but the path must be specified. 
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15. A. The operating system must boot from an active primary partition if MBR style 
partitioning is used. Extended partitions are used to contain logical partitions. There is no 
such thing as a dynamic partition. 


16. B. The HKEY_LOCAL_MACHINE Registry hive contains information about the computer’s 
hardware. It is also known as HKLM. HKEY_CURRENT_MACHINE and HKEY_MACHINE are not 
valid Registry hives. HKEY_RESOURCES was used with Windows 9x operating systems but is 
no longer used. 


17. C. GUID Partition Tables (GPT) allocate a 64-bit logical block addressing entry to 
partition tables to accommodate larger drives. GPT has rapidly replaced the MBR 
style partition tables. LILO and GRUB are boot managers for Linux. NFS is a network 
filesystem used with Linux/UNIX operating systems. 


18. A. Disk Defragmenter will rearrange blocks of files on a hard drive to create contiguous 
files and space. Windows File Explorer is used to navigate the filesystem. Scandisk is not a 
command. Windows Backup allows for file backups. 


19. B. The robocopy command used with the /mir switch will mirror a directory tree file 
structure. The /s switch can be used to copy subdirectories, but not empty ones. The /cdt 
switch and the /ah switch are not valid for robocopy. 


20. B. The ping utility allows you to test basic network connectivity by sending a small 
message to the destination address, and the destination will respond. The netstat displays 
network statistics. The telnet utility is used for console connectivity over the network. 
The dxdiag utility is used to test DirectX connectivity. 
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1. D. Only Windows 10 Pro for Workstations supports four physical CPUs. Windows 10 
Education supports two physical CPUs and 2 TB of RAM. Windows 10 Enterprise supports 
two physical CPUs and 2 TB of RAM. Windows 10 Pro supports two physical CPUs and 2 
TB of RAM. 


2. B. Windows 10 Enterprise is a volume-licensed edition of Windows that supports 
DirectAccess. Windows 10 Education is used by higher education and K-12 and does not 
support DirectAccess. Windows 10 Pro is a retail-licensed edition of Windows that does 
not support DirectAccess. Windows 10 Pro for Workstations is a retail-licensed edition that 
supports high-performance computing. 


3. B. The edition of Windows 10 needs to be Pro, Enterprise, or Education in order to join a 
domain. The domain version has no effect on the joining of operating systems. Windows 10 
supports joining to a domain, provided that it is not Windows 10 Home edition. There is no 
restriction for joining a domain for a laptop. 


4. D. The Spotlight feature will display a random wallpaper from Bing.com on the login screen. 
Cortana is a digital person assistant. The Action Center allows for quick control of features 
as well as notifications. The Universal Windows Platform (UWP) is a development platform. 
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5. C. Snap Assist allows for the quick snapping alignment of a window on the Desktop. 
Cortana is a digital person assistant. Spotlight will display a random wallpaper on the login 
screen. HomeGroup is a simple file and printer sharing feature. 


6. B. The Semi-Annual Channel (Targeted) branch will install updates as they are released 
to the general public. The Semi-Annual Channel is normally delayed by 3-4 months. The 
Long-Term Servicing Channel never installs new features during the life of the version of 
Windows. The Insider Program allows for the installation of brand-new features before 
they are publically released. 


7. A. Windows 10 Home only allows for the Semi-Annual Channel (Targeted) branch and 
Insider Program. Windows 10 Pro allows for the use of the Semi-Annual Channel branch. 
Windows 10 Education allows for the use of the Semi-Annual Channel branch. Windows 
10 Enterprise allows for the use of the Semi-Annual Channel branch. 


8. C. The date code of the edition is yymm, so 1703 is March of 2017. The 63rd day of 2015 
and the 145th day of 2015 are incorrect answers, because the build number is the number 
of builds of Windows 10. The build number does translate to a version of Windows, but 
that information is in the date code and does not need to be looked up. 


9. B. 2 GB of RAM is required for a 64-bit installation of Windows 10. 1 GB of RAM is 
required for a 32-bit installation of Windows 10. Both 4 GB and 8 GB are wrong answers. 
The more RAM installed in the computer, the better, but 2 GB is the requirement. 


10. B. The msinfo32.exe tool allows for the remote reporting of a computer’s hardware. 
regedit.exe is used to edit the Registry. msconfig. exe is used to change the startup of 
services and applications for the operating system. dxdiag.exe is used to diagnose DirectX 
problems. 


11. B. Windows 10 64-bit requires a minimum of 20 GB of free hard drive space. Windows 10 
32-bit requires a minimum of 16 GB of free hard drive space. Both 24 GB and 60 GB are 
wrong answers. Although the more hard drive space, the better, only 20 GB is required for 
64-bit Windows 10. 


12. C. Users will not be able to change the wallpaper or personalize the operating system until 
it is active. Applications will still launch fine. Windows Updates will continue to function to 
keep Windows up-to-date. Browsing the Internet will not be affected. 


13. B. The Out-Of-Box Experience (OOBE) is the pass that is responsible for configuring and 
creating the user environment during the setup process. The Generalization pass is where 
the operating system detects hardware. The Specialization pass is where the operating 
system is configured during setup. The WinPE pass starts the procedure of installing the 
operating system. 


14. A. When installing Windows 10, you can control telemetry data in the privacy settings 
dialog box. The Cortana options allow you to control how Cortana is used. Disk 
partitioning is configured during the initial installation in order to direct Windows 
where to install. Account creation is performed to create the first user on the operating 
system. 
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15. D. You will need to upgrade to Windows 7 Home Basic first, since Windows 10 does 
not have a direct upgrade path from Windows Vista. Upgrading to Windows 10 Home 
can be achieved after upgrading to Windows 7 Home Basic. Upgrading to Windows 
10 Pro or Windows 10 Enterprise directly cannot be achieved, even after upgrading to 
Windows 7 Home Basic. However, you can upgrade editions once you have upgraded to 
Windows 10. 


16. D. There is no way to directly convert a 32-bit installation of Windows to 64-bit Windows 
without performing a clean installation. Upgrading directly to Windows 10 Pro 64-bit is 
not possible. Upgrading to Windows 10 Pro 32-bit is possible, but you cannot upgrade to a 
64-bit edition. Upgrading to Windows 8.1 64-bit is not possible. 


17. A. The Boot Configuration Data is stored in the EFI System Partition on an EFI installation 
of Windows 10. The WinRE partition is used for the Windows Recovery Environment. 
Secure Boot is a feature of an EFI installation and does not contain its own partition. The 
C: \WINDOWS folder is where the installation of Windows exists. 


18. D. Allocating too much storage for an application might mean that the storage never gets 
used. Allocating too much storage has no effect on how fast storage gets filled. Storage 
might need to be downgraded in the future, not upgraded. It is not likely for another 
application to use the space that was originally allocated for a different application. 


19. D. When RAM requirements are stated, they are inclusive of the operating system, so the 
RAM requirement is the total memory of the operating system. The application will have a 
separate specification for local or network storage. 


20. C. The maximum number of connections that can simultaneously be made to a Windows 
10 workstation is 20. 


Chapter 18: Working with Windows 8/8.1 


1. D. When Windows 8 was first released, the interface was called the Metro UI. It was later 
called the Windows 8 interface. Starter is an edition of Windows 7. Aero is the name of the 
interface for Windows 7. A charm describes the quick access menu on Windows 8 when the 
cursor is placed in the lower-left corner of the screen. 


2. A,B. Both the Enterprise and Pro editions of Windows 8 support EFS. The RT edition is 
preinstalled on tablets and does not support EFS. The Core edition does not support EFS. 


3. A. The 32-bit installation of Windows 8 requires a minimum of 16 GB of hard drive space. 
20 GB is required for 64-bit installations of Windows 8. Both 24 GB and 28 GB are wrong 
answers. 


4. B. The 64-bit version of Windows 8 requires a minimum of 2 GB of RAM. The 32-bit 
version of Windows 8 requires a minimum of 1 GB of RAM. Both 4 GB and 8 GB are 
wrong answers. 
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5. C. OneDrive is the online/cloud storage account that comes with a Microsoft account. 
eDirectory and PostBox are wrong answers. Cloud+ is a CompTIA certification. 


6. D. File Explorer was called Windows Explorer in prior operating systems. Finder is the 
Apple file manager in macOS. OneDrive is an online/cloud storage location accessed 
with a Microsoft account. File Manager is the original name of the file manager in 
Windows 3.1. 


7. A. The Microsoft Store, introduced with Windows 8 and requiring Windows 8 or higher, 
is an online site where you can download apps, games, software, and more. Windows Easy 
Transfer is a method of transferring files and settings that was introduced in Windows 7. 
Windows Anytime is an upgrade method used with Windows 7 and Vista. Windows Roller 
is a wrong answer. 


8. D. Charms were introduced in Windows 8 and are available on the side of the screen for 
quick access to Search, Share, Start, Devices, and Settings. Ornaments and sidecars are 
incorrect answers. Gestures are actions performed with your finger on Windows 8 tablet 
installations. 


9. C. PowerShell script files are based on the .NET programming framework. An application 
programming interface (API) is a method of allowing access to a program’s subroutines. 
PHP is a Linux-based web page scripting language. ASP is a Windows Internet Information 
Services (IIS) web page scripting language. 


10. B. Windows 7 Ultimate can only be upgraded to Windows 8 Pro. Windows 7 Ultimate 
cannot be upgraded to Windows 8 Enterprise, because it is a volume license edition. 
Windows RT comes preinstalled on tablets. Core edition is a basic edition of Windows 8, 
and you cannot downgrade to this edition. 


11. D. The Windows Upgrade Assistant enables you to determine whether your current 
operating system can be upgraded to Windows 8. Windows Compatibility Advisor is 
not a Windows tool. The Windows Upgrade Wizard is used to upgrade Windows 8. The 
Windows Administrative Tools will not perform this function. 


12. A. The Microsoft Deployment Toolkit (MDT) streamlines the process of creating a 
Windows 8 image for upgrading multiple machines and reduces time for each individual 
install. The Microsoft Assessment and Planning Toolkit (MAP) is not an answer. MAB and 
WVE are not Microsoft tools. 


13. C. The diskpart utility can be used to verify that an image is pointing to its respective 
drive. GRUB and LILO are boot loaders used with Linux. Sysprep is a tool used to prepare 
a Windows installation for imaging. 


14. B. Windows To Go was created to allow Windows 8 to boot from flash drives. BitLocker is 
a drive-level encryption technology. OneDrive is an online/cloud storage location accessed 
with a Microsoft account. Load2Go is not a Microsoft utility. 


15. C. You can use the winsat formal command to assess and tune a solid-state drive 
installation of Windows 8. MSD tiny is neither a command nor a utility. The diskpart 
utility is used as a drive-partition tool. Mcat now is neither a command nor a utility. 


16. 


17. 


18. 


19. 
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D. The system partition contains the BCD folder, which tells the computer how to start 
Windows. The recovery partition is used if the operating system needs to be repaired. 
The data partition is where the user data is stored, if it is configured in this manner. The 
Windows partition is not technically a partition; it is considered the same as the system 
partition, which is where the Windows operating system files are located. 


A. Windows To Go is available only in the Windows 8 Enterprise edition. Windows To 
Go allows for the operating system to boot and run from USB mass-storage devices, such 
as USB flash drives and external hard disk drives. Windows 8 Pro, RT, and Core do not 
include the Windows To Go feature. 


C. When you boot into the Windows Recovery Environment (WinRE) and choose to 
refresh the installation, personal files and Microsoft Store apps will be retained. Reset 

will delete all personal files and installed applications other than the default applications. 
Restore will undo a recent system change and could potentially remove installed apps from 
the Microsoft Store. Replace is not an option when booting into the Windows Recovery 
Environment. 


A. The Windows 8 product key is a 25-character code used for Windows activation. All 
other answers are wrong. 


D. The system partition normally appears as partition 0; it is also the partition that 
contains the BCD. The boot partition that contains the operating system files normally 
appears as partition 1. 


Chapter 19: Working with Windows 7 


1. 


A. Windows 7 Starter edition can join a HomeGroup, but it cannot create a HomeGroup. 
Only Windows 7 Home Premium, Professional, Enterprise, and Ultimate can both create 
and join a HomeGroup. 


C. The Desktop Gadgets feature allows for mini-programs to be placed on the Desktop of 
Windows 7. Aero is an interface that gives a glass-like design to Windows. XP Mode allows 
for Windows XP programs to be installed and run inside of Windows 7. Sidebar is a feature 
from Windows Vista. 


B. BitLocker uses the Trusted Platform Module (TPM) to encrypt a drive and to store 
the decryption keys. Encrypted File System (EFS) is a filesystem-level encryption method. 
User Account Control (UAC) is used to control access to administrative rights. Aero is an 
interface that gives a glass-like design to Windows. 


C. Libraries allow you to logically group files together, as opposed to moving them into 
the same directory. HomeGroup allows for the easy sharing of files and printers between 
others in the same HomeGroup. Windows Touch added touch screen functionality to 
Windows 7. Snap is an easy way to resize windows by snapping them into sides of the 
Desktop. 
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5. B. The Microsoft Assessment and Planning (MAP) Toolkit can be used to plan a rollout of 
Windows 7 by gathering information from existing clients. Sysprep is used to generalize a 
Windows installation. The User State Migration Tool (USMT) is used to transfer user files 
and profiles to another computer after an upgrade. The Windows Easy Transfer (WET) tool 
is used to move a user’s files to a new computer. 


6. D. Only Windows Vista Business can be upgraded to Windows 7 Professional. Windows 
Vista Starter, Home Basic, Home Premium, and Ultimate cannot be upgraded to Windows 
7 Professional. 


7. B. The Upgrade Advisor is the Windows 7 utility used to assess whether the current 
operating system is upgradable to Windows 7. Upgrade Assistant is used with Windows 
8/8.1 and Windows 10 for assessment. Sysprep is a utility to generalize a Windows 
installation prior to imaging. Windows Anytime Upgrade was used to upgrade between 
editions but is now defunct. 


8. C. Windows Preinstallation Environment (WinPE) is used in a PXE environment to 
network boot an installation of Windows 7. Winload. exe assists in loading the operating 
system kernel. BOOTMGR is the bootstrap loader for selecting the operating system to 
boot. Winresume.exe resumes a prior session of Windows and is called by BOOTMGR. 


9. A. The System Restore feature allows you to recover the operating system to a prior point 
before the faulty application or driver was installed. Snap is a function of the Desktop 
interface that allows for easy resizing of Windows. WinPE is a preinstallation environment 
used for upgrading or installing Windows. BOOTMGR is the bootstrap program 
responsible for selecting the operating system on startup. 


10. D, E. Only Windows 7 Enterprise and Windows 7 Ultimate include BitLocker. Windows 7 
Starter, Home Premium, and Professional do not include BitLocker. 


11. B. System Restore allows for both the automated and manual creation of restore points. 
You can manually create restore points via the System Protection tab of System Properties. 
Windows 7 does not include a System Tools applet. The option to create manual restore 
points does not exist in Backup. 


12. A. The Action Center in Windows 7 allows you to view security- and maintenance-related 
problems, such as virus protection status and potential system problems. Windows XP has 
a utility called Security Center. HomeGroup is a feature used to share files and printers 
between other Windows computers. The Troubleshooting utility is used to solve problems 
in the operating system but will not display virus protection status. 


13. C. After installing Windows 7, you must activate it within 30 days. Certifying and 
confirming Windows 7 are not valid processes. You are not required to register Windows. 


14. B. Windows 7 Enterprise supports two physical CPUs. Windows Home Premium supports 
one physical CPU. No other Windows 7 editions support more than two CPUs. 


15. B. The User Account Control (UAC) default is set to “Notify me only when programs try 
to make changes to my computer.” “Always notify” will prompt you every time you make a 
change to the operating system. “Notify me only when programs try to make changes to my 


16. 


17. 


18. 


19. 


20. 
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computer (do not dim my desktop)” will behave as the default but will not dim the desktop. 
“Never notify” effectively turns off the UAC. 


C. ReadyBoost allows you to use free space on a USB drive or SD card to speed up a 
system. ReadyDrive is used with hybrid hard disk drives (H-HDD) to speed up a system. 
Shadow Copy is used to save copies of files in real time. BitLocker to Go allows you to 
secure data stored on a USB drive. 


C. Msconfig.exe can be used to choose the default operating system to boot to. 
BOOTMGR is the bootstrap program responsible for operating system selection on startup. 
Winload. exe is responsible for loading the operating system kernel. Winlogon. exe is part 
of the system files that enable users to log in to the operating system. 


C. Remote computers and virtual machines can be connected via the Remote Desktop 
Protocol (RDP) using TCP port 3389. Port 80 is used with the HTTP protocol. Port 139 
is used with the NetBIOS protocol. Port 443 is used with the Secure Socket Layer (SSL) 
protocol. 


A. The hidden system partition on a Windows 7 installation holds the boot configuration 

data (BCD) in the \BOOT folder. There is no \START folder with any Windows installations. 
The \SYSTEM32 folder holds system files, such as the kernel. The \WINDOWS folder contains 
all of the Windows binaries. 


D. The maximum amount of RAM supported in the 64-bit edition of Windows 7 
Enterprise is 192 GB. A 64-bit installation of Windows 7 Home Premium supports 16 GB 
of RAM. The other answers are incorrect. 


Chapter 20: Working with macOS 
and Linux 


1. 


C. The command ls -la will list all of the files in a long format. The command 

ls -a | ls-l will not work. The ls -s; ls -a will show two listings: one with the size 
and the other with all of the files. The ls -a\ls -1l command will show two listings—one 
with all of the files and the other in a long format—but it will not show all of the files in a 
long format. 


D. Boot Camp allows you to install Windows on a Mac. Keychain is a tool that saves 
credentials so that the user does not need to be prompted. Mission Control is a quick way 
on macOS to view what is currently running. Finder is the macOS equivalent to Windows 
File Explorer. 


A. Time Machine is the Apple application that can be used to create backups on a regular 
basis. Finder is the macOS equivalent to Windows File Explorer. VSS is a Windows 
technology that is used to create snapshots of a volume. Keychain is a tool that saves 
credentials so that the user does not need to be prompted. 
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4. B. The vi command is used to edit files. The ps command lists processes running. The 
rm command removes files or directories. The ls command lists files and folders in the 
filesystem. 


5. C. The iwconfig command can be used to edit a wireless connection’s configuration 
settings. The dd command is used to duplicate disks. The apt-get command is used with 
the APT package management system for downloading packages. The pwd command will 
show the current working directory. 


6. B. Keychain is a tool that saves credentials so that the user does not need to be prompted. 
Spotlight is a utility in macOS that allows a search of the operating system and Internet for 
search terms. The Dock is the macOS application menu that is located on the bottom of the 
screen. Gestures allow you to use more than one finger on the trackpad to perform different 
functions. 


7. A. The shell is the interpreter in Linux between the operating system and the user. The 
translator is a wrong answer. Login is something you perform to access the shell. The 
graphical user interface (GUI) does not interpret commands and therefore is not considered 
an interpreter. 


8. D. Working copies are backups that are kept on-site at the computer center for immediate 
recovery purposes. Man-in-the-middle is an attack where an eavesdropper listens between 
two people or devices. Cloud copies are backups that are sent to cloud storage and cannot 
be immediately recovered. Journal copies is a wrong answer. 


9. C. The apt-get utility can be used to download and apply patches to a Linux installation. 
The update command is not a utility. Shell/terminal is an interface for interacting with the 
operating system with the command line. The patch command is not a utility. 


10. C. The chown command is used to change ownership of a file. The cd command changes 
the working directory. The chmod command changes permissions on files. The pwd 
command displays the current working directory. 


11. A. The fsck Linux utility is used to check and repair disks. The chkdsk utility is a 
Windows utility used to check and repair disks. The du utility is used to show the current 
disk usage. dumgr is not a utility and is a wrong answer. 


12. B. By pressing the home button twice on an iPad, you can Force Quit an application that 
will not stop running. The kill utility can be used only at the command line of Linux/ 
macOS. The Task Manager is a Windows utility. Close Quit is not a feature and therefore a 
wrong answer. 


13. C. Bash is the most common command-line shell used with Linux. Tcl/Tk is a shell used 
with Linux, but it is very uncommon. Terminal is a utility used to access the command-line 
shell. SSH, or Secure Shell, is a secure protocol used to access the shell over a network. 


14. D. The Dock is the area at the bottom of the macOS screen that is used to launch 
applications. The footer is not a valid answer. Mission Control is a macOS feature that 
allows you to see all the applications running. The Taskbar is a Windows Desktop element 
that is used to track running applications and quickly launch them. 
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15. C. The Command+spacebar key combination will bring up the Spotlight utility. 
Control+Shift, Option+Tab, and AlttHome are wrong answers. 


16. A. The sudo command can be used to run a single command as another user. The su 
command allows you to change user logins at the command line. The passwd command 
changes the user’s password. The ifconfig command allows you to view and modify the 
wired network interface. 


17. C. The ps command will display a snapshot of the current running processes on a 
Linux operating system. The ls command will display a listing of files from the working 
directory. The cat command will display the contents of a file. The su command allows 
you to change user logins at the command line. 


18. B. The command cd .. will take you one level back from the current working directory. 
The command cd . will do nothing, because the period signifies the current working 
directory. The command cd ... is not a valid command. The command cd ~ will change 
directories to the home directory of the user. 


19. B. The effective permissions are read and write. From left to right, the permissions are rwx 
for the user, rw- for the group, and r-- for everyone else. Since the user is only a member of 
the group applied to the file, they will have read and write permissions. 


20. C. The -p option on the mkdir command allows subfolders to be created as well as the 
target folder. All other answers are incorrect. 


Chapter 21: Scripting and Remote Access 


1. C. Scripting languages are interpreted languages that run on top of a runtime environment. 
Programming languages, not scripting languages, require a compiler. Scripting languages 
are not strongly typed; programming languages are strongly typed. Scripting languages 
have bad memory management because of loosely typed variables. 


2. A. Scripting languages are considered high-level languages because they do not directly 
access hardware and use an intermediary called the interpreter. Mid-level languages are 
Java and C/C++, not scripting languages. There is no such thing as an intermediate-level 
language. Low-level languages are machine language and assembly language, which are not 
scripting languages. 


3. C. Floating-point variables allow for precision math, also known as decimal math. Boolean 
variables allow for true or false values. Integer variables allow for whole numbers values. 
String variables allow for text values. 


4. C. A program variable is the least significant and not inherited. A system variable is 
defined for the entire system and is the most significant because it is inherited by all users 
and programs. A user variable is significant as well, since all applications will inherit the 
variable. A string variable is not inherited, but it is not an environment variable. 
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13. 


14. 


15. 
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B. The statement $xvar = 2 is a PowerShell statement that will load the variable xvar with 
a value of 2. The statement xvar = 2 is Bash syntax. The statement xvar = 2; is JavaScript 
syntax. The statement set /a xvar=2 is a Windows batch script syntax. 


D. A for loop has a defined beginning and end, and steps from the beginning to the end. A 
do while loop is a type of while loop and has only a defined end. A while loop has only a 
defined end. An if statement is branch logic, not a loop. 


C. The .bat extension is used with the Windows batch scripting language. The . vbs 
extension is used with VBScript language. The .js extension is used with the JavaScript 
scripting language. The . py extension is used with the Python scripting language. 


B. The VBScript language allows for the use of the Component Object Model (COM). The 
PowerShell scripting language allows for the use of the .NET Framework. Windows batch 
scripts use existing applications. JavaScript is primarily web browser-based and does not 
allow for the use of external objects. 


D. The .py extension is used with the Python scripting language. The .vbs extension is 
used with the VBScript language. The .js extension is used with the JavaScript scripting 
language. The . bat extension is used with the Windows batch scripting language. 


A. The PowerShell scripting language allows for the use of the .NET Framework and 

is commonly used with Microsoft Azure and Office 365. The VBScript language allows 
for the use of the Component Object Model (COM) and is not used for cloud services. 
Windows batch script uses existing applications and is not used for cloud services. 
JavaScript is primarily web browser-based, does not allow for the use of external objects, 
and is not used for cloud services. 


D. JavaScript is primarily web browser-based and allows for interactive content. The 
PowerShell scripting language is used to manage the operating system. The Bash scripting 
language is primarily used with Linux and UNIX systems. Windows batch scripts use 
existing applications and are used to manage the operating system. 


B. The .sh extension is used with the Bash scripting language. The .vbs extension is used 
with the VBScript language. The .bat extension is used with the Windows batch scripting 
language. The .py extension is used with the Python scripting language. 


C. Before a script can be executed, you must use the chmod command to grant execute 
permissions. The chown command changes ownership. There is no such thing as an execute 
attribute. Adding .sh to the end of the script doesn’t serve any purpose. 


C. The statement mvar = 8; is JavaScript syntax to load a variable of mvar with a value of 
8. The statement $mvar = 8 is PowerShell syntax. The statement mvar = 8 is Bash syntax. 
The statement set /a mvar=8 is Windows batch script syntax. 


D. PowerShell is the only scripting language that has a preinstalled Integrated Scripting 
Environment (ISE), called the PowerShell ISE. The VBScript language requires the 
installation of Microsoft Visual Studio Code. The Bash scripting language requires a text 
editor or other package to be installed. The Python scripting language requires a third- 
party integrated development environment (IDE), also known as an ISE. 
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. A. The line of //comment is used to comment JavaScript code. The line of ‘comment is used 
to comment VBScript code. The line of REM comment is used to comment Windows batch 
script code. The line of # comment is used to comment Bash script code and PowerShell 
code. 


A. The .js extension is used with the JavaScript scripting language. The .sh extension is 
used with the Bash scripting language. The .bat extension is used with the Windows batch 
scripting language. The .py is used with the Python scripting language. 


B. Remote Desktop Protocol (RDP) allows for local drives to be available to the remote 
machine when an RDP session is initiated. Neither Virtual Network Computing (VNC), 
nor Secure Shell (SSH), nor Telnet is capable of redirecting drives. 


B. The SSH protocol operates on TCP port 22. The Remote Desktop Protocol operates on TCP 
port 3389. The Telnet service operates on TCP port 23. HTTPS operates on TCP port 443. 


D. The Telnet protocol is quite aged and has poor security since it transmits everything 

in cleartext. RDP uses TLS security and is quite secure. The Quick Assist utility also uses 
TLS security. The SSH protocol provides strong encryption and a built-in, certificate-based 
authentication mechanism. 


Chapter 22: Security Concepts 


1. 


A. Perimeter security is intended to delay or deter entrance into a facility. Mantraps are 
used for mid-layer access control to prevent tailgating. Multifactor authentication is used 
for mid- and inner-layer access control. Strong passwords are used for mid- and inner-layer 
access control. 


A. The advantage to assigning the IP addresses statically is that you can make certain which 
host is associated with which IP address, and then utilize filtering to limit network access to 
only those hosts. Disabling DNS will limit all hosts on a network from getting to the Internet 
and will not limit network access. A default subnet mask will not limit network access and 
will cause other problems. An empty default gateway will not limit network access. 


A. Social engineering uses the inherent trust in the human species, as opposed to 
technology, to gain access to your environment. IDS systems are network-based systems 
that detect intrusions. Perimeter security describes physical security. Biometrics describes 
an authentication method based on human physical traits. 


C. A fingerprint scanner, or any device that identifies a person by a physical trait, is 
considered a biometric security control. Access control is the system that controls access 
for users. Physical barriers are structures that limit physical access. Softening refers to 
weakening of security. 


A. Although the end result of any of these attacks may be denying authorized users access 
to network resources, a denial-of-service (DoS) attack is specifically intended to prevent 
access to network resources by overwhelming or flooding a service or network. Worms 
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reproduce and move throughout the network to infect other systems. Trojans are programs 
that enter a system or network under the guise of another program. Social engineering is 

a process in which an attacker attempts to acquire information about your network and 
system by social means, such as talking to people in the organization. 


6. B. A distributed denial-of-service (DDoS) attack uses multiple computer systems to attack 
a server or host in the network. A denial-of-service (DoS) is a one-on-one attack to disrupt 
service. Worms reproduce and move throughout the network to infect other systems, and 
therefore do not attack one victim. Rootkits are software programs that have the ability to 
hide themselves from the operating system. 


7. B. Biometrics relies on a physical characteristic of the user to verify identity. Biometric 
devices typically use either a hand pattern or a retinal scan to accomplish this. Smart cards 
contain a private certificate key and are protected with a passphrase. Geo-fencing uses 
your GPS coordinates to assure that the authentication happens when you are in a defined 
geographic area. Tokens are rotating numerical keys that you must physically have with 
you. 


8. A. A man-in-the-middle attack intercepts data and then sends the information to the server 
as if nothing were wrong, while collecting the information. Zero-day attacks are attacks in 
which a developer has not properly patched a hole yet and is unaware of the hole. A denial- 
of-service (DoS) attack is used to disrupt legitimate requests from being answered. A smurf 
attack is a type of distributed denial-of-service (DDoS). 


9. A. A spoofing attack is an attempt by someone or something to masquerade as someone 
else (IP address) and is often used to disrupt access. Social engineering is a process in 
which an attacker attempts to acquire information about your network and system by 
social means, such as talking to people in the organization. Worms reproduce and move 
throughout the network to infect other systems. Password attacks are used in an attempt to 
guess passwords. 


10. A. A worm is different from a virus in that it can reproduce itself, is self-contained, and 
doesn’t need a host application to be transported. A smurf attack is a type of distributed 
denial-of-service (DDoS). A phishing attack is an attempt to gain a user’s credentials to a 
network resource. Trojan horses are programs that enter a system or network under the 
guise of another program. 


11. D. A smurf attack attempts to use a broadcast ping (ICMP) on a network. The return 
address of the ping may be that of a valid system in your network. The Transmission 
Control Protocol (TCP) is not used with a smurf attack. The Internet Protocol (IP) is a suite 
of protocols and solely used with a smurf attack. The User Datagram Protocol (UDP) is not 
used with a smurf attack. 


12. C. Wi-Fi Protected Access 2 (WPA2) offers the Advanced Encryption Standard (AES) for 
encrypting wireless communications. Wired Equivalent Privacy (WEP) offers weak 64- or 
128-bit encryption. Wi-Fi Protected Access (WPA) uses the RC4 encryption algorithm. 
Temporal Key Integrity Protocol (TKIP) is a part of the WPA encryption protocol. 


13. 
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20. 
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D. Implementing port security on your switches will allow you to restrict the MAC 
addresses that can communicate on a switch port. This allows you to mitigate this threat. 
A firewall will not prevent access to your internal network. Data loss prevention (DLP) is 
used to limit the exposure of your data, usually through email. Active Directory provides 
centralized authentication in a Windows Server—based domain environment. 


B. End-user education is the best way to protect your users from the threat of phishing via 
email. Antivirus software is used to prevent viruses, not phishing attempts. SecureDNS 
can be useful in protecting your users, but not from phishing emails. The principle of least 
privilege assigns only the permissions for that user’s need to do their work, and no more. 


C. Spear phishing is a type of social engineering, where someone is trying to con your 
organization into revealing account and password information by pretending to be a high- 
level person. A spoofing attack is an attempt by someone or something to masquerade as 
someone else, with the intent of disrupting access. A replay attack is a form of a man-in- 
the-middle attack, where packets are replayed a critical time. Trojan horses are programs 
that enter a system or network under the guise of another program. 


A. Some viruses won’t damage a system in an attempt to spread into all the other 
systems in a network. These viruses use that system as the carrier of the virus. A 
password attack would not prompt your antivirus software to notify you. Your antivirus 
software could be malfunctioning, but it would not suggest the same virus is infecting 
you over and over again. A denial-of-service (DoS) attack would not prompt your 
antivirus to notify you. 


B. A symptom of many viruses is unusual activity on the system disk. The virus spreading 
to other files on your system causes this. A disk failure will not create high disk activity. A 
spear phishing attack is a social engineering attack and will not create high disk activity. 
A denial-of-service attack will not create high disk activity. A TCP/IP hijacking attack will 
not create high disk activity. 


A. A brute-force attack is a type of password attack in which a password is guessed over 
and over, until the right password is guessed. A backdoor attack is an embedded account 
that allows unauthorized access through an unpatched coding hole. A worm is different 
from a virus in that it can reproduce itself, is self-contained, and doesn’t need a host 
application to be transported. A TCP/IP hijacking attempt is an attack that attempts to 
redirect the TCP/IP conversation to the threat agent. 


A. The thesis of your presentation should outline the need of a firewall to isolate the 
external network from the internal network. Firewalls will not scan packets for viruses. 
Firewalls will not prevent password attacks. Firewalls will not harden physical security. 


C. A login script is used by Active Directory during login to map drives and printers. A 
home folder is a private network location in which the user can store their personal files. 
Organizational units (OUs) are used to group computers and users so that Group Policy can 
be applied. The MMC is used to manage various aspects of Active Directory and the local 
operating system. 
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Chapter 23: Securing Operating Systems 


1. 


C. A bring your own device (BYOD) policy defines the minimum specifications for an 
employee’s device used for work-related access. The mobile device management (MDM) 
software would usually police these specifications, but it would not define them. The 
acceptable use policy (AUP) is a code of conduct when dealing with organization resources. 
The non-disclosure agreement (NDA) is an agreement used when dealing with intellectual 


property. 


D. Synchronizing a mobile device with a computer system allows you to mirror personal 
data between the devices, regardless of which one contains the most current data. 
Calibration refers to matching the device’s and user’s perceptions of where the user is 
touching the screen. Remote wipes allow you to remove personal data from a lost or stolen 
device. Pairing is what must be done in Bluetooth for two Bluetooth devices to connect and 
communicate. 


A. The Guest account should be disabled on the operating system, unless there is good 
reason to leave the account enabled. Print Operators is a group found on Windows servers. 
Power Users is a group found on both Windows workstations and servers. Userone is 
obviously a user account. Unless the user has left the organization, there should be no 
reason to disable the account. 


C. Locator apps can find the phone and then display a message that can be read even while 
the phone is locked. Locator apps also often give the user the option to make the phone 
blare a noise to aid in finding the device. Failed login restrictions will wipe a device if a 
specific number of wrong passwords are entered. Antivirus apps make sure that your phone 
does not get a virus, but they offer no way to message or locate the device. Remotely wiping 
a mobile device is a feature of locator apps, but it is not itself an app that displays messages 
and produces noises. 


C. A screensaver should automatically start after a short period of idle time, and that 
screensaver should require a password before the user can begin the session again. The 
system should neither shut down nor restart, since work could still be open. For the same 
reason, the system should not log out the user. 


B. Android apps have an .apk (Android Package Kit) extension. Apps are developed with 
a software development kit (SDK), but .sdk is not a valid extension. Apple iOS apps use an 
. ipa (IOS App Store Package) extension. Only the Windows desktop operating system can 
execute .exe files. 


C. The goal of single sign-on (SSO) is to allow a username/password combination. Once 
the combination is entered, claims are used to access additional resources. Tokens are given 
to the operating system after a user successfully logs in; they allow a user to access rights on 
the operating system. Kerberos is used (along with Active Directory) to authenticate a user 
on the Windows operating system. Multifactor authentication is the use of two or more 
factors to authenticate a user. 


C. The password *erverP %ssw#rd uses uppercase and lowercase letters, symbols, and 
numbers, for a possible character base of 95 combinations per position. The password 
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serverpasswordOne uses only lowercase and numbers, for a character base of 36 
combinations per position; although it is longer than *erverP %ssw#rd, the complexity 

still falls short. The password $erVer1 uses uppercase and lowercase letters, symbols, and 
numbers, but it is too short. The password serverpassword1 is also long and uses lowercase 
and numbers, but it only has a character base of 36 combinations per position. 


D. Password expiration is a tactic to mitigate passwords from being shoulder surfed or 
keylogged. Although it won’t remove the threat completely, requiring passwords to expire 
makes it less likely that the password could be used over a long period of time. Antivirus 
will not prevent shoulder surfing by other users. Privacy screens would not prevent 
keyloggers from capturing a password. Password complexity makes it harder to shoulder 
surf a password but does not mitigate the risk of a keylogger. 


C. Account expiration is the best approach to mitigating the risk of a contractor account 
that is forgotten about. If an expiration for the account is set, it will automatically deny 
logins after the set time. Time restrictions will limit when the account can be logged into 
but will not deactivate the account. Password complexity will have no effect on mitigating 
the risk; it will only require a stronger password. Password expiration will have no effect on 
mitigating the risk; it will only require the password to be changed. 


B. Disabling autorun for all media will mitigate the risk of a potential virus being 
automatically run from USB drives. Installing current updates to the operating system 
will not prevent a USB drive from performing an autorun. Enabling BitLocker will not 
prevent autorun from launching. Enabling BitLocker to Go will not prevent autorun from 
launching. 


A. When an employee is offboarded, their user account is deleted or disabled. A user 
account is not created, nor is its password reset, during the offboarding process. A user 
account normally is created during the onboarding process. 


B. By default, a Google account is required on Android devices; it is used to synchronize 
data and app purchases to the cloud. The device does not require email to be set up, but the 
account can be used for the setup. The account is not used for desktop backups. The device 
does not require registration. 


A. Fingerprint locks are the most secure of all the lock methods, since fingerprints are hard 
to duplicate. Face locks have a high number of false positives, which can be used to gain 
access to the phone. Passcode locks can be cracked or shoulder surfed. Swipe locks can be 
shoulder surfed and are usually simple. 


A. The Encrypted File System (EFS) is a functionality of the Windows NTFS filesystem. 
EFS can encrypt individual files and folders. BitLocker is a full device encryption 
technology. NTFS is a filesystem that supports encryption and security, among other 
functionality. BitLocker to Go is used for full device encryption of removable drives. 


B. Because the user is in both groups and the Sales group has full share permissions 
and the Sales group has modify NTFS permissions, the most restrictive of the two is 
Modify, so that will be the effective permission for the user. All of the other answers are 
incorrect. 
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17. A. The permissions will be the same as before the move, since you are just moving the files 
and not creating a new entity. The permissions will not be inherited from the parent folder. 
The permissions will not be configured the same as the root folder. The permissions will 
not be blank. 


18. B. The user will have only the Modify permission when logged in locally to the computer, 
since the filesystem is not shared with the appropriate permissions. The user will not have 
the Modify permission when connecting from the network. The user will still have the 
Modify permission when logged in locally, because of the NTFS permissions. The user will 
not have read-only permissions when connecting from the network. 


19. C. The file attributes are most likely set to Read-only, thus not permitting the file to be 
deleted. The Modify permission would not hinder the file from being deleted. The share 
permissions would not have any bearing on the problem, since the local filesystem is being 
accessed. The file attributes being set to System would not restrict a file from being deleted. 


20. D. Mobile device management (MDM) software enables you to enforce profile security 
requirements on mobile devices. The acceptable use policy (AUP) is a code of ethics 
your users should follow when dealing with organizational resources. A non-disclosure 
agreement (NDA) is an agreement between an employee and the organization to protect 
intellectual property. A bring you own device (BYOD) policy contains how devices should 
be secured but provides no enforcement. 


Chapter 24: Troubleshooting Operating 
Systems and Security 


1. D. Windows Update is responsible for downloading and installing Windows service packs, 
patches, and security updates. Device Manager is used to view devices installed on the 
operating system. The Microsoft Management Console is a console that allows snap-ins for 
management. Download Manager is a component of Internet Explorer. 


2. B. Enable Safe Mode allows you to boot with basic drivers and minimal startup of 
nonessential services. Enable Debugging is used by kernel developers. Disable Driver 
Signature Enforcement is used to allow an unsigned driver to load during boot. Enable 
Low-resolution Video will boot the operating system into a VGA mode. 


3. B. The /REBUILDBCD option can be used with the bootrec tool to rebuild the boot 
configuration data (BCD). The /FIXBOOT option writes a new boot sector to the system 
partition. The /SCANOS scans all other partitions that are found to have Windows 
installations. The /FIXMBR writes a new master boot record (MBR) to the partition. 


4. B. The most important step is the first step: Identify the problem. Once you’ve identified 
the problem, you can then establish a theory. After a fix is in place, you should verify 
functionality. The final step is to document findings. 
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C. The Windows Recovery Environment allows you to create a restore point. Windows 
Backup restores only user data, not the Windows operating system. Previous Version is 
used with Volume Shadow Copy (VSS). Windows Preinstallation Environment is the mini- 
Windows version used for installation of Windows. 


D. Winresume.exe is used to load Windows from a suspended state. The Boot 
Configuration Data (BCD) is used to direct Windows to boot the proper installation. 
Ntoskrnl.exe is the Windows kernel. Winload. exe is used for the normal booting of the 
Windows operating system. 


A. The System Restore option should be used first to restore the operating system to an 
earlier point before the problem. This will restore the device back to a previous state before 
the installation of the drivers. System Restore will not affect user data files. Reset This PC 
will roll back the PC to a period before the tax application was installed. Reimaging the 
laptop will erase all programs and data files. Manually reinstalling Windows 10 will erase 
all programs and data files. 


A. When you have UEFI firmware, it is required to have the disk setup with a GUID 
Partition Table (GPT) partitioning type. The standard master boot record (MBR) 
partitioning type can be used with BIOS. Power on self-test (POST) is a routine the BIOS 
or firmware performs to test hardware before boot. The Boot Sector is contained on both 
MBR and GPT partitioning types. 


B. Pop-up blockers are used to prevent pop-ups and pop-unders from appearing. Anti-malware 
utilities will remove and prevent malware. Phishing sites are used to collect users credentials’ by 
tricking users. Antivirus software is used to protect the operating system from viruses. 


C. Antivirus definitions should be updated daily, because new viruses are identified by 
the minute. Updating antivirus definitions weekly or monthly will open you up to the 
possibility of infection. 


C. The Optimize Drive tool allows you to analyze and optimize disks for fragmentation. 
Disk Analyzer is not a tool. Disk Cleanup is a tool used to clean up space on a drive. 
Chkdsk is a tool used to check for drive errors. 


B. Windows Update Troubleshooter can assist in diagnosing problems with Windows 
Update. The ntbtlog.txt file is used to diagnose problems with bootup. Windows 
Recovery Environment is used for problems with Windows outside of problems of Windows 
Updates. Safe Mode is a boot mode that loads minimal drivers and services. 


A. Windows Defender Security is considered anti-malware and antivirus protection for the 
Windows operating system. Mobile device management (MDM) software is used to manage 
mobile devices. Windows Action Center is a notification center for action to be taken in the 
operating system. VirusTotal is a third-party site that analyzes virus signatures, but it does 
not protect you from them. 


B. The System File Checker (SFC) allows you to manually scan for modified operating 
system files and repair them. Regedit is used to modify the Registry. Bootrec is used to 
repair the boot records on an operating system installation. User Account Control (UAC) is 
used to control access to administrative credentials. 
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A. Establishing security policies and procedures will help to eliminate security problems 
and guide employees on what to do if they arise. Optimizing drives will defragment 
drives and has no consequence to security. Preventing booting into Safe Mode will only 
hinder diagnostics. Preventing booting into Windows Recovery Environment will hinder 
diagnostics. 


D. The device most likely has too many background applications open, using RAM. That 
the device is not charged to capacity would not affect RAM. A digitizer not functioning 
properly would resemble inaccurate touch screen responses. If the device were in Do Not 
Disturb mode, the speakers would not work. 


B. If auto reconnect is configured on an SSID, the device could be susceptible to an evil 
twin attack, in which the device connects to any device with the same SSID. The device will 
not reconnect to any SSID, only the SSID configured as auto reconnect. Battery life will 
remain unaffected with auto reconnect. Over limits can be avoided with auto reconnect, 
because the wireless network is used for data usage. 


B. The potential security issue with WAPs running on full power is eavesdropping outside 
of the organization’s physical perimeter. Client signal drops would not be effected by WAPs 
running in a high power mode. Data transmission over limits by clients would not be 
affected. Unauthorized location tracking would not be affected. 


C. A login outside of business hours is the best example of possible unauthorized account 
access. A login during normal business hours is normal. A login to two different locations 
during normal business hours could be normal, as long as it is not at the same time. A 
failed attempt at entering the proper password is not an example of a possible unauthorized 
account access. 


B. Degraded battery life can be expected from an overheating mobile device, if the problem 
persists for a long time. Higher RAM usage will not occur with overheating, but it could be 
a cause of overheating. Inaccurate touch screen responses are not a symptom or consequence 
of overheating. The inability to decrypt emails depends on having the proper certificate 
installed. 


Chapter 25: Documentation 
and Professionalism 


1. 


D. A physical network diagram details all connections so that the next technician does 
not need to trace connections. A logical network diagram shows the flow of information. 
A knowledge base article documents a symptom and solution for a problem, but not the 
connections. A change management document is used to evaluate a potential change to a 
network. 


C. The rollback section contains the original configuration that can be used to revert 
the changes. The purpose section contains the reason for the proposed change. The risk 
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analysis section explains the risks involved with the proposed changes. The plan for change 
section contains the primary change configuration and the alternate change configuration. 


B. The scope of change section details whom the change will affect. The business 
processes section details the current business processes the change will affect. The end-user 
acceptance section details how the changes were tested and accepted by the users. The plan 
for change comprises the primary and alternate plans for the proposed change. 


D. Incident documentation should be completed so that key stakeholders can understand 
the reason for the outage. Change management documentation is used for proposed 
changes to the network. Knowledge base articles are used to document symptoms and 
solutions. An acceptable use policy (AUP) is used to protect an organization’s resources 
from user abuse. 


A. The Sarbanes-Oxley Act (SOX) is enforced by the Securities and Exchange Commission 
(SEC) and regulates sensitive financial information and financial records. The Family 
Educational Rights and Privacy Act (FERPA) affects education providers and organizations 
that process student records. The Health Insurance Portability and Accountability Act 
(HIPAA) affects health-care providers and providers that process health records. The 
Gramm-Leach-Bliley Act (GLBA) affects providers of financial services and safeguards 
customer information. 


A. A logical diagram is a high-level overview of a system so that you can see the flow of 
information. A physical diagram shows specifics, and although it can be used to trace the 
flow of information, it is not used as a high-level overview. A symbol diagram is not a type 
of diagram. A knowledge base article details a solution for symptoms and is not used to 
view the flow of information. 


C. The acceptable use policy (AUP) details the acceptable use of the email system for 
business purposes. Mobile device management (MDM) is software that allows you to 
manage mobile devices in the workplace. A password policy details the appropriate 
handling and management of passwords. Incident management is how a network or 
security incident is handled. 


B. Disk-to-disk is the fastest recovery method and backup method as well, because you 
are backing up from a disk to another disk attached via the network. Disk-to-tape is 
slower because you must re-tension the tape and then locate the data on the tape to recover 
it. Disk-to-flash is not a backup method, because of the price of flash. Disk-to-cloud is 

the slowest recovery method because you must recover from the cloud over a network 
connection. 


B. You should use the copy backup method, since it will perform a full backup of the files 
without resetting the archive bits. A full backup makes a full backup and resets all the 
archive bits affecting the normal backups. An incremental backup copies only the files that 
have changed since the last backup and leaves the archive bits unchanged. A differential 
backup backs up only the files that have changed since the last backup and then resets all 
the archive bits. 


C. A service entrance surge protection is used between the power meter and the main 
breakers, to protect from electrical surges. A surge protector strip is found under desks 
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11. 


12. 


13. 


14. 


15. 


16. 


17. 


18. 
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to protect from electrical surges. An uninterruptable power supply (UPS) is used as a 
backup power source until power is restored or conditioned properly. A generator is used 
during power outages to sustain power. 


C. Calling the customer and informing them of the situation is the best action that can be 
performed, since you are having direct communications. Arriving first thing in the morning 
should be done, but communications is the first action. Waiting until after hours and then 
leaving a message is not an appropriate action. Sending an email letting the customer know 
that you will be late is lying, since you will not make it to their site. 


C. If the problems do not appear to be related, then deal with them separately. Looking 
for commonalities between the problems would just waste valuable time. No assumptions 
should be made, such as that a virus is causing the problem, unless there is proof. Ordering 
a new machine is disruptive to the customer, unless the problem dictates that this action be 
performed. 


D. If you do not understand the customer, you should apologize, treat the customer with 
respect, and seek a manager to help translate. Ignoring the customer and starting to work 
on the system is not an appropriate response. Calling your supervisor will not solve the 
problem, since your supervisor will have the same issue. Asking that another technician be 
sent in your place is being insensitive to the customer and “passing the buck.” 


C. You should avoid confrontations with the user by attempting to calm down the user. 
You should never shove the user back. Yelling for everyone in the area to come quickly will 
escalate the situation, which is the opposite of what you want to do. 


B. You should take appropriate action and inform your manager, as well as notify the 
customer that you’ve done so. Doing nothing is not an appropriate response to this 
situation. Talking to the technician personally will create a confrontation and should be 
avoided. Asking the customer to prove it is an inappropriate action to this problem. 


D. You should assure the vice president that you are optimistic and skilled to deal with 
these problems. Offering a joke is an inappropriate action. Downplaying the situation does 
not show respect to the customer’s problem. Keeping your head down and ignoring the 
customer does not display appropriate communications. 


C. You should try to solve the customer’s problem without further escalating the 
frustration by putting them on hold or transferring them. Informing them that you won’t 
be able to help is only going to anger the caller, further validating their frustration. 
Transferring them to another technician is not the appropriate action, because it will add 
to their frustration. Suggesting that they call back will create more frustration and is poor 
customer service. 


B, C. Leaving a note for the user detailing what was done and how to contact you displays 
appropriate communications. Notifying the user’s manager and your own manager that 

the problem is resolved is also appropriate communications. Cleaning up and leaving no 
evidence that you were there is an inappropriate action, as it is deceiving to the user. Putting 
the system back to its original state is an inappropriate action because it does not solve the 
problem. 


19. 


20. 
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A. While the user’s profanity is likely linked to frustration, it hinders the communication 
and should be eliminated. You should ask the user to refrain from the offensive language. 
There may be circumstances where it is necessary to overlook the profanity, if your request 
is likely to make the already upset customer even angrier, as long as you can understand 
what is being said. Hanging up is not an appropriate action and will further the user’s 
frustration. Firing back with profanity is not an appropriate response, as it will escalate the 
situation further. 


B. Scheduling of the depreciation of the equipment is performed in accounting software. 
Tracking of the equipment is a benefit to an asset tag. Identifying assets is a direct benefit of 
asset tags. An asset tag provides a proof of ownership. 


Chapter 26: Safety and Environmental 
Concerns 


1. 


C. A three-pronged grabber should be used to retrieve the screw from the computer. Using 
a magnetic-tipped screwdriver is not advisable, because many components are sensitive to 
magnets. Using a magnetic grabber is not advisable, because many components are sensitive 
to magnets. Shaking the computer until it falls out can be dangerous and make the screw 
harder to get out. 


C. A high-voltage probe can dissipate the high voltage stored in a CRT. An antistatic 

wrist strap should not be worn near a high-voltage potential such as a CRT monitor. A 
screwdriver can dangerously arc the voltage and is not the proper way to discharge the unit. 
A power cord supplies power to a CRT monitor. 


B. The material safety data sheet (MSDS) will have the necessary information about the 
cleanup procedures. The Occupational Safety and Health Administration (OSHA) is an 
organization that oversees safety in the workplace. The product label may or may not have 
this information. A cathode-ray tube (CRT) is a type of monitor that uses a glass tube. 


D. You can download the MSDS by visiting the printer cartridge manufacturer’s website. 
The store is not required to furnish an MSDS at the time of purchase. The manufacturer 
is not required to furnish an MSDS with the packaging of the product. You are legally 
allowed to have an MSDS for products, as per OSHA. You should have them on hand in 
case of an emergency. 


A, C. An accident should always be reported, so that if there is a hazardous condition, 

it can be fixed. Report hazardous conditions, such a spill on the floor, to the employer 
before they are a problem. A near-accident does not need to be reported unless it is caused 
by a hazardous condition, like spills. Rain forecasted for a workday is not a hazardous 
condition. 


B. You can feel an ESD shock of 3,000 volts or more. 300 volts is too low for a human 
to feel. A minimum of 30,000 volts can be felt by a human. 300,000 volts can be felt by 
humans and could be painful. 
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A, B. Using an antistatic wrist strap allows you to ground yourself to dissipate a static 
charge. Using antistatic bags allows for a uniform charge around a component. Spraying 
disinfectant spray will only kill germs, not reduce static. Shuffling your feet will build a 
charge of static. 


B, D. Providing properly maintained tools and equipment is a requirement for an OSHA- 
compliant workplace. Displaying an OSHA poster in a prominent location is also a 
requirement for an OSHA-compliant workplace. Attending yearly OSHA safe work 
environment seminars is not a requirement. Having an OSHA employee stationed within 5 
miles of the facility is not a requirement. 


A. You should ensure that the company has the proper licenses to install 20 additional 
copies, to be compliant with licensing. Microsoft Office is not an open-source licensed 
product. Using the personal license key from an existing system violates the license 
agreement. Following normal installation procedures will not ensure compliance of 
licensing. 


C, D. You should use a cart to move heavy objects. You should also ensure that no safety 
hazards are in your path. Lifting by bending over at the waist can hurt your back. Carrying 
CRT monitors with the glass facing outward is not safe, as the weight will be farthest from 
your body. 


C. Alkaline batteries should be taken to a recycling center. Throwing batteries in the trash 
is not environmentally responsible. Incinerating batteries is not advisable, since they can 
explode and will create pollution. Flushing batteries down the toilet is not an acceptable 
disposal method. 


B, D. The first step is to confiscate and preserve the prohibited materials on the drive. The 
next step is to report the prohibited materials through the proper channels. Destroying the 
prohibited material will not remedy the situation. Confronting the user about the material 
is not suggested, as they could become hostile. 


A. You should research information on the Payment Card Industry Data Security Standard 
(PCI DSS) standard. The General Data Protection Regulation (GDPR) is used for protecting 
EU citizens. Protected health information (PHI) is any data that defines a patient or an 
ailment of a patient. Personally identifiable information (PII) is any information that can be 
used to identify a person. 


A. Wood and paper fires can be put out by a class A fire extinguisher. Class B fire 
extinguishers are used for flammable liquids. Class C fire extinguishers are used for 
electrical files. Class D fire extinguishers are used for flammable metals. 


B, C. Phillips and Torx are two common types of screwdriver. Neither circular nor helix is 
a type of screwdriver. 


A,B. Good safety plans protect the interests of the workers and also help to keep company 
costs down. Periodic workplace inspections and a training program are good components 
to implement. Employees cannot be punished in any way for reporting safety violations. 
Third-party audits of safety programs are not necessary, but can complement periodic 
inspections and safety/health-training programs. 


17. 


18. 


19. 


20. 


Chapter 26: Safety and Environmental Concerns 1523 


A. A good rule of thumb when it comes to magnetic-tipped screwdrivers is to avoid using 
them inside a computer case. Magnetic tools can damage data on disks that use a magnetic 
storage scheme. Magnetic-tipped screwdrivers should not be used inside a computer even 

if they are kept away from the processor. Magnetic-tipped screwdrivers should not be used 
inside a computer even if they are kept away from the RAM. Regardless of whether they are 
powered or not, magnetic-tipped screwdrivers should not be used inside computers. 


B, C. Material safety data sheets (MSDSs) contain handling and storage instructions as 
well as personal protection instructions. MSDSs do not contain freezing point specifications 
or salinity levels. 


B, D. To maintain a safe work environment, all employees must follow certain protocols. 
These include using protective gear and equipment and following all health and safety 
rules. Accidents must be reported to the employer, not OSHA (unless action is not properly 
taken by the employer). There are no rules requiring safety training, although it is a good 
idea to have these sessions and for employees to attend them. 


B. Nickel-metal hydride (NiMH) batteries are not considered environmental hazards. 
Alkaline batteries used to contain mercury, which is an environmental hazard, so they are 
assumed to be environmental hazards. Nickel-cadmium (NiCd) batteries and button cell 
batteries are considered environmental hazards. 
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Chapter 1: Motherboards, Processors, 
and Memory 


Answer to Performance-Based Question 1 


Here is how to remove a DIMM and replace it with another one: 

Pull the tabs on either end of the DIMM away from the DIMM. 

Pull the loose DIMM straight out of the slot and away from the motherboard. 
Ensure that the locking tabs are completely opened and out of the way of the slot. 
Align the module’s notch with the tab or tabs in the slot. 

Insert the new DIMM straight down into the slot. 
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Apply firm and even pressure downward until the locking tabs automatically snap into 
place. 


7. Nudge the tabs inward toward the module to make sure that they are tight. 


Answer to Performance-Based Question 2 


The components are labeled in the following illustration. 





<< ———._ |DE/PATA 


RAM (DIMM) 
CPU 


Chipset 


PCle x16 


PCI 
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Chapter 2: Internal Expansion, Storage 
Devices, and Power Supplies 


Here are the steps to remove a power supply from a computer chassis: 
1. Remove the power source from the system. 

Ground yourself and the computer to the same source of ground. 
Remove the cover from the system. 


Locate the power supply. 


oN 


Follow all wiring harnesses from the power supply to their termini, disconnecting 
each one. 


6. Remove any obstructions that appear as if they might hinder removal of the power 
supply. 

7. Locate and remove the machine screws on the outside of the case that are used to 
secure the power supply. 


8. Pull the power supply out of the case. 


Chapter 3: Peripherals 
and Connectors 


The answers to the Chapter 3 performance-based question are as follows: 
= A: VGA 


= B: USB 

a C: Audio (or 1/8”) 
» D: HDMI 

» FE: eSATA 

= F: DisplayPort 

= G: USB-C 


= H: Mini-DisplayPort or Thunderbolt 
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Display 
Port 





Mini-DP or 
Thunderbolt 





Chapter 4: Custom PC Configurations 


These are the steps to set up video streaming from one Windows 10 computer to another in 
the same house: 


Run Network and Sharing Center. 

Click the Change Advanced Sharing Settings link in the left frame. 
Expand the Home or Work configuration section. 

Click the Choose Media Streaming Options link. 

Change desired Blocked buttons to Allow. 

Open Windows Media Player and switch to Library mode, if necessary. 
Ensure that streaming is enabled. 


Start Windows Media Player on the remote system. 
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Expand the remote library that you just shared under Other Libraries to play music, 
watch videos or recorded TV, and view pictures. 
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Chapter 5: Installing and Configuring 
Printers 


Here are some example steps to take to clean an inkjet printer. The process for starting the 
cleaning cycle on inkjet printers can vary, and some printers have both quick and deep- 
clean cycles. Always check your documentation for steps specific to your printer. 


1. 


oa PF wn 


Power on the printer, and open the top cover to expose the area containing the print 
cartridges. 

Initiate a self-cleaning cycle. 

When the print head moves from its resting place, pull the AC power plug. 

Locate the sponge pads on which to apply the cleaning solution. 

Using the supplied syringe, apply the cleaning solution to the sponge pads until they are 
saturated. 

Plug the printer back into the wall outlet and turn it on. The print heads will park 
themselves. 

Turn off the printer. Let the solution sit for at least three hours. 


Power the printer back on and run three printer cleaning cycles. Print a nozzle check 
pattern (or a test page) after each cleaning cycle to monitor the cleaning progress. 


Chapter 6: Networking Fundamentals 


Possible answers for examples of physical network topologies could include bus, ring, star, 
mesh, and hybrid. The simplest topology, and the one that uses the least amount of cable, is 
a bus. It consists of a single cable that runs to every workstation, as shown in the following 


illustration. 
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In a star topology, shown in the next illustration, each network device branches off a 
central device called a hub or a switch, making it easy to add a new workstation. If the hub 
or switch fails, the entire network fails. 






























































In a physical ring topology, shown next, each computer connects to two other comput- 
ers, joining them in a circle and creating a unidirectional path where messages move from 
workstation to workstation. These are very rarely implemented. 







































































The mesh topology is the most complex topology in terms of physical design. In a mesh 
network, each device is connected to every other device, as shown in the following illustra- 
tion. This provides redundancy but costs more to implement. 
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A hybrid topology combines two or more other topologies into one network. An exam- 
ple might be a server room that has a partial mesh for redundancy but the clients are all 


connected to switches in a star. 


Chapter 7: Introduction to TCP/IP 


Here is the correct matching of protocols and services to their ports: 


















































Protocol (service) Port(s) 
FTP 20, 21 
SSH 22 
Telnet 23 
SMTP 25 

DNS 53 
DHCP 67, 68 
HTTP 80 
POP3 110 
NetBIOS/NetBT 137-139 
IMAP 143 
SNMP 161, 162 
LDAP 389 

SLP 427 
HTTPS 443 
SMB/CIFS 445 
AFP 548 
RDP 3389 
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Chapter 8: Installing Wireless 
and SOHO Networks 


Here are the steps to install a PCIe network card for a Windows 10 desktop: 


1. 
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Power off the PC. 

Remove the case and the metal or plastic blank covering the expansion slot opening. 
Insert the new expansion card into the open slot. 

Secure the expansion card with the screw provided. 

Put the case back on the computer and power it up. 


Windows Plug and Play (PnP) should recognize the NIC and install the driver auto- 
matically. It may also ask you to provide a copy of the necessary driver if it does not 
recognize the type of NIC that you have installed. 


If Windows does not start the installation routine immediately, you can add it 
manually. 


Click Start > Settings (it looks like a gear) > Devices > Bluetooth & Other Devices, 
and then click the plus sign next to Add Bluetooth or Other Device. 


That will bring up the Add a Device window. 
Click Everything Else. 
When Windows finds the NIC, choose it and continue the installation. 


After installing a NIC, you must hook the card to the network using the appropriate 
cable (if you’re using wired connections). 


Attach a patch cable to the connector on the NIC and to a port in the wall (or connec- 
tivity device), thus connecting your PC to the rest of the network. 


Chapter 9: Network Services, 
Virtualization, and Cloud Computing 


Using Lubuntu will probably feel a lot like using Windows. The interfaces have several 
similarities in terms of navigation. Here are some hints on where you can find the utilities 
you need to complete the steps in the Chapter 9 performance-based question. 


1. 


Creating a user account. You can do this by clicking the launcher (it looks like a button with 
a bird on it), about where you would expect the Start button to be in Windows, and then 
choosing System Tools > Users and Groups. Click the Add button to create a new user. 


Managing storage space. Open the launcher and choose Preferences > Disks. This one 
won't work exactly like the one in Windows because it’s on a virtual hard drive. 
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Manipulating files. Open the launcher and choose Accessories > File Manager, or you 
can choose File Manager using the icon to the right of the launcher. Once File Manager 
opens, you can right-click files to perform your tasks. 

Changing the desktop background. Right-click the desktop and choose Desktop 
Preferences. 


Configuring accessibility options. As of now, Lubuntu does not offer the types of 
accessibility options Windows offers. The developer is committed to accessibility but 
has not yet developed these capabilities. For more information, see: 


https: //wiki.ubuntu.com/Lubuntu/Developers/Accessibility 
Maybe you can help! 


Chapter 10: Understanding Laptops 


Here is how to replace the hard drive in the example laptop computer. 


1. 


Pe NM 


Turn off the computer. 

Remove the bottom of the case. 

Remove the screw holding the M.2 drive in place. 
Slide the hard drive straight out of the M.2 connector. 


Insert the new drive into the connector at the same angle as the old drive was at when 
it was unscrewed. 


Press the drive down and secure it with a screw. 


Put the bottom of the case back on. 


Chapter 11: Understanding Mobile 
Devices 


The five steps to pair a smartphone with a Bluetooth device are as follows: 


1. 
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Turn on the Bluetooth hands-free device. 

a. Enable Bluetooth. 

b. Enable pairing. 

Use your mobile device to locate and select the Bluetooth device. 

Enter the Bluetooth device’s passcode. 

Confirm pairing on the Bluetooth device by pressing a button or a combination of buttons. 


Test the connectivity. 


1534 Appendix B = Answers to Performance-Based Questions 


Chapter 12: Mobile Device Connectivity 
and Synchronization 


Here are the steps to connect an iPhone to a Wi-Fi network: 
1. Tap the Settings app on the home screen. 
2. Select Wi-Fi from the Settings menu. 


3. Swipe the Wi-Fi switch to the right to turn it on if it is off. You can also tap switches to 
toggle them to the opposite state. 


4. Inthe Choose A Network list, tap the name of the wireless network that you want to 
join. 

5. Enter the password or key for the wireless network, if you are asked for one, and then 
tap the Join button. 


If the connection succeeds, the network name will appear under the Wi-Fi switch with 
a check mark next to it. 


Chapter 13: Troubleshooting 
Methodology and Resolving Core 
Hardware Problems 


The correct order for the best practice methodology is shown here. Getting the sub-steps 
in the exact order isn’t critical, but getting the major steps in order and the right sub-steps 
under the correct major step is. 


1. Identify the problem. 


a. Question the user and identify user changes to the computer, and perform backups 
before making changes. 


b. Inquire regarding environmental or infrastructure changes. 
c. Review system and application logs. 
2. Establish a theory of probable cause (question the obvious). 


a. If necessary, conduct external or internal research based on symptoms. 
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3. Test the theory to determine cause. 
a. Once theory is confirmed, determine the next steps to resolve the problem. 
b. If theory is not confirmed, establish a new theory or escalate the problem. 
Establish a plan of action to resolve the problem and implement the solution. 
Verify full system functionality and, if applicable, implement preventive measures. 


Document findings, actions, and outcomes. 


Chapter 14: Hardware and Network 
Troubleshooting 


1. Open the Services app. One way is to click Start and type Services, and then click Ser- 
vices under Best Match. 


Find the Print Spooler service. 

Stop the spooler service. There are several ways that you can do this: 
Right-click the service and choose Stop. 

Click the Stop square above the list of services. 

Use the More Actions menu on the right. 


4. Restart the spooler by right-clicking the service and choosing Start, or by clicking the 
Start arrow above the list of services. 


5. Close the Services app. 


Chapter 15: Operating System Basics 


Given the information that you need to collect, the easiest method is to use the System 
applet from the Start menu, as shown in Figure 15.19. 


1. Right-click the Start menu. 
2. Select System. 

3. Write down all the info. 

4. Close the System applet. 
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FIGURE 15.19 System applet 
































seee 


System = 


T BF > Control Panel + system and Secumty + System y search Control Panel 


Control Pane! Home 
View basic information about your computer 












Device Manager Windows edition 
Remete settings Windows 81 Enterpnse 
System pr ©2013 Microsoft Corporation. Ali rights reserved, 
Advanced 
AMD FX(@m)-937DEight-Core Processer 442.GHe 
Installed memory RAM: 20068 
System ypes 64-bit Operating System, xG4-based processor 
Pen and Touch Limited Touch Suppert wth 8 Touch Points 
Computerrame, domain, and workgroup settings 
Computer name Clients E Change setings 
Fulleomputername Client 
Computer descriptor: 
Workgroup: WORKGROUP 
Windows activation 
Windowsisnet activated. Read the Microsoft Soitware License Tems 
Product ID: 00261-20000-00000-AAE2S Activate Window: 
Action Center 


Windows Update 








960 
Ee) = 1 4) w 








The command-line tool systeminfo.exe (System Information) presents all 


á JTE this 


FIGURE 15.20 
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information in one output, as shown in Figure 15.20. 


systeminfo.exe command-line output 


C\Windows\system32\cmd.exe 


GLIENTA 
Microsoft Windows 8.1 Enterprise 
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Chapter 16: Operating System 
Administration 


To check to see which background processes are running and the resources they are using, 
open Task Manager. Do this by pressing Ctrl+Alt+Del and selecting Task Manager. You 
can also press Ctrl+Shift+Esc. 

Once in Task Manager, click the Processes tab, as shown in Figure 16.56. If all the 
processes are not shown then check the Show Processes from All Users box, if it is not 
already checked. Click the CPU column header to sort by CPU usage. If a process is tak- 
ing up a considerable amount of CPU time, you can highlight it and click End Process to 
shut it down. You can also sort by memory used and shut down processes that look to be 
using excessive amounts of memory. Note that shutting down critical processes may cause 
Windows to lock up or otherwise not work properly, so be careful what you choose to 
terminate. Note also that right-clicking one of the processes offers the End Process Tree 
option—a useful option when the process being killed is associated with others. 


FIGURE 16.56 Windows 10 Task Manager 


i Task Manager 
File Options View 
Processes Performance App history Startup Users Details Services 


39% 33% 
Name Status CPU Memory | | Network 





> © Google Chrome (24) 
[E] Desktop Window Manager 
E] Client Server Runtime Process 
¿5 Task Manager 
Q atkexComSvc.exe (32 bit) 
"h Windows Explorer (3) 
[E] Windows Audio Device Graph Is... 
[E] System interrupts 
[E] System 
[FP CTF Loader 
Ls Service Host: Connected Device... 
L5] Service Host: Delivery Optimiz... 
Q aaHMSvc.exe (32 bit) 


ME] Antimalware Service Executable 
avi 21a ut J 





(O ) Fewer details 





1538 Appendix B = Answers to Performance-Based Questions 


Chapter 17: Working with Windows 10 


Assuming you are on the version of Windows 10 as of the writing of this book (version 
1803), the process is as follows: 


Click the Start menu. 

Click the Settings gear. 

Click Accounts. 

Click Access Work or School. 
Click Connect. 


When the Set Up a Work or School Account dialog box appears, click Join This Device 
to a Local Active Directory Domain as the alternate action, as shown in Figure 17.53. 
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FIGURE 17.53 The Set Up a Work or School Account dialog box 
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7. Enter the domain name in the dialog box, as shown in Figure 17.54. 
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FIGURE 17.54 Domain dialog box 
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8. Enter the user account on the domain that has rights to join workstations, as shown in 
Figure 17.55. 


FIGURE 17.55 Domain administrative credentials dialog box 








© Settings - oF X 
Ñ Home Access work or school 
Related settings 
Add or remove a provisioning 
Accounts Get access to resources like email, apps, and the network. package 
Connecting means your work or school might control some things 
E ouine on this device, such as which settings you can change. For specific Export your management log files 
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Set up an account for taking tests 





















© Email & app accounts 
Connect Enroll only in device management 
Q Sign-in options 
Windows Security x 
Join a domain 
| © Access work or school Join a domain pice auestiont 
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A emiyeciarzae MOERS! Enter your domain account info to verify you have 
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Domain nam} 
Z syne settings Riser caine jake Windows better 
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Password 
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9. Enter the domain user and their respective security level on this PC, as shown in Figure 
17.56. Or, you can click Skip, and the user will automatically have the same rights as 
the domain. 


FIGURE 17.56 Local administrative rights dialog box 





G Settings s o x 
Home Access work or school 
Find a setting P Related settings 
Add or remove a provisioning 
Accounts Get access to resources like email, apps, and the network. package 
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RZ Your info on this device, such as which settings you can change. For specific Export your management log files 


info about this, ask them. 
Set up an account for taking tests 











© Email & app accounts Add an account 


Q Sign-in options 
Add an account 


| © Access work or school Enter the account info for the person who'll be using this PC. If you skip this step, the person will | 
have default permissions for the domain. pet help 


A, Family & other people 


User account 
administrator Make Windows better 
bive us feedback 


Sync your settings 


Q 


Account type 


Standard User 














10. Click the Restart Now option and reboot. 


On Windows 10 versions prior to 1607, perform the following steps to join the 
computer: 


1. Click the Start menu. 
2. Click the Settings gear. 

3. Click System. 

4. Click About. 

5. Click Join a Domain. 

6. Enter the domain name in the dialog box. 

7. Enter the user account on the domain that has rights to join workstations. 


8. Enter the domain user and their respective security level on this PC. Or, you can click 
Skip, and the user will automatically have the same rights as the domain. 


9. Click the Restart Now option and reboot. 
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1. Either let the boot process fail twice (to enter into the Recovery Environment) or let it 
boot and click Restart on the lock screen while holding the Shift key. 


2. When you enter the Windows Recovery Environment, click Troubleshoot, as shown in 
Figure 18.16. 


FIGURE 18.16 Windows RE initial screen 


Choose an option 


Continue 


Exit and continue to Windows 8.1 


Troubleshoot 
Refresh or reset your PC, or use 
advanced tools 


Turn off your PC 





3. Click Refresh Your PC, as shown in Figure 18.17. 


FIGURE 18.17 Windows RE troubleshooting menu 


© Troubleshoot 


Refresh your PC 
If your PC isn’t running well, you can 
refresh it without losing your files 


Reset your PC 
If you want to remove all of your files, 
you can reset your PC completely 


Advanced options 
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4. The screen will go black, and then you will need to select an administrative account 
and enter your password, as shown in Figure 18.18. 


FIGURE 18.18 WindowsRE administrator account 


© Refresh your PC 


Hi, User 


Enter the password for this account. (Keyboard Layout: US) 


Change keyboard layout 





5. You will be prompted to enter your installation or recovery media. 


6. You will be prompted to continue with the refresh wizard and final confirmation, as 
shown in Figure 18.19 and Figure 18.20. 


FIGURE 18.19 Windows RE refresh wizard 


» Refresh your PC 


Here’s what will happen: 


* Your files and personalization settings won't change. 

+ Your PC settings will be changed back to their defaults. 

« Apps from the Windows Store will be kept. 

* Apps you installed from discs or websites will be removed. 


+ Alist of removed apps will be saved on your desktop. 
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FIGURE 18.20 Windows RE refresh confirmation 


Refresh your PC 


All ready to go 


Make sure your PC is plugged in. This will take a few minutes. 





When the operating system is finished installing from the media or recovery image, it 
will reboot several times. It will then prompt you to log in with the standard Windows 8.1 
lock screen. After you have logged in, you will notice a document on the Desktop called 
Removed Apps.html. This document details all the applications that have been removed 
during the refresh process. 


Chapter 19: Working 
with Windows 7 


To configure the IPv4 values given in Windows 7, perform the following steps: 


1. Choose Start > Control Panel > Network and Internet > Network and Sharing 
Center. 
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s bo > Control Panel > ‘ontrol Panel Items » Network and Sharing Center - 


Control Panel Home 





View your basic network information and set up connections 


Change adapter settings me oe @ See full map 


ed shari 
ae advanc ring CUENTA Network 
(This computer) 
View your active networks Connect or disconnect 





Access type: Internet 
HomeGroup: Ready to create 
Connections: @ Local Area Connection 


Network 
Home network 


Change your networking settings 


T Set up a new connection or network 
` Set up a wireless, broadband, dial-up, ad hoc, or VPN connection; or set up a router or access point. 


Connect to a network 
Connect or reconnect to a wireless, wired, dial-up, or VPN network connection. 


Choose homegroup and sharing options 


Sent Access files and printers located on other network computers, or change sharing settings. 
ee also 


HomeGroup Troubleshoot problems 
Internet Options Diagnose and repair network problems, or get troubleshooting information. 


Windows Firewall 





2. Click Change Adapter Settings. A screen similar to the one in the following figure will 
appear. 





Organize v 





Local Area Connection 


z Network 
@ Intel(R) PRO/1000 MT Network C... 





3. 


4. Click Internet Protocol Version 4 (TCP/IPv4), and then click the Properties button. 
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Right-click the connection icon and choose Properties. 


[ Networeng | 





Connect using: 





(© Intel(R) PRO/1000 MT Network Connection 





This connection uses the following items: 


QoS Packet Scheduler 

File and Printer Sharing for Microsoft Networks 
+. Intemet Protocol Version 6 (TCP/IPv6) 

M -+ Intemet Protocol Version 4 (TCP/IPv4) 

M -+ Link-Layer Topology Discovery Mapper 1/0 Driver 
M -+ Link-Layer Topology Discovery Responder 


(Goris) 


Networks 








) 


] Í Uninstall J | Properties J 








Allows your computer to access resources on a Microsoft 
network. 














General | Alternate Configuration 





IP address: 


Alte! 





You can get IP settings assigned automatically if your network supports 
this capability. Otherwise, you need to ask your network administrator 
for the appropriate IP settings. 

@ Obtain an IP address automatically 

© Use the following IP address: 


@ Obtain DNS server address automatically 
© Use the following DNS server addresses: 


Preferred DNS server: 


| ] Validate settings upon exit 
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5. On the General tab, make certain that the Obtain an IP Address Automatically radio 
button is selected. 


6. Click the Alternate Configuration tab. 


Internet Protocol Version 4 (TCP/IPv4) Properties 


General | Alternate Configuration 


If this computer is used on more than one network, enter the alternate IP 
settings below. 














5 Automatic private IP address 
©) User configured 

IP address: 

Subnet mask: 


Default gateway: 


Preferred DNS server: 


Alternate DNS server: 


Preferred WINS server: 


Alternate WINS server: 





[V] Validate settings, if changed, upon exit 











Co) (cree) 











Click the User Configured radio button. 


Enter the three values given for the IP address, the subnet mask, and the default gate- 
way, respectively. 


9. Click OK to close the dialog box. Click Close to exit the Local Area Connection Prop- 
erties dialog box. Click the close icon in the upper-right corner of the Network Con- 
nections window. 
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and Linux 


The listing you see when typing these commands will differ based on such factors as the 
system, the directory, your permissions, and the files/subdirectories present, but in all cases, 
there will be entries present with the -a option that do not appear in the display without it. 
Among those listings that now appear are a single period (representing the present direc- 
tory) and a double period (representing the parent directory), as shown in 

Figure 20.12. 
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FIGURE 20.12 An example of hidden files in various directories 
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a root@sparkle: ~ = o 


var/ 
vmlinuz@ 








If there are any files or directories starting with a period, they will now appear where 


they did not before. The easiest way to “hide” a file or directory in Linux is to start the 


name of it with a period; thus, it will not show up in a listing unless the -a option is used. 


An example of this is shown in Figure 20.13. 


FIGURE 20.13 An example of hiding files in Linux 





a root@sparkle: ~ = o x 
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Chapter 21: Scripting and Remote 
Access 


To write a PowerShell script to find other scripts in a user profile directory and all its subdi- 
rectories, you need the $home environment variable. There are a number of ways of writing 
this script to achieve the solution. The following is just one of the possibilities, using the 
parameters found on the Microsoft website: 


Get-ChildItem -Path $home\* -Include *.psl -Recurse 


PowerShell cmdlets and their associated parameters are well documented 
Qo on Microsoft's website. For more information about the get-childitem 
cmdlet, visit: 


https://docs.microsoft.com/en-us/powershell/module/microsoft 
.powershell.management/get-childitem?view=powershell-6 


To learn about other PowerShell cmdlets, visit: 


https://docs.microsoft.com/en-us/powershell/scripting/ 
overview?view=powershell-6 


Chapter 22: Security Concepts 


In order to install wireless, you need to perform the following tasks: 
Define the coverage area requirements. 

Identify the wireless security protocols required. 

Perform a site survey for the required coverage. 

Purchase and install the wireless equipment. 


Configure the appropriate security protocols required. 


on Pf eo nN = 


Perform a site survey for adjustments and to validate design. 


Chapter 24: Troubleshooting Operating Systems and Security 1549 


Chapter 23: Securing Operating 
Systems 


The following explains how you would achieve the goal: 


1. 
2. 
3. 


Create three folders on the local filesystem of the server: Sales, Marketing and R&D. 
Set NTFS permissions on all folders for everyone and the Modify permission. 
Set the Sales folder to have the following share permissions: 

= Sales: Change 

= Marketing: Read 

Set the Marketing folder to have the following share permissions: 

= Marketing: Change 

= Sales: Read 

Set the R&D folder to have the following share permissions: 

= R&D: Change 

a Marketing: Read 
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Systems and Security 


> 2S N a 


ou 


Identify and research malware symptoms. 
Quarantine the infected systems. 

Disable System Restore (in Windows). 
Remediate the infected systems. 

a. Update the anti-malware software. 


b. Scan the operating system and use removal techniques, such as booting into Safe 
Mode and using the Windows Preinstallation Environment. 


Schedule future anti-malware scans and run updates. 
Enable System Restore and create a restore point (in Windows). 


Educate the end user. 
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Chapter 25: Documentation and 
Professionalism 


Pe hos 


Figure 25.15. 


5. On the confirmation box, select Restore again, as shown in Figure 25.16. 


Browse to the folder containing the overwritten file. 
Right-click the file and select Properties. 


Select the Previous Versions tab. 


FIGURE 25.15 The previous version of a file 


RIEF! 


Share 


View 


4 L > Network > server! > share 


wt Quick access 
E Desktop 
& Downloads 
E] Documents 
=) Pictures 
Ð Music 

H Videos 


@ OneDrive 
E This PC 


cÈ Network 


3items 1 item selected 13 bytes 


*% % % 


a 


Name Date modified Type 


[C] Important Docu 
[E] Important Docum 





Important Document1.txt Properties 
B Important Docum General Security Details Previous Versions 


Pa i Previous versions come from File History or from 
} restore points. 





File versions: 
Name Date modified 
v Today (2) 
[E] Important Documentl.... 1/31/2019 6:35 PM 
[E] Important Documentl.... 1/31/2019 6:29 PM 

















Find the latest version of the file and click the Restore button, as shown in 


Search share 


@ 
p 
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FIGURE 25.16 Confirming a restore from a previous version 


Bl A H =I share O x 
Home Share View (2) 


Gy B > Network > server] > share vod Search share 9 
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Name Date modified Type Size 
Jt Quick access 
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4 Downloads Á 
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[E] Documents Previous Versions 


*%* % *% 


=] Pictures Ce ) ` 
D Musi Are you sure you want to restore the previous 
eg version of “Important Document! txt" from 
E Videos File version TOday, January 31, 2019, 8 minutes ago? 
fa OneDrive d This will replace the current version of this file on the network 
E This PC and cannot be undone. 
= ms v Tod 
È Network > 


3items 1item selected 13 bytes 








OK Cancel Apply 
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Here are some steps to take to look for trip hazards and eliminate them: 
1. Walk around the server room and count how many cables are lying on the floor. 


2. Walk around the client areas and see how many cables are lying on the floor or are 
exposed underneath cubicles. 


3. Devise a plan to secure the cables and prevent them from being hazards. For example, 
purchase and install floor guards, use cable ties, or install conduits, as necessary, to 
secure all loose cables. 
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Battery Act, 1450 
BCD. See Boot Configuration 
Data (BCD) 
bededit utility, 1320 
BDS (BeiDou Navigation Satellite 
System), 618 
beamforming, 412 
bearer (B) channel in 
ISDN, 434 
beep codes in POST routines, 
727 
behavior, 1400 
accountability, 1401 
confidentiality, 1403 
flexibility, 1402-1403 
privacy, 1405-1406 
punctuality, 1400-1401 
respect, 1403-1404 
BeiDou Navigation Satellite 
System (BDS), 618 
Below Normal process priority, 
920 
belts in inkjet printers, 242-243, 
243 
beta operating systems, 838 
bias voltage in laser printers, 257 
bidirectional links, 16 
biometrics, 1165-1166, 1166 
BIOS. See Basic Input/Output 
System (BIOS) 
BitLocker 
overview, 1263, 1264 
Windows 7, 1046, 1048 
Windows 10, 957, 958 
BitLocker Drive Encryption 
applet, 900, 900 
BitLocker to Go, 1263 
black lines in laser printers, 
786-787 
black pages in laser printers, 785 
black screens, 1301, 1302 
BlackBerry technology, 611, 611, 
614-615 
blackouts, 1438 
blank pages with laser printers, 
784-785 
blanks for slots, 723 
blockers for pop-ups, 1331 
Blu-ray Disc ROMs 
overview, 98-100 
recordable, 103, 103 
Blue Screen of Death (BSOD), 
731, 1300, 1301 


Bluetooth 
connectivity, 1348-1349, 
1348 
devices, 417-418 
headsets, 632, 633 
mobile devices, 629 
overview, 415, 666-667 
pairing 
Android phones, 667-673, 
667-672 
iPhones, 673-675, 673-674 
unintended, 1358 
PANs, 315, 315 
printers, 269 
USB adapters, 315, 315 
versions, 415-417 
BNC connectors, 340, 340 
bonding in ISDN, 434 
Bonjour printers, 286-287 
Boot Camp utility, 1109 
Boot Configuration Data (BCD) 
boot failures, 1295-1296 
ESP partition for, 970 
Windows 7, 1058 
Windows 8, 1033 
Windows 10, 970, 997 
boot methods and options 
Windows 7, 1055-1056 
Windows 8, 1032-1034, 1034 
Windows 10, 994-995 
boot order, 1319-1320, 1319-1320 
boot process 
BIOS, 30, 30 
checking, 728, 729 
rebooting, 1310 
safe mode, 1323-1327, 1324, 
1326 
slow, 1306-1308, 1307-1308 
troubleshooting, 750, 
1294-1298, 1297-1298 
VGA mode, 756 
Windows 7, 1056-1058, 
1057-1058 
Windows 10, 995-999, 996, 
998 
Boot tab in System 
Configuration, 931, 931 
BOOTMGR (Windows Boot 
Manager) 
boot failures, 1295-1296 
Windows 7, 1057-1058 
Windows 8, 1033 
Windows 10, 997 
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borders for Windows, 857 
botnets, 1196, 1203 
Bourne Again Shell (Bash), 
1103 
Bourne shell, 1142 
Box service, 516 
BPaaS (Business Processes as a 
Service), 514 
BR (Basic Rate) in Bluetooth, 416 
branch logic in scripting, 1134 
BranchCache feature, 954 
BRI (basic rate interface) in 
ISDN, 434 
bridges in networking, 352-353 
brightness 
component video, 159 
projection systems, 173-174 
bring your own device (BYOD) 
policy, 1186, 1274 
broad network access for 
cloud, 515 
broadcast IP addresses, 378 
broadcasts 
hubs, 351 
SSIDs, 1217-1218 
VLANs, 392 
brownouts, 1441 
browser redirection, 1331 
brute-force attacks, 1194 
BSOD (Blue Screen of Death), 
731, 1300, 1301 
bubble-jet printers, 240 
buffers in inkjet printers, 248 
bulbs in projection systems, 174 
burn-in, monitor, 757 
burning smells and smoke, 
724-725 
bus architecture, 10 
bus topology, 325, 325 
Business Processes as a Service 
(BPaaS), 514 
button cell batteries, 1450 
buttons, mouse, 184 
BYOD (bring your own device) 
policy, 1186, 1274 
bytecode, 1130 
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CaaS (Communications as a 
Service), 514 

cable locks, 591-592, 591-592, 
1169, 1169-1170 


cable modems 
installing, 454-455 
networking, 351 
SOHO networks, 432-433 
cable strippers, 803 
cable testers, 804, 805 
cable ties, 1433, 1433 
cables and connectors 
audio, 157-158, 158, 
179-180, 179 
coaxial cable, 338-341, 338, 
340-341 
exam essentials, 195-196 
fiber-optic cable, 346-349, 
346, 348-349 
FireWire, 157 
floor cable guards, 1432 
hard drives, 141-148, 
142-147 
multipurpose, 148-156, 
149-155 
onboard disk drives, 27-29, 
28 
overview, 133, 337 
performance-based question, 
201, 201 
performance-based question 
answer, 1527, 1528 
power, 26, 27, 60-61, 60-61 
power supplies, 116-122, 
116-122 
review questions, 197-200 
review questions answers, 
1476-1477 
serial ports, 156-157, 156-157 
SOHO networks, 432-433, 
453-454, 453-454 
summary, 194-195 
tools, 803-807, 803-807 
troubleshooting, 730 
twisted-pair cable, 342-346, 
342, 344-346 
video, 133-141, 134-141, 
159-161, 160 
cache memory, 20-21, 21 
caching printing, 292 
CACs (Common Access Cards), 
1168, 1168 
CAD/CAM workstations, 
207-210, 209 
calibration 
batteries, 578 
inkjet printers, 247 
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caliper of printer paper, 293 
cameras 
configuration, 475-476 
optical glasses, 177-178 
unauthorized activation, 
1359-1360 
campus licenses, 1460 
capacitive touch screen 
technology, 606, 608 
capacitors, distended, 730, 731 
captive portals, 1175 
card readers, 108, 109 
carriage belts in inkjet printers, 
243, 243 
Carrier Sense Multiple Access/ 
Collision Avoidance 
(CSMA/CA), 407 
Carrier Sense Multiple Access 
with Collision Detection 
(CSMA/CD), 332, 407 
cartridges 
disposal procedures, 1452 
inkjet printers, 241-242 
laser printers, 249-251, 250, 
784 
refilling, 294-295 
CAs (certificate authorities), 
1178, 1264 
Cascading Style Sheets (CSS), 
1145 
cases 
laptops, 549-550 
safety, 1419 
cat command, 1111 
Category cables, 343-344 
cathode-ray tube (CRT) 
monitors, 163, 170, 
1418-1419 
CCDs (charge-coupled devices), 
191 
CCFLs (cold cathode fluorescent 
lamps), 581 
CCMP (Counter Mode CBC- 
MAC Protocol), 463 
cd command, 902-903, 1111, 
1116 
CD-ROMs 
overview, 97 
recordable, 101, 101 
CDFS (Compact Disc File 
System), 939 
CDMA (code-division multiple 
access), 418 
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CEC (Consumer Electronics 
Control) feature, 137 
cellular data connections 
acronyms, 652-653, 653-654 
airplane mode, 648-650, 
649-650 
disabling, 658-662, 659-662 
mobile hotspots, 645-648, 
646-648 
overview, 645 
updates, 651-652 
cellular for SOHO networks, 
438-439, 439 
cellular networking standards 
fifth generation, 419-421 
fourth generation, 419 
overview, 418 
third generation, 418-419 
central processing units (CPUs) 
32- and 64-bit, 43 
cooling, 63-68 
exam essentials, 68-69 
fans, 59 
heat sinks, 587-588, 588 
hyperthreading, 39-40, 40 
identifying, 41, 41 
integrated GPUs, 44 
laptops, 557 
matching, 42-43 
memory for, 54 
multicore, 39 
NAS, 222 
overclocking, 722 
overview, 22-25, 22-23, 
38-39, 39 
performance, 1284 
power connectors, 119 
review questions, 70-73 
review questions answers, 
1472-1473 
speed, 42, 557 
summary, 68 
throttling, 41-42 
troubleshooting, 722-726, 
730 
virtualization support, 43, 44 
virtualization workstations, 
215-216 
Windows 10 applications, 999 
centralized processing, 313 
CERT organization, 1332 
certificate authorities (CAs), 
1178, 1264 


certificates 
invalid, 1337, 1338 
overview, 1178-1179, 1178 
certificates of destruction, 1215 
CF (CompactFlash) cards, 107 
chain of custody in incident 
response, 1456-1457 
change boards, 1383-1384 
change management 
change boards, 1383-1384 
documented business 
processes, 1380 
end-user acceptance, 1383 
overview, 1379-1380 
plans, 1382-1383 
purpose, 1380-1381 
risk analysis, 1381-1382 
rollback plans, 1382-1383 
scope, 1381 
Change permissions, 1250 
Change Type option for user 
profiles, 889 
channels 
audio, 211 
ISDN, 434 
memory, 47-48 
networks, 407, 409-412, 409 
Windows 10, 966 
wireless, 464-465, 465 
characters per second (cps) for 
daisy-wheel printers, 239 
charge-coupled devices (CCDs), 
191 
chargers for mobile devices, 633, 
634 
charging step in laser printers, 
256, 256 
Charms feature, 848, 849, 1019, 
1022, 1023 
chemical solvents and cans 
disposal procedures, 
1452-1453 
Chief Information Officers 
(CIOs) in incident 
documentation, 1375 
chip readers, 188-190, 189 
chips 
chip creep, 723 
reseating, 717 
chipsets 
cooling, 63 
fans, 59 
overview, 11-13, 12-13 
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chkdsk command, 907 
chmod command, 1117-1118 
chown command, 1118 
Chrome operating system, 837 
Chromecast, 1349 
CHS (cylinders/heads/sectors) in 
hard drives, 89-90 
CIDR (classless inter-domain 
routing), 381-383 
CIFS (Common Internet File 
System), 368 
cipher locks, 1164 
circuit-level proxies, 1174 
clamshell cases, 549 
classes in IP addressing, 
379-381 
classless inter-domain routing 
(CIDR), 381-383 
clean installs for Windows 8, 
1025 
cleaning printers, 296-297 
cleaning step 
inkjet printers, 248 
laser printers, 258-259, 259 
cleaning systems, 1442-1443 
clicks, mouse, 845 
client computers for 
workstations, 319 
client-server resource model, 
323-324, 323 
client-side virtualization 
requirements 
emulators, 526-527 
Lubuntu, 531-533, 531-533 
overview, 524 
resources, 524-526, 525-526 
security, 527-528 
setting up, 527-528 
VirtualBox, 528-531, 529-530 
clients, syslog, 504-505 
clock speed of laptop CPUs, 557 
Close button in Windows, 856 
closed source code for operating 
systems, 833 
cloud-based network controllers, 
355 
cloud-based operating 
systems, 835 
cloud computing 
applications, 519, 519 
cloud types, 514-515 
concepts, 511-512 
disk-to-cloud backups, 1389 
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exam essentials, 534—535 
features, 515 
iCloud. See iCloud 
overview, 511 
printing, 287-292, 288-292 
review questions, 536-539 
review questions answers, 
1486-1488 
services, 512-514, 513, 
520-521, 520 
storage, 516-517, 517-518 
summary, 533-534 
CLR (Common Language 
Runtime), 1136 
clusters in hard drives, 89 
cmdlets, 1137 
CMOS and CMOS battery 
BIOS settings, 33-35, 35 
failures, 728-729 
removing, 590, 590 
CMYK inks, 241 
CNAME records in DNS, 497 
CNC (computer numerical 
control) systems, 207 
Coarse Acquisition (C/A) code in 
GPS systems, 618-619 
coaxial cable 
connector types, 339-341, 
340-341 
overview, 338, 338 
specifications, 338-339 
code-division multiple access 
(CDMA), 418 
cold cathode fluorescent lamps 
(CCFLs), 581 
cold swappable devices, 110 
collapsing folders, 864 
collision detection in CSMA/ 
CD3332 
color 
HDMI, 138 
incorrect, 757 
inkjet printers, 777-778 
plastic filaments, 265 
Colors section in Display 
Settings, 846 
command-line tools 
cd, md, and rd, 902-903 
chkdsk, 907 
copy, 904 
dir, 908 
diskpart, 906 
dism, 909 


format, 903-904 
gpresult, 908 
gpupdate, 908 
help, 911 
ipconfig, 909 
net, 909 
netstat, 911 
overview, 901 
ping, 910 
privileges, 912, 912 
robocopy, 905 
sfc, 906-907 
shutdown, 901 
taskkill, 901 
tracert, 910-911 
xcopy, 904-905 
Command timeout attribute, 752 
comments in scripting, 1132 
Common Access Cards (CACs), 
1168, 1168 
Common Internet File System 
(CIES), 368 
Common Language Runtime 
(CLR), 1136 
communications 
customers, 1396-1400 
expansion cards, 80-82, 80-82 
networking, 329-332, 331 
Communications as a Service 
(CaaS), 514 
community clouds, 514 
Comodo Secure DNS service, 1212 
Compact Disc File System 
(CDFS), 939 
CompactFlash (CF) cards, 107 
companion viruses, 1201 
compatibility 
hardware, 839-841, 968 
network interface cards, 333 
printers, 281 
Windows 7, 1049-1050 
Windows 8, 1026-1027, 1027 
Compatibility Mode in Windows 
7, 1047 
compiled machine code, 
1128-1129, 1129 
complementary metal oxide 
semiconductors (CMOS). See 
CMOS and CMOS battery 
compliance policy, 1376-1378, 
1377 
Component Object Model 
(COM), 1141 


1559 


Component Object Model 
(COM+) applications, 1070 
Component Services 
overview, 927, 927 
Windows 7, 1070, 1070 
component video, 159-161 
composite video, 161 
composition of printer 
paper, 293 
compressed air, 1431, 1442-1443 
Compression attribute, 
1254-1255 
Compute Unified Device 
Architecture (CUDA), 211 
computer components, safety 
issues, 1417-1420 
Computer icon in Windows, 
853-854 
Computer Management, 
921-923, 922-923 
Computer Name tab in System 
applet, 885 
computer names in Windows 10 
installation, 985, 986 
computer numerical control 
(CNC) systems, 207 
concurrent users, 1459 
conditions in Task Scheduler, 925 
confidentiality, 1403 
conflicts in IP addresses, 800 
Connect to a workplace 
option, 1082 
Connect to the Internet 
option, 1082 
connection-oriented 
protocols, 374 
connectionless protocols, 374 
connections 
mobile devices, 626-632, 
627-628, 631-632 
SOHO networks. See small 
office, home office 
(SOHO) networks 
connectivity 
Bluetooth, 1348-1349, 1348 
Internet, 1333 
laser printers, 781-782 
mobile devices. See mobile 
devices 
networking, 350-354, 352, 
798-802 
Windows, 1289-1294, 
1290-1293 
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connectors. See cables and 
connectors 
console scripts, 1141 
consumables for printers, 
293-295 
Consumer Electronics Control 
(CEC) feature, 137 
content 
filtering in SOHO networks, 
1224, 1224 
prohibited, 1453-1454 
contention-based access 
methods, 332 
Control Box in Windows, 856, 
856 
control circuits in inkjet 
printers, 247 
Control Panel 
Action Center applet, 
893, 893 
applet overview, 878 
BitLocker Drive Encryption 
applet, 900, 900 
Credential Manager applet, 
895, 895 
Device Manager applet, 899, 
899 
Devices and Printers applet, 
896, 897 
Display Settings applet, 
891-892, 892 
Folder Options applet, 
883-884, 883 
HomeGroup applet, 896 
Internet Options applet, 
882, 882 
Network and Sharing Center 
applet, 898, 899 
overview, 877-880, 
879-880 
Power Options applet, 894, 
895 
Programs and Features 
applet, 895-896, 896 
Region applet, 881, 881-882 
Sound applet, 896, 897 
Sync Center applet, 900, 900 
System applet, 884-891, 
885-891 
Troubleshooting applet, 
898, 898 
User Accounts applet, 892, 
893 
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HomeGroup, 1073-1075, 
1073-1075 
RemoteApp and Desktop 
Connections, 
1075-1076, 1076 
Troubleshooting, 
1076-1078, 
1077-1078 
User Account Control, 
1078-1080, 
1079-1081 
Windows Firewall applet, 
894, 894 
control panel LEDs in laser 
printers, 792 
controllers in hard drives, 85 
cooling 
3D printers, 264 
chipsets, 63 
CPUs, 63-68 
fans, 59-62, 60-62 
gaming PCs, 219, 220 
hard drives, 63, 63 
memory, 62-63 
overview, 59 
projection systems, 174-175 
troubleshooting, 733-734 
cooperative multitasking, 833 
coordinators in Zigbee 
technology, 421 
copy backups, 1390 
copy command, 904 
copying 
folders and files, 1252-1253 
user profiles, 889 
cordless phones, electromagnetic 
interference from, 1426 
core cmdlets, 1137 
corona rollers in laser printers, 
253 
corona wires in laser printers, 
253 
corporate licenses, 1460 
Cortana personal desktop 
assistant, 850-851, 850, 
956, 956 
cost 
hotspots, 632 
laptops vs desktops, 544 
Counter Mode CBC-MAC 
Protocol (CCMP), 463 
cp command, 1119 


cps (characters per second) for 
daisy-wheel printers, 239 
CPUs. See central processing 
units (CPUs) 
crackers, password, 1194 
crash logs, 1355 
crashes, application, 1299, 
1299-1300, 1334 
Credential Manager applet, 
895, 895 
credentials in Windows 10, 1005, 
1005 
credit card readers, 634, 635 
creeping chips, 723 
crimpers, 803, 803 
critical application backups, 
1388 
CrossFire technology, 209 
crossover cable, 345 
CRT (cathode-ray tube) 
monitors, 163, 170, 
1418-1419 
CryptoLocker, 1197, 1197 
CrystalDiskInfo utility, 751 
CSMA/ CA (Carrier Sense 
Multiple Access/Collision 
Avoidance), 407 
CSMA/CD (Carrier Sense 
Multiple Access with 
Collision Detection), 
332, 407 
CSS (Cascading Style Sheets), 
1145 
CUDA (Compute Unified Device 
Architecture), 211 
current directory in Linux, 
1115-1116 
current operating systems, 838 
Current pending sector 
count, 753 
current vs. voltage, 1418 
custom configurations 
exam essentials, 229 
gaming PCs, 217-220, 220 
overview, 205-206 
performance-based question, 
234 
performance-based question 
answer, 1528 
review questions, 230-233 
review questions answers, 
1478-1479 
summary, 228-229 
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thick clients, 206-207 
thin clients, 221-228, 222, 
224-227 
workstations 
audio/video editing, 
210-214, 212 
graphic and CAD/CAM, 
207-210, 209 
virtualization, 214-217 
Custom option for Windows 10 
installation, 975 
customers 
communicating with, 
1396-1400 
in troubleshooting process, 
711-713 
cylinders in hard drives, 88-90, 88 
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D channel in ISDN, 434 

D-subminiature connectors, 
134-135, 135 

Daas (Data as a Service), 514 

DaaS (Desktop as a Service), 514 

daisy-wheel printers, 238-239, 
238 

damage, troubleshooting, 726 

data 

backups. See backups 
encryption, 1245-1246, 1246 

Data as a Service (DaaS), 514 

data at rest concept, 1246 

data in transit concept, 1246 

data in use concept, 1245-1246 

Data Link layer in OSI model, 
330 

data loss prevention (DLP), 1176 

Data Over Cable Service 
Interface Specification 
(DOCSIS), 432 

data privacy concerns in printing, 
292 

data protection officers (DPOs), 
1462 

data rates for optical drives, 
99-100 

Data Sources in Windows 7, 
1071, 1071 

data speeds for mobile devices, 
1356-1357 

data transmission over limit in 
mobile devices, 1358-1359 


Date & Time dialog box, 986, 987 
Date and Time applet, 879, 880 
date codes for Windows 10 
versions, 967 
daughterboards, 554, 555 
DB-9 serial connectors, 157, 157 
DB-9 serial ports, 134 
DB-15 connectors, 339 
DBAN utility, 1214 
DC (direct current), 114 
DC adapters, 579 
DC power supply in laser 
printers, 252 
DDoS (distributed denial-of- 
service) attacks 
overview, 1192, 1192 
stateful inspection firewalls, 
1175 
DDR (double data rate) SDRAM, 
51-53 
dead pixels, 757 
decryption issues in email, 769, 
1351 
dedicated servers 
description, 488 
networking, 318 
default allow for firewalls, 469 
default deny for firewalls, 355, 469 
default gateways in IP addresses, 
379 
defaults for usernames and 
passwords, 1216, 1221, 
1235, 1239-1240 
definitions database for antivirus 
software, 1204, 1204 
defragmentation, 945, 1099, 
1309-1310, 1309 
degaussing process 
drive destruction, 1215 
monitors, 757 
deleting 
accounts, 1242-1243 
objects, 865 
profiles, 889, 1328, 1328 
demilitarized zones (DM Zs) 
firewalls, 355, 468, 468 
servers, 488-489, 489 
demineralized water, 1442 
denatured isopropyl alcohol, 1442 
denial-of-service (DoS) attacks, 
1190 
amplified, 1191, 1191 
distributed, 1192, 1192 
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reflective, 1190, 1190 
stateful inspection firewalls, 
1175 
Deny permissions, 1250-1251 
Department of Defense (DoD) 
model, 366, 366 
Desktop as a Service (DaaS), 514 
desktops 
vs. laptops, 544-545 
macOS, 1104, 1104 
Windows 10, 844-846, 
844-845 
destruction and disposal methods 
drive formatting, 1212-1213 
hard drive sanitation, 
1213-1214 
overview, 1212 
physical destruction, 
1214-1215 
Details tab in Task Manager, 
919-920, 919, 1286, 1287 
developing step in laser printers, 
257, 257 
Device Manager 
Computer Management, 923 
network interface cards, 336, 
336 
overview, 899, 899 
Devices and Printers applet, 
896, 897 
DFS (dynamic frequency 
selection), 411-412 
DHCP. See Dynamic Host 
Configuration Protocol 
(DHCP) 
dial-up for SOHO networks, 
427-428 
dictionary attacks, 1194 
differential backups, 1390 
digital assistants, 477 
digital rights management 
(DRM), 1459 
digital subscriber line (DSL) 
installing, 454-455 
modems, 351 
overview, 428-432, 428-429 
Digital Visual Interface (DVI), 
135-137, 136-137 
digitizers for displays, 583, 1354 
dim displays, 1347 
dim images, 757 
DIMMs (dual in-line memory 
modules), 18 
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DIP (dual in-line package) 
CPUs, 38 
dir command, 908 
direct current (DC), 114 
direct-sequence spread spectrum 
(DSSS), 408 
DirectAccess feature, 954 
directories. See also folders 
command-line tools, 902-903 
Linux, 1115-1117, 1119-1120 
permissions, 1179-1180 
DirectX Diagnostic tool, 934, 
935 
disabling 
accounts, 1244, 1244 
applications, 1322-1323, 
1323 
AutoRun, 1245 
cellular data connections, 
658-662, 659-662 
guest accounts, 1240, 1240 
permission inheritance, 1258, 
1258 
ports, 1222 
services, 1321, 1321-1322 
SSID broadcasts, 1218 
System Restore, 1341, 1342 
touchpads, 572, 572 
Windows Firewall, 1064 
disappearing files, 1336-1337 
disassembling and reassembling 
laptops, 545-548, 547-548 
disaster prevention and recovery, 
1384 
account recovery, 1393-1395 
backups, 1384-1390, 
1385-1387 
power generators, 1391 
surge protection, 1392-1393, 
1392-1393 
uninterruptable power 
supplies, 1390-1391 
discharge pens, 1418 
DISCOVER broadcasts in 
DHCP, 494-495 
Disk Cleanup utility, 1310 
Disk Defragmenter, 945 
Disk Management console, 
940-944, 941, 944 
disk mirroring, 103 
disk striping, 103 
disk-to-cloud backups, 1389 
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disk-to-disk backups, 1389 
disk-to-tape backups, 1389 
diskpart command, 906 
disks. See hard drives 
dism command, 909 
Display Settings applet, 845-846, 
845, 891-892, 892 
DisplayPort interface, 140-141, 
141 
displays 
dim, 1347 
disposal procedures, 1451 
laptops. See laptops 
Windows 10 applications, 
1000 
disposal procedures 
batteries, 1449-1451 
chemical solvents and cans, 
1452-1453 
mobile devices, 1452 
overview, 1448-1449 
printer toner, 1452 
distended capacitors, 730, 731 
distorted geometry, 757-758 
distorted images, 757 
distributed denial-of-service 
(DDoS) attacks 
overview, 1192, 1192 
stateful inspection firewalls, 
1175 
distributed processing, 313 
DIX connectors, 339 
DLP (data loss prevention), 1176 
DMZs (demilitarized zones) 
firewalls, 355, 468, 468 
servers, 488-489, 489 
DNAT (Dynamic Network 
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snap, 1048 
Snap Assist, 963, 964 
snapshots, 1102 
SNEP (Simple NDEF Exchange 
Protocol), 424, 630 
SOA records in DNS, 497 
social engineering attacks, 
1187-1188 
sockets, CPU, 22-25, 22-23 
SODIMMs (small outline 
DIMMs) 
description, 18, 19 
laptops, 558-559, 558 
overview, 58, 58 
Software as a Service (SaaS), 513 
Software Asset Management, 
1460 
Software Assurance contract, 
1043 
software commands in 
troubleshooting, 807-819, 
808, 810-811, 813-815, 
817-819 
software licenses, 1458-1461, 
1460 
software resets, 1350 
software sources, network 
policies for, 1186 
software threats 
botnets, 1203 
keyloggers, 1198 
mitigating 
anti-malware software, 
1204-1205, 1205 
antivirus software, 
1203-1204, 1204 
backups and restores, 
1207-1208, 
1207-1208 
end user education, 
1208-1209 
filtered DNS, 1211-1212 
firewalls, 1209-1211, 
1209-1211 
overview, 1203 
Recovery Console, 1205, 
1206 
overview, 1196-1197 
ransomware, 1197, 1197 
rootkits, 1198 
spyware, 1203 


Trojans, 1197-1198 
viruses, 1198-1202, 
1200-1201 
worms, 1203 
SOHO networks. See small 
office, home office (SOHO) 
networks 
solenoids in daisy-wheel printers, 
238 
solid-state drives (SSDs) 
laptops, 561-565, 562-564 
mobile devices, 606 
overview, 92-96, 95-96 
sanitizing, 1214 
Windows 8 boots, 1034, 1034 
solid-state hybrid drives (SSHDs) 
description, 93 
graphic workstations, 208 
“something you are” in 
authentication, 1161 
“something you do” in 
authentication, 1162 
“something you have” in 
authentication, 1161 
“something you know” in 
authentication, 1161 
“somewhere you are” in 
authentication, 1161 
sound. See audio 
Sound applet, 896, 897 
sound cards, 79, 79 
source code for operating 
systems, 833 
Southbridge chipsets, 12-13, 
12-13 
SOX (Sarbanes-Oxley Act), 1376 
space parity memory, 46 
spam, 1336 
spam over instant messaging 
(SPIM), 1336 
spam over Internet telephony 
(SPIT), 1336 
Spanning Tree Protocol (STP), 
392 
speakers 
configuration, 477 
laptops, 550-553, 551-552 
mobile devices, 633, 1353, 
1353 
troubleshooting, 770 
spear phishing, 1189 
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special thermal paper, 260 

specialize pass in Windows 10 
installation, 978 

specialized audio in editing 
workstations, 211-212, 
212 

speed 
CPUs, 42, 557 
daisy-wheel printers, 239 
FSB, 42, 51-53 
hard drives, 90-91 
hotspots, 632 
mobile device data, 

1356-1357 
optical drives, 99-100 
Windows 7 NICs, 1088 
SpeedFan utility, 751 
SPIM (spam over instant 
messaging), 1336 
SPIT (spam over Internet 
telephony), 1336 
splitters 
coaxial cable, 341, 341 
DSL, 428, 429 
spoofing attacks, 1195-1196, 
1195 
Spotlight feature 
macOS, 1105, 1106 
Windows 10, 960, 961 
SPS (Standard Positioning 
Service), 618 

spyware, 1203 

SRAM (static random access 
memory), 55 

SSDs. See solid-state drives 
(SSDs) 

SSH (Secure Shell) 
description, 373 
overview, 1148-1149, 1148 

SSHDs (solid-state hybrid drives) 
description, 93 
graphic workstations, 208 

SSIDs. See service-set identifiers 

(SSIDs) 

SSL (Secure Sockets Layer) 
email, 683 
HTTPS, 370 

SSO (single sign-on) 
overview, 1260-1261, 1261 
Windows 10, 1008-1009, 
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stabilizer bars in inkjet printers, 
243, 243 
stakeholders in incident 
documentation, 1375 
Standard cables, 137-138 
standard drive formatting, 
1212-1213 
standard peripheral power 
connectors, 117, 117 
Standard Positioning Service 
(SPS), 618 
standard privileges for 
command-line tools, 912 
standard users in Windows, 
1248, 1261-1262 
standby UPS, 1391 
star topology, 326, 326 
Start menu 
Windows, 848-852, 849-850 
Windows 10, 959, 960 
Start screen in Windows 8, 843, 
1019, 1020, 1022-1024, 
1023-1024 
Starter edition in Windows 7, 
1044 
STARTTLS, 683-684 
Startup and Recovery options 
System applet, 889, 889 
Windows 7, 1057, 1057 
Windows 10, 995, 996 
Startup Repair option, 1298 
Startup Settings menu, 1298, 
1298 
Startup tab 
System Configuration, 932, 
932 
Task Manager, 921, 1322- 
1323, 1323 
stateful inspection firewalls, 1175 
states for windows, 858 
static-charge eliminator strips in 
laser printers, 253, 784 
static IP addresses 
wired SOHO, 1222 
wireless SOHO, 1219 
static IP addressing, 384 
static random access memory 
(SRAM), 55 
status lights for troubleshooting, 
725 
stealth viruses, 1202 
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stepper motors 


impact printers, 775 

inkjet printers, 242-243, 243, 
779 

laser printers, 253 


storage and storage devices, 84 


backups, 1097-1099 
cloud computing, 516-517, 
517-518 
exam essentials, 124-125 
hard drive systems, 84-91, 
85-86, 88-89, 92 
installing, 112-113 
laptops 
hard drives, 561-565, 
562-564 
optical drives, 565-566, 
565 
mobile devices, 606-607 
optical drives, 97-103, 98, 
101-103 
overview, 193-194, 194 
removable storage and media, 
105-110, 107-109 
removing, 111-112 
review questions, 126-129 
review questions answers, 
1474-1475 
solid-state drives, 92-96, 
95-96 
summary, 124 
troubleshooting 
hard drives, 749-754, 
752-753 
optical drives, 755-756 
overview, 749 
RAID, 754-755 
Windows 10 applications, 
999-1000 


storage area networks (SANs), 


490-491 


storage spaces, 943-944, 944 
Store Password Using Reversible 


Encryption policy, 1068 


STP (shielded twisted-pair) cable, 


342, 342 


STP (Spanning Tree Protocol), 
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straight tip (ST) fiber-optic 


connectors, 348, 348 


strings in scripting, 1130 
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stripe sets with parity, 104 

striped disks, 103, 943 

strong passwords, 1177-1178, 
1233-1234 

Stuxnet worm, 1193 


stylus-based signature pads, 185, 


186 
subdomains in DNS, 497, 498 
subnet masks for IP addresses 
CIDR, 381-383 
description, 378 
private, 386 
Windows 7, 1086 
subscriber connector (SC), 349, 
349 


subscriber identity module (SIM) 


OS, 652 
summaries in incident 
documentation, 1375 
Summary tab in iTunes, 690 
super scope in VLANs, 394 
surge protection, 1392-1393, 
1392-1393, 1439, 1439 
swap files 
incident response, 1455 
purpose, 19 
swap partitions, 940 
swappable devices, 110 
swipe locks, 1266 
switches 
installing, 455 
KVM, 192-193, 193 
networking, 353-354 


swollen batteries, 760-761, 761 


symmetric DSL (SDSL), 430 
Sync Center applet, 900, 900 
synchronization 
cloud, 516 
mobile devices. See mobile 
devices 
software requirements, 
696-699 


synchronous DRAM (SDRAM), 
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syslog servers, 504-506, 506 
System applet 
Advanced tab, 886-890, 
886-889 
Computer Name tab, 885 
Hardware tab, 885-886 
overview, 884, 885 


Remote tab, 891, 891 
System Protection tab, 890, 
890 
System attribute, 1253 
system BIOS in laptops, 590-591 
system boards. See motherboards 
System Center Configuration 
Manager (SCCM), 1002, 
1196 
system clock, 42 
System Configuration tool 
bootup problems, 1307, 1307 
services, 1321, 1321 
Windows, 931-936, 931-937 
Windows 7, 1069, 1070 
Windows 10, 995, 996 
System event log, 1338 
System Failure option, 890 
system fans in laptops, 586-587, 
587 
System File Checker (SFC), 
906-907, 1337 
system files 
boot failures, 1295 
overview, 1259, 1259 
renamed, 1336-1337 
Windows 7, 1058 
Windows 8, 1033 
Windows 10, 997 
system folders, 1259, 1259 
System Image Recovery option, 
1316 
System Information tool, 933, 
969, 969 
system lockout for mobile 
devices, 1354-1355 
System Properties 
boot order, 1320, 1320 
domains, 1006 
System Protection 
disabling, 1341, 1342 
overview, 890, 890 
System Recovery Image option, 
1205 
system requirements for 
operating systems, 838-842 
System Restore 
disabling, 1341, 1342 
enabling, 1346 
Windows 7, 1059-1060, 
1059-1060 


System Startup option, 889 
system tray, 847 
system updates in Linux and 
macOS, 1099-1100, 
1099-1100 
system variables 
scripting, 1131 
System applet, 888 
Systems Management Server 
(SMS), 1002 
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T-connectors for coaxial cable, 
340, 340 
tablets, 607-609, 607-608 
TACACS+ (Terminal Access 
Controller Access-Control 
System Plus) 
authentication servers, 503 
wireless SOHO, 1221 
tags in RFID, 423 
tailgating, 1164-1165, 1190 
tap pay devices, 190 
tape backup devices, 105-106 
targets in serial attached 
SCSI, 146 
Task Manager 
overview, 917-921, 917-919 
performance, 1285-1289, 
1285-1288 
Task Scheduler 
Computer Management, 922 
Microsoft Management 
Console, 925, 925 
Task View, 959, 959 
taskbar 
Windows 7, 1048 
Windows 8, 1019 
Windows 10, 847-848, 847, 
962, 963 
taskkill command, 901 
TCP, 284-285, 285 
TCP/IP 
DHCP options, 493-494 
exam essentials, 396-397 
Host-to-Host layer, 373-375 
Internet layer, 375 
IP addressing. See IP 
addressing 
overview, 365-366 
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performance-based question, 
402 
performance-based question 
answer, 1531 
printers, 284-285, 285 
Process/Application layer, 
367-373 
review questions, 398-401 
review questions answers, 
1483-1484 
structure, 366-367, 366-367 
summary, 395 
virtual networks, 392-394, 
393-395 
TCP/IP hijacking, 1194 
TECs (thermoelectric coolers), 67 
telemetry options 
Windows 10 installation, 
983, 984 
Windows 10 upgrades, 992, 
992 
Telnet, 373, 1147-1148 
Temporal Key Integrity Protocol 
(TKIP), 462, 1217 
Terminal Access Controller 
Access-Control System Plus 
(TACACS+) 
authentication servers, 503 
wireless SOHO, 1221 
terminal adapters in ISDN, 434 
Terminal utility in macOS, 1103 
terminators 
coaxial cable, 340, 340 
ISDN, 434 
test pages for printers, 281, 796 
testing 
backups, 1390 
laser printers, 788-790, 789 
tethering 
cellular, 438, 648 
mobile devices, 628 
text descriptions in syslog 
servers, 505 
Themes section in Display 
Settings, 846 
theories in troubleshooting 
establishing, 715-716 
testing, 716-717 
thermal printers, 260-261 
thermal runaway in mobile 
devices, 1352 
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thermal transfer compound for 
heat sinks, 64 
thermoelectric coolers (TECs), 67 
thermostats configuration, 
473-474, 474 
thick clients, 206-207 
hickness of printer paper, 293 
thin clients 
file and print sharing services, 
227 
gigabit NIC, 228 
hard drives, 228 
media streaming capabilities, 
223-227, 224-227 
NAS, 221-223, 222 
overview, 221 
RAID, 228 
Third Extended File System, 939 
third generation (3G) cellular 
networking standards, 
418-419 
32-bit CPUs, 43 
32-bit operating systems, 834 
threat agents, 1203 
three-pronged firewalls, 488 
3D printers 
overview, 263 
parts, 263-265, 264-266 
printing process, 266-267, 
267 
throttling CPUs, 41-42, 557 
Thunderbolt 
cables and connectors, 
154-155, 154-155 
standards, 154 
TightVNC VNC, 1103 
tiles in Windows 8, 1022, 1023 
Time Machine, 1102 
time restrictions in account 
management, 1237-1238, 
1238 
time zone, changing, 880 
title bars in Windows, 857 
TKIP (Temporal Key Integrity 
Protocol), 462, 1217 
tlogs, 1388 
TLS (Transport Layer Security) 
email, 683 
HTTPS, 370 
syslog servers, 505 
toggling displays, 761 
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tokens 
access, 1007, 1260 
domain access, 1181, 1181 
hardware, 1167-1168, 1167 
Kerberos, 1260 
physical security, 1163 
toner 
printers, 294-295 
spilled, 1443 
toner cartridges 
disposal procedures, 1452 
laser printers, 249-251, 250, 
784 
refilling, 294-295 
toner probes, 804, 805 
tools 
laptop disassembling and 
reassembling, 547 
safety concerns, 1428-1431, 
1429 
Tools tab in System 
Configuration, 933, 933 
top-level domains in DNS, 497, 
498 
top-panel connectors, 35-38, 36 
topologies, networking, 324-328, 
325-328 
topology diagrams, 1371-1372, 
1371-1372 
Touch ID, 1266 
touch pads, 184-185, 185 
touch screens 
inaccurate, 1354 
laptops, 574 
mobile devices, 605 
non-responsive, 1349 
Windows 7, 1049 
TouchFLO interface, 605-606 
touchpads, 571-573, 571-573 
Touchpoint, 573 
TPM (Trusted Platform Module) 
BIOS, 31 
BitLocker, 1263 
Windows 7, 1045 
tracert command, 813, 813, 
910-911 
trackballs, 184, 571 
tracks in hard drives, 88—90, 88 
tractor feed in impact printers, 
238 
trailing dots for roots, 497-498 


transaction logs, 1388 
transfer corona assembly in laser 
printers, 253, 253, 785 
transferring step in laser printers, 
257-258, 258 
transformers in inkjet printers, 
247, 779 
transient voltage surge 
suppressors (TVSSs), 1392 
Transmission Control Protocol/ 
Internet Protocol (TCP/IP). 
See TCP/IP 
Transmission Control Protocol 
(TCP), 284-285, 285 
transmission over limit for 
mobile devices, 1358-1359 
Transport layer in OSI model, 
330 
Transport Layer Security (TLS) 
email, 683 
HTTPS, 370 
syslog servers, 505 
trays, printer, 302 
triangulation in GPS systems, 618 
triggers in Task Scheduler, 925 
trip hazards, 1433 
triple-channel memory, 47-48 
Trojans, 1197-1198 
troubleshooting 
best practices 
documentation, 720-721 
overview, 710 
plans of action, 718-720 
problem identification, 
710-714 
theory establishment, 
715-716 
theory testing, 716-717 
verifying functionality, 
720 
exam essentials, 736, 820-822 
hardware 
BIOS/UEFI issues, 
728-729, 729 
cooling, 733-734 
critical components, 
722-726 
memory, 731 
motherboards and CPUs, 
729-730, 731 
overview, 721 


POST routines, 727-728, 
727 
power supplies, 732-733 
practice example, 734-735 
introduction, 747-749 
mobile devices 
application loading, 1350 
batteries, 1351-1352 
Bluetooth, 1348-1349, 
1348 
connectivity, 1347-1348 
dim displays, 1347 
email, 1351 
external monitors, 1349 
frozen systems, 1352-1353 
input, 762-763, 763 
intermittent wireless, 1347 
overheating, 1352 
overview, 758-759, 1346 
performance, 1350-1351 
power issues, 759-761, 761 
security, 1355-1360, 1357 
sound, 1353, 1353 
system lockout, 1354-1355 
touch screens, 1349, 1354 
video, 761-762, 762 
networking 
connectivity, 798-802 
overview, 764-767, 
764-768, 797 
software commands, 
807-819, 808, 
810-811, 813-815, 
817-819 
tools, 803-807, 803-807 
wireless, 764-767, 
764-768 
overview, 709 
performance-based question, 
741, 826 
performance-based question 
answer, 1534-1535 
printers 
impact, 773-775 
inkjet, 776-779 
laser, 779-792, 786, 789 
overview, 772-773 
print jobs, 793-796, 
793-795 
responsiveness issues, 
768-771, 770-771 
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review questions, 737-740, 
823-826 
review questions answers, 
1494-1498 
storage devices, 749-756, 
752-753 
summary, 735, 819-820 
video, 756-758 
Windows 
application crashes, 1299, 
1299-1300 
black screens, 1301, 1302 
Blue Screen of Death, 
1300, 1301 
boot failures, 1294-1298, 
1297-1298 
boot order, 1319-1320, 
1319-1320 
boot process, 1306-1308, 
1307-1308 
connectivity, 1289-1294, 
1290-1293 
defragmentation, 
1309-1310, 1309 
disabling applications, 
1322-1323, 1323 
drivers, 1317, 1317 
exam essentials, 1360-1361 
malware, 1339-1346, 
1340, 1342-1345 
network settings, 
1313-1314, 
1314-1315 
overview, 1283 
performance, 1284-1289, 
1285-1288 
performance-based 
question, 1366 
performance-based question 
answer, 1549 
printing, 1302-1304, 
1303-1304 
processes, 1310-1312, 1311 
profiles, 1308, 1308, 
1327-1329, 1328 
rebooting, 1310 
reloading operating 
system, 1316 
repairing applications, 
1318, 1319 
review questions, 1362-1365 


review questions answers, 
1516-1518 
safe mode, 1323-1327, 
1324, 1326 
security, 1329-1339, 1329, 
1335, 1338-1339 
services, 1304-1306, 
1305, 1312-1313, 
1312-1313, 1321, 
1321-1322 
summary, 1360 
updates, 1316-1318, 1316 
Troubleshooting applet 
Windows 7, 1076-1078, 
1077-1078 
Windows 10, 898, 898 
TRS connectors, 179 
Trusted Installer, 1337 
Trusted Platform Module (TPM) 
BIOS, 31 
BitLocker, 1263 
Windows 7, 1045 
trusted software sources 
mobile devices, 1271 
network policies, 1186 
Turn off power state, 937 
TV Shows tab in iTunes, 690 
TV tuner cards, 79, 79 
TVSSs (transient voltage surge 
suppressors), 1392 
20+4 connectors, 119 
23B+D ISDN, 434 
twisted-pair cable 
connector types, 344-345, 344 
overview, 342-343, 342 
specifications, 343-344 
wiring standards, 345-346, 
345-346 
Type 1 hypervisors, 523, 523 
Type 2 hypervisors, 523, 523 
typeahead feature, 1139 
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UAC (User Account Control) 
overview, 1262, 1262 
settings, 892, 893 
Windows 7, 1046, 1078-1080, 
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ubiquitous access in cloud, 515 
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UDP (User Datagram Protocol), 
367, 1175 
UEFI. See Unified Extensible 
Firmware Interface (UEFI) 
Ultimate edition in Windows 7, 
1044 
Ultra Reliable Low Latency 
Communications (URLLC), 
420 
unattended installation in 
Windows 8, 1028-1029 
unauthorized account access, 1359 
unauthorized camera activation, 
1359-1360 
unauthorized location tracking, 
1359 
UNC (Universal Naming 
Convention) path for 
network shares, 1009 
Uncorrectable sector count, 753 
undervolting, 68 
unicast addresses in IPv6, 389 
unidirectional links, 16 
Unified Extensible Firmware 
Interface (UEFI) 
boot failures, 1294 
GUID Partition Tables, 942 
issues, 728-729, 729 
overview, 29-32 
passwords, 1235 
Windows 10 hardware, 970 
unified threat management 
(UTM), 507-508 
unintended Wi-Fi connections, 
1357-1358, 1357 
uninterruptable power supplies 
(UPSs), 1390-1391, 
1439-1441, 1440 
Universal Naming Convention 
(UNC) path for network 
shares, 1009 
Universal Plug and Play (UPnP) 
standard, 471-472 
Universal Security Slots (USSs) 
for cable, 1169, 1169 
Universal Serial Bus (USB) 
cables and connectors 
overview, 148-149, 149 
power, 152-153 
standards, 149-150 
types, 150-152, 150-152 
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card readers, 108, 109, 594, 
594-595 
dongles, 594, 594 
drives, 1001 
expansion cards, 82, 83 
flash drives, 109-110, 109 
headsets, 179, 180 
locks, 1170 
mobile devices, 626-628, 
627-628 
mouse, 184 
ports 
laptops, 593-594, 594-595 
overview, 37-38, 38 
printers, 268-269, 282 
recovery drives, 1031-1032, 
1032 
USB Battery Charging 
standard, 152 
USB over eSATA, 143, 143 
USB to Ethernet adapters, 
152, 152 
USB Type-C connectors, 
151, 151 
Windows 10 installation, 971 
Universal Time Code (UTC) in 
incident documentation, 
1375 
Universal Windows Platform 
(UWP), 957 
unlocking accounts, 1243, 1243 
unmanaged switches, 353 
unshielded twisted-pair (UTP) 
cable, 342, 342 
untrusted software sources 
mobile devices, 1271 
network policies, 1186 
up-plugging, 17 
updates 
applying, 1318 
boot order, 1319-1320, 
1319-1320 
cellular, 651-652 
firmware, 1224-1225 
Linux and macOS 
antivirus software, 1102 
driver and firmware 
updates, 1101-1102 
systems, 1099-1100, 
1099-1100 


malware protection, 
1345-1346, 1345 
mobile devices, 1271-1272 
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operating systems, 1335 
rolling back, 1316-1317, 
1316 
Windows, 859-861, 860, 
965-966 
workstations, 1246 
Upgrade Advisor, 1053-1054, 
1053-1054 
Upgrade option in Windows 10 
installation, 975 
upgrades 
mobile devices, 604-605 
printers, 298-302, 300-301 


Windows 7, 1049, 1051-1055, 
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Windows 8, 1025 
Windows 10, 987-994, 
989-992 
UPnP (Universal Plug and Play) 
standard, 471-472 
UPSs (uninterruptable power 
supplies), 1390-1391, 
1439-1441, 1440 
URLLC (Ultra Reliable Low 
Latency Communications), 
420 
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ser Account Control (UAC) 
overview, 1262, 1262 
settings, 892, 893 


Windows 7, 1046, 1078-1080, 


1079-1081 
User Accounts applet, 892, 893 
User Accounts Control Panel, 
930, 930 
User Datagram Protocol (UDP), 
367, 1175 
user education 
malware, 1346 
printers, 281 
user-initiated installations for 
Windows 10 applications, 
1002 
User Profiles dialog box, 1328, 
1328 
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User Rights Assignment settings, 
1068-1069 
User State Migration Tool (USMT) 
Windows 7, 1055 
Windows 10, 993-994 
user variables 
scripting, 1131 
System applet, 888 
usernames 
changing, 1239-1240 
default, 1216, 1221 
users 
permissions, 1237, 1237 
troubleshooting, 711 
Windows, 1247-1248 
Users tab in Task Manager, 
921 
USMT (User State Migration 
Tool) 

Windows 7, 1055 
Windows 10, 993-994 
USSs (Universal Security Slots) 

for cable, 1169, 1169 
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incident documentation, 
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UTM (unified threat 

management), 507-508 
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Platform), 957 
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vacuums, 1443 
vampire taps for coaxial cable, 
339, 340 
variable length subnet masking 
(VLSM), 386 
variables 
scripting, 1130-1131 
System applet, 887-888 
VB scripts, 1141-1142 
VCB (VMware Consolidated 
Backup) proxies, 1388 
VDI (virtual desktop interface), 
525 
VDSL (very high bit-rate DSL), 
430-431 


versions 
operating systems, 833 
Windows 10, 966-967, 967 
vertical lines in laser printers, 
786-787 
very high bit-rate DSL (VDSL), 
430-431 
VFAT (Virtual Fat), 939 
VGA connectors, 134-135, 
134-135 
VGA mode, booting into, 756 
video 
cables and connectors 
DisplayPort, 140-141, 141 
DVI, 135-137, 136-137 
HDMI, 137-140, 
138-139 
mini-HDMI, 140, 140 
overview, 133, 159-161, 
160 
VGA, 134-135, 134-135 
devices 
monitors, 162-172, 
165-167 
optical glasses and 
headsets, 177-179, 
177 
overview, 162 
projection systems, 
173-175 
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